Mirror — primary at git.dannydannydanny.me
47fc658523
Stage 4.5: declare a Hetzner-hosted reverse-proxy VPS as a clan machine. - nixos/hosts/vps-relay.nix: Debian→NixOS cx23 in hel1. Caddy at public 80/443 reverse-proxies navidrome.dannydannydanny.me and bbbot.dannydannydanny.me over ZT to sunken-ship. - nixos/disko-cloud.nix: simple GPT + ext4 root, no LUKS — cloud provider has physical disk anyway and there's no operator at boot. - flake-modules/clan.nix: register vps-relay as an inventory machine, zerotier peer, internet networking target at its clan-generated ZT IPv6, and add vps-relay.clan to clanHostsModule /etc/hosts. - sunken-ship fitness-bot: drop pkgs.cloudflared from PATH + set WEBAPP_URL=https://bbbot.dannydannydanny.me. Paired with the bbbot upstream patch (start.py honors env WEBAPP_URL and skips cloudflared when set) — once the 15-min fitness-bot-pull timer pulls that change, bbbot will stop churning trycloudflare.com URLs. Vars (zerotier identity/ip + sops machine key) generated on sunken-ship because clan's hermetic sandbox on macOS fails to run the zerotier identity generator (same workaround as for data-mesher earlier). VPS install flow: Hetzner-created Debian box, then `clan machines install vps-relay --target-host root@<public-ipv4>` reinstalls to NixOS; subsequent updates go over ZT. |
||
|---|---|---|
| assets | ||
| bashscripts | ||
| docs | ||
| flake-modules | ||
| lib | ||
| modules | ||
| nixos | ||
| raycast-scripts | ||
| scripts | ||
| sops | ||
| vars | ||
| .editorconfig | ||
| .gitignore | ||
| AGENTS.md | ||
| CLAUDE.md | ||
| firefox-scrolling.md | ||
| flake.lock | ||
| flake.nix | ||
| LICENSE | ||
| README.md | ||
| server-quickstart.md | ||
| TODO.md | ||
dotfiles
Extension of dannydannydanny/methodology.
Roadmap
- firefox-scrolling via terminal
- Server: server-quickstart; NixOS flake and bootstrap nixos/readme.md. SSH and secrets: docs/ssh-and-secrets.md. New server install (USB, LUKS, WiFi): docs/server-installer-usb.md.
- nvim checkhealth; tmux setup; fonts / nerdfonts; HN: home server
Windows
- System sounds: None. Language/keyboard: en_US.
- Powertoys — remap CAPS to L-CTRL.
- Alacritty — config:
%AppData%/alacritty/alacritty.yml.
WSL
nix-shell -p gh git
gh auth login
gh repo clone dannydannydanny/dotfiles && cd dotfiles
# git checkout <branch> # if needed
sudo nixos-rebuild switch --flake ~/dotfiles#wsl
Clone via SSH
One key per purpose; see AGENTS.md and docs/ssh-and-secrets.md. Otherwise clone with HTTPS.
ssh-keygen -q -t ed25519 -N '' -f ~/.ssh/id_ed25519_github <<<y
cat ~/.ssh/id_ed25519_github.pub # add at https://github.com/settings/ssh/new
eval $(ssh-agent -s) # fish: eval (ssh-agent -c)
ssh-add ~/.ssh/id_ed25519_github
git clone git@github.com:DannyDannyDanny/dotfiles.git && cd dotfiles
git config user.name "DannyDannyDanny"
git config user.email "dth@taiga.ai"
Apply machine config from nixos/ (see CLAUDE.md for macOS rebuild commands or nixos/readme.md for NixOS).