Enhance deployment configuration with machine-specific templates and secrets management
Updated the .gitignore to include machine-specific configurations and secrets handling. Expanded the DEPLOYMENT-GUIDE.md to provide detailed instructions for adding new machines using a template, along with steps for managing encrypted secrets. Introduced example configuration files for boot settings and a sample WireGuard service, improving modularity and flexibility in the NixOS deployment process. Adjusted krops.nix to reference the correct path for machine-specific configurations.
This commit is contained in:
parent
78dcba25ec
commit
d794cf4394
5 changed files with 66 additions and 23 deletions
13
config/machines/example-machine/boot.nix
Normal file
13
config/machines/example-machine/boot.nix
Normal file
|
|
@ -0,0 +1,13 @@
|
|||
{
|
||||
# Bootloader configuration
|
||||
# This example uses systemd-boot for UEFI systems
|
||||
# For BIOS systems, use GRUB instead
|
||||
|
||||
# UEFI boot loader (systemd-boot)
|
||||
boot.loader.systemd-boot.enable = true;
|
||||
boot.loader.efi.canTouchEfiVariables = true;
|
||||
|
||||
# Alternative: GRUB for BIOS systems
|
||||
# boot.loader.grub.enable = true;
|
||||
# boot.loader.grub.device = "/dev/sda"; # or "nodev" for UEFI
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue