No description

Find a file

padreug 667912e732 Add recommended Nginx settings and enable automatic SSL with Let's Encrypt Enhanced the shared Nix configuration by adding recommended settings for Nginx, including Gzip, optimization, and TLS settings. Disabled proxy settings to prevent interference with WebSocket. Additionally, enabled automatic SSL certificate generation using Let's Encrypt and configured fail2ban for improved security. This update aims to strengthen the web application's security and performance while maintaining flexibility in the Nginx setup.		2025-10-08 17:16:33 +02:00
config	Add recommended Nginx settings and enable automatic SSL with Let's Encrypt	2025-10-08 17:16:33 +02:00
web-app	Add web-app with machine-specific builds	2025-09-30 11:15:31 +02:00
.gitignore	Refactor to build web-app locally before deployment	2025-10-01 17:26:01 +02:00
DEPLOYMENT-GUIDE.md	Refactor to build web-app locally before deployment	2025-10-01 17:26:01 +02:00
README.md	Add krops multi-machine deployment configuration for nix-25.05	2025-09-30 11:05:52 +02:00

README.md

Krops Multi-Machine Deployment

This project deploys NixOS configurations to two machines using krops with nix-25.05.

Structure

.
├── krops.nix                      # Main deployment configuration
└── config/
    ├── machine1/
    │   └── configuration.nix      # Machine 1 NixOS config
    └── machine2/
        └── configuration.nix      # Machine 2 NixOS config

Setup

Update target hostnames/IPs in krops.nix:
- Change root@machine1.example.com to your machine1 address
- Change root@machine2.example.com to your machine2 address
Customize NixOS configurations in config/machine1/configuration.nix and config/machine2/configuration.nix

Usage

Deploy to a single machine:

nix-build ./krops.nix -A machine1 && ./result
nix-build ./krops.nix -A machine2 && ./result

Deploy to all machines:

nix-build ./krops.nix -A all && ./result

Requirements

SSH access to target machines as root
Target machines running NixOS
nix installed on the deployment machine