Evie Litherland-Smith
8171624a1c
Flake lock file updates: • Updated input 'home-manager': 'github:nix-community/home-manager/2f3367769a93b226c467551315e9e270c3f78b15' (2024-02-29) → 'github:nix-community/home-manager/23ff9821bcaec12981e32049e8687f25f11e5ef3' (2024-03-04) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/1536926ef5621b09bba54035ae2bb6d806d72ac8' (2024-02-29) → 'github:NixOS/nixpkgs/b8697e57f10292a6165a20f03d2f42920dfaf973' (2024-03-03) |
||
---|---|---|
home | ||
hosts | ||
schemes | ||
services | ||
system | ||
wallpapers | ||
.gitignore | ||
.stylua.toml | ||
flake.lock | ||
flake.nix | ||
Makefile | ||
README.org |
README
Password store setup
Transfer GPG key(s)
# Export key on existing machine
gpg --export-secret-keys > key.gpg
# Import key on new machine
gpg --import key.gpg
# Edit (for each key) to set trust
gpg --edit-key ...
Clone password-store repository
git clone https://git.xenia.me.uk/xenia/pass $PASSWORD_STORE_DIR
Email setup
Proton
Bridge
Run bridge in CLI mode to login, wait for initial sync and get app password
nix run nixpkgs#protonmail-bridge -- -c
# Follow prompts to login and get password
Restart using hyprctl
:
nix shell nixpkgs#protonmail-bridge -c hyprctl dispatch exec "protonmail-bridge -n"
Script protonmail-setup-bridge
(provided with NixOS config) handles all of this
uidvalidity issue
Remove uid lines from .mbsyncrc (in each mail directory) and delete .uidvalidity, re-run mbsync to fix
Above might be duplicating mail, faster to just delete local maildirs and let them re-sync.
Password
Get password from protonmail-bridge
, save to password-store
:
pass insert mbsync/$(hostname)/proton
# Insert pass at prompt
iCloud
Password
If not already done, save password to password-store
:
pass insert mbsync/$(hostname)/icloud
# Insert pass at prompt
This will be synced across devices so only needs doing once
Outlook
Password
If not already done, save password to password-store
:
pass insert mbsync/$(hostname)/outlook
# Insert pass at prompt
This will be synced across devices so only needs doing once
Configuration
On first run (or if token expires), stop systemd service and run manually to complete manual auth. Token will stay valid for a little while (no idea how long specifically).
# Restart service to ensure ~/.davmail.properties exists
systemctl --user restart davmail.service
# Run to use manual authentication
systemctl --user stop davmail.service && davmail -notray ~/.davmail.properties
# Restart again so that service picks up available ports
systemctl --user restart davmail.service