2019-04-01 15:44:55 +02:00
|
|
|
# Deployment
|
|
|
|
|
|
|
|
Beide failen bei Activation des neuen Profils. (TODO)
|
|
|
|
|
|
|
|
## Mit `nixos-switch rebuild`
|
|
|
|
|
|
|
|
```shell
|
2019-04-07 21:35:57 +02:00
|
|
|
nixos-rebuild switch -I nixos-config=./hosts/containers/$HOST/configuration.nix --target-host "root@$HOST.hq.c3d2.de"
|
2019-04-01 15:44:55 +02:00
|
|
|
```
|
|
|
|
|
|
|
|
## Mit NixOps
|
|
|
|
|
|
|
|
```shell
|
|
|
|
nixops create hq.nixops -d hq
|
2019-06-22 15:56:52 +02:00
|
|
|
nixops deploy -d hq --check --include=dhcp
|
2019-04-01 15:44:55 +02:00
|
|
|
```
|
2019-04-30 23:21:34 +02:00
|
|
|
|
|
|
|
# Secrets
|
|
|
|
|
2019-05-01 00:55:11 +02:00
|
|
|
Add your gpg-id to the .gpg-id file in secrets and let somebody reencrypt it for you.
|
|
|
|
Maybe this works for you, maybe not. I did it somehow:
|
|
|
|
```PASSWORD_STORE_DIR=`pwd` tr '\n' ' ' < .gpg-id | xargs -I{} pass init {}````
|
|
|
|
|
|
|
|
Your gpg key has to have the Authenticate flag set. If not update it and push it to a keyserver and wait.
|
|
|
|
This is necessary, so you can login to any machine with your gpg key.
|