update README
change directory naming
This commit is contained in:
parent
0ab4ba65c6
commit
9c59a20b54
15 changed files with 11 additions and 11 deletions
0
secrets/.gitignore → .gitignore
vendored
0
secrets/.gitignore → .gitignore
vendored
15
README.md
15
README.md
|
|
@ -3,7 +3,14 @@
|
|||
Nix definitions to configure our physical servers.
|
||||
Currently, only one physical server (named jefke) is implemented.
|
||||
|
||||
To deploy:
|
||||
```
|
||||
nixos-rebuild switch -j auto --target-host root@jefke.hyp --flake ".#jefke"
|
||||
```
|
||||
## Deployment
|
||||
|
||||
### Prerequisites
|
||||
|
||||
Before a NixOS definition can be deployed, some prerequite preparational steps must be performed.
|
||||
|
||||
1. Manually install NixOS on the physical machine. This could potentially be automated in the future with [nixos-anywhere](https://github.com/nix-community/nixos-anywhere), but for now this is a manual process.
|
||||
2. Enable SSH and install authorized keys.
|
||||
3. Ensure Python3 is installed for Ansible.
|
||||
4. Run Ansible playbook which deploys secrets `ansible-playbook deploy_secrets.yml`.
|
||||
5. Deploy the NixOS definition: `nixos-rebuild switch -j auto --target-host root@jefke.hyp --flake ".#jefke"`.
|
||||
|
|
|
|||
|
|
@ -1,7 +0,0 @@
|
|||
We can for now keep using Ansible vault to deploy secrets.
|
||||
The steps for setting up a hypervisor will thus become:
|
||||
1. Manually install NixOS
|
||||
2. Configure SSH and install authorized keys
|
||||
3. Ensure python3 is present on the system
|
||||
4. Run Ansible script to copy secrets
|
||||
5. Run Nix to configure everything else
|
||||
Loading…
Reference in a new issue