My personal NixOS configuration
Find a file
Evie Litherland-Smith 21018d8aa2 flake.lock: Update
Flake lock file updates:

• Updated input 'nix-index-database':
    'github:nix-community/nix-index-database/c0ca47e8523b578464014961059999d8eddd4aae?narHash=sha256-x3FmT4QSyK28itMiR5zfYhUrG5nY%2B2dv%2BAIcKfmSp5A%3D' (2024-07-28)
  → 'github:nix-community/nix-index-database/97ca0a0fca0391de835f57e44f369a283e37890f?narHash=sha256-UQPgA5d8azLZuDHZMPmvDszhuKF1Ek89SrTRtqsQ4Ss%3D' (2024-08-04)
• Updated input 'nixpkgs':
    'github:nixos/nixpkgs/12bf09802d77264e441f48e25459c10c93eada2e?narHash=sha256-sga9SrrPb%2BpQJxG1ttJfMPheZvDOxApFfwXCFO0H9xw%3D' (2024-07-29)
  → 'github:nixos/nixpkgs/a633d89c6dc9a2a8aae11813a62d7c58b2c0cc51?narHash=sha256-IRiJA0NVAoyaZeKZluwfb2DoTpBAj%2BFLI0KfybBeDU0%3D' (2024-08-03)
• Updated input 'plasma-manager':
    'github:nix-community/plasma-manager/110d50c34faaa6f4e268bbcf008db3c26c8f9d00?narHash=sha256-EOf9LC4eSQPJIdtL1PZ3wK7g%2Bo0Sqac83T%2Bhz7twvbc%3D' (2024-07-30)
  → 'github:nix-community/plasma-manager/61d9342fb471cd3c45a047406428fba7b6fb49ad?narHash=sha256-l6N3QaiDqN2QmHDAxjczQPLPCTv%2BKp7PsrtJBltmhTo%3D' (2024-08-04)
2024-08-05 07:15:49 +01:00
home Rename Scorch -> Tone 2024-08-04 10:50:23 +01:00
pfp Update pfps for badger, new micro versions 2024-07-26 20:23:33 +01:00
system Rename Scorch -> Tone 2024-08-04 10:50:23 +01:00
.gitignore Update Makefile 2024-06-22 09:41:24 +01:00
.pre-commit-config.yaml Add pre-commit hook to run gitleaks 2024-06-24 07:31:02 +01:00
flake.lock flake.lock: Update 2024-08-05 07:15:49 +01:00
flake.nix Rename Scorch -> Tone 2024-08-04 10:50:23 +01:00
Makefile Add keep-going flag to Makefile nix build directive 2024-07-22 10:47:44 +01:00
README.org Use libsecret for mbsync and git-credential-helper 2024-07-08 08:58:32 +01:00

README

My personal NixOS + home-manager configuration files.

To set up without cloning the repository (assuming an already running NixOS system), run:

  sudo nixos-rebuild switch --flake "git+https://git.xenia.me.uk/pixelifytica/nixos.git?ref=main"\#$(hostname)

Password store setup

Transfer GPG key(s)

  # Export keys on existing machine
  gpg -a --export > publickeys.asc
  gpg -a --export-secret-keys > privatekeys.asc
  # Import key on new machine
  gpg --import privatekeys.asc; gpg --import publickeys.asc
  # Edit (for each key) to set trust
  gpg --edit-key evie@xenia.me.uk

Clone password-store repository

  git clone https://git.xenia.me.uk/pixelifytica/pass $PASSWORD_STORE_DIR

Email setup

Passwords for mbsync

Run

mbsync-ensure-pass
to check for passwords required by mbsync, and query for missing passwords.

Static app-specific passwords are stored in password-store, fetch from there to add to secret service.

Proton

Bridge

Start Proton Mail Bridge application, if needed configure to store using SecretService and log in. Application will auto-start with desktop session.

Use password from Bridge for mbsync.

Outlook

Davmail

Run

davmail-setup
to automate this process.

On first run (or if token expires), stop systemd service and run manually to complete manual auth. Token will stay valid for a little while (no idea how long specifically).

  # Restart service to ensure ~/.davmail.properties exists
  systemctl --user restart davmail.service
  # Run to use manual authentication
  systemctl --user stop davmail.service && davmail -notray ~/.davmail.properties
  # Restart again so that service picks up available ports
  systemctl --user restart davmail.service

Flathub setup

  flatpak remote-add --if-not-exists flathub https://dl.flathub.org/repo/flathub.flatpakrepo

Further reading: