您最多选择25个主题
主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
ehmry
7e5fa1bdfd
Partial deduplication of pulsebert config
|
1年前 | |
|---|---|---|
| ansible | 2 年前 | |
| hosts | 1年前 | |
| lib | 1年前 | |
| secrets @ a481a5feb5 | 1年前 | |
| .gitmodules | 2 年前 | |
| README.md | 1年前 | |
| common.nix | 1年前 | |
| hq.nixops | 1年前 | |
| install-host.sh | 2 年前 | |
| mpd.nix | 1年前 | |
| nix-maintenance.sh | 2 年前 | |
| users.nix | 1年前 |
README.md
README.md
Deployment
Beide failen bei Activation des neuen Profils. (TODO)
Mit nixos-switch rebuild
nixos-rebuild switch -I nixos-config=./hosts/containers/$HOST/configuration.nix --target-host "root@$HOST.hq.c3d2.de"
Mit NixOps
nixops create hq.nixops -d hq
nixops deploy -d hq --check --include=dhcp
Secrets
Add your gpg-id to the .gpg-id file in secrets and let somebody reencrypt it for you.
Maybe this works for you, maybe not. I did it somehow:
PASSWORD_STORE_DIR=`pwd` tr '\n' ' ' < .gpg-id | xargs -I{} pass init {}`
Your gpg key has to have the Authenticate flag set. If not update it and push it to a keyserver and wait. This is necessary, so you can login to any machine with your gpg key.