fb427e55e8
secrets: define these by crawling the repo to decrease duplication
2023-05-14 09:50:01 +00:00
ed020b56c0
secrets: split moby.yaml into file-per-secret
2023-05-14 02:42:07 +00:00
3c2715648c
moby: ship compressed kernel images
...
i've verified that .gz images boot. don't know about zImage, etc.
2023-05-12 06:49:59 +00:00
f89f136041
sane.programs: allow per-program config (and port web-browser to use that)
2023-05-08 09:49:58 +00:00
b1e9d8db80
nix flake update: nixpkgs f027fe965cc2 -> fc47fa33a3ac; sops-nix
2023-03-31 05:53:20 +00:00
dc1cd7a9a5
sane.persist: make it default-true for my hosts
2023-03-11 08:36:14 +00:00
43f39674d6
nixcache: enable on all machines
2023-03-04 08:19:46 +00:00
4a7513ba23
moby: re-enable nixos documentation
...
now that we properly cross compile (no emulation), it's pretty trivial.
2023-03-02 08:30:58 +00:00
2fcb0ebfd0
moby: disable sequioa instead of emulating it
2023-03-01 10:14:48 +00:00
02067db774
moby: ship the full recommended guiApps again
2023-02-21 01:25:42 +00:00
50812e5678
moby: ship some of the base apps
2023-02-21 01:21:01 +00:00
6cbeccf51f
WIP: moby: partially working cross compilation for phosh w/o apps (webkitgtk build OOMs)
2023-02-21 01:19:02 +00:00
5715795d1f
WIP: moby-cross: is cross-by-default instead of opt-in
2023-02-21 01:19:00 +00:00
b6685c9e6c
refactor: move konsole
from moby/default.nix -> gui/phosh.nix
2023-02-04 10:00:10 +00:00
e08281c380
fix: typo in config option name
2023-02-03 09:09:37 +00:00
afb006f6ec
programs: port last users & remove the old packages.nix
2023-02-03 05:26:57 +00:00
77cc560052
use sane.user.persist instead of sane.persist.home
2023-01-30 10:35:03 +00:00
d419e10f10
moby: bump CMA 384M -> 512M
2023-01-26 23:41:22 +00:00
6006b84f9e
moby: disable metamask
2023-01-26 23:35:57 +00:00
358b673344
moby: bump CMA 256MB -> 384MB
2023-01-23 07:42:51 +00:00
5d78bc6704
moby: enable wireguard/home VPN
2023-01-20 22:40:58 +00:00
9af157b294
moby: enable the client role
2023-01-20 11:37:43 +00:00
d13bcc49ab
refactor hosts directory, and move ssh keys out of modules/data
...
longer-term, i want hosts/by-name to define host-specific data
that's accessible via the other hosts (things like pubkeys).
also the secrets management needs some rethinking. there's really not
much point in me specifiying where *exactly* a secret comes from at its
use site. i should really be specifying secret store manifests; i.e.
"servo.yaml contains secrets X Y and Z", and leaving the rest up to
auto-computing.
2023-01-19 23:23:43 +00:00