| .. | ||
| _users | ||
| bootstrap | ||
| graphical-installer | ||
| ni | ||
| plover | ||
| winnowing | ||
| README.adoc | ||
These are NixOS configurations that are specific to a machine (e.g., desktop, servers, VMs, containers, installation media).
Ideally, it should be made minimal as much as possible considering you also have to manage your users.
It is expected that all (if not most) of the configurations here are defined in the declarative hosts (from ../flake-parts/nixos.nix) applied on top of a baseline configuration (which should be seen in the previously linked file).
Integrating with custom modules
The host configurations placed here most likely use the custom NixOS modules. The custom modules shouldn’t be imported manually from the host as this is already taken care of from the flake definition.
It is best practice to assume the host configurations make use of the custom NixOS modules, custom packages, and the flake inputs.
In other words, always pay attention to ../../flake.nix.
User management
For managing users, there are multiple ways to manage them within this project:
-
The usual
users.users.${user}from system configuration (seeman configuration.nix.5). -
If you intend to import users from the
./_users, you can simply import them throughimportsin the system module.For a convenient option, there is the function
getUserdefined from the custom library. You can use it as follows:imports = [ (foodogsquaredLib.getUser "nixos" "foo-dogsquared") (foodogsquaredLib.getUser "nixos" "polaski") ]; -
You could also easily map one of my home-manager configurations into one of the users for a NixOS system with
foodogsquaredUtils.mapHomeManagerUserwhich accepts two arguments: a name from of the home-manager user folder and the user config as if configuration withusers.users.<name>. However, this is only acceptable if the imported home-manager configuration only requires the baseline home-manager configuration and nothing else.Here’s an example to easily get my main home-manager config to be one of the users of the system.
foodogsquaredUtils.mapHomeManagerUser "foo-dogsquared" { extraGroups = [ "audio" "docker" ]; password = "what"; createHome = true; home = "/home/foo-dogsquared"; } -
For more comprehensive home-manager users that requires additional home-manager modules outside of the baseline home-manager configuration, you’ll have to use
setups.nixos.configs.<name>.homeManagerUsers.usersfrom the declarative hosts config. Similar tomapHomeManagerUserlibrary function, this takes care of mapping the home-manager user into a NixOS user with a home-manager configuration but it does more. It also imports all of the overlays and modules from the declarative home-manager user config.Here’s an example of my desktop system configuration with a home-manager user on it. Take note, it requires
foo-dogsquaredto be defined insetups.home-manager.configsfor this to work.{ setups.nixos.ni = { systems = [ "x86_64-linux" ]; formats = null; home-manager = { branch = "home-manager-unstable"; nixpkgsInstance = "global"; users.foo-dogsquared = { userConfig = { extraGroups = [ "adbusers" "wheel" "audio" "docker" "podman" "networkmanager" "wireshark" ]; hashedPassword = "$6$.cMYto0K0CHbpIMT$dRqyKs4q1ppzmTpdzy5FWP/V832a6X..FwM8CJ30ivK0nfLjQ7DubctxOZbeOtygfjcUd1PZ0nQoQpOg/WMvg."; isNormalUser = true; createHome = true; home = "/home/foo-dogsquared"; description = "Gabriel Arazas"; }; }; }; }; }Points of interests include:
-
home-manager.nixpkgsInstance = "global";option where it enforces the system to use the same nixpkgs instance throughout all of the home-manager users. As an effect, it will apply of the home-manager users' overlays into the nixpkgs instance of the NixOS system instead. -
home-manager.users.<name>.userConfigwhere it simply maps the home-manager user into a NixOS system by applyingusers.users.<name>with the givenuserConfigvalue.
While this method makes for an incomplete system declaration in the config file and fully relies on the declarative host module to handle it, it isn’t that much of a problem especially that you have to import third-party modules somewhere, regardless if it’s with flakes or not. [1]
-
Design constraints
This set of NixOS configuration have some constraints mainly for consistency (easier to remember → easier to use → easier to maintain over a long time).
-
All NixOS configurations are expected to be made with the baseline NixOS configuration from the declarative host config (in the
setups.nixos.configsflake-parts module). If you want to add home-manager users to it, make sure the included home-manager user is only buildable with the baseline home-manager configuration. Otherwise, you’ll have to use thesetups.nixos.configs.<name>.homeManagerUsers.users.<name>interface for that. -
Configuring nixpkgs instance is not allowed. This is because the setup module for NixOS sets the nixpkgs instance themselves and NixOS systems doesn’t allow further configuring the nixpkgs instance if
pkgsis set externally. -
Private libraries and modules are allowed to be used here. Both custom-made libraries and modules are easy to setup both with flake and non-flake way so it isn’t limiting us to lean one over the other.
-
No flake inputs (i.e.,
inputs) are passed into the configuration. This is to make setting up with these configurations a little bit easier with a non-flake setup. [2] -
Host-specific module structuring is used at its fullest. This type of modules are simply NixOS modules with
hosts.$HOSTNAMEas its options namespace. It is encouraged to design custom modules with these as much as possible.
inputs to be part of the module arguments.