I haven't used this homegrown backup system, storing stuff on MP's
onedrive. It had too many warts, and re/deploying secrets alone was not
sufficient. I'll find other workaround for it later.
All secrets are now separated per host, i.e. hermes and bebop only
deploy the secrets that they need.
- Code is duplicated across agenix.nix files in both hosts, but that is
a problem for another day
- outline secret is removed as well as allowing broken nginx package for
it
- onedrive upload secrets are also removed now, since I haven't used
them for nearly 2 years now.
I like tiddywiki better. It is much nicer to setup, fast and no
bullshit.
For now, I'm keeping 'minio', just in case I have to experiment with S3
compatibility for something, but outline is definitely gone
After more than a year later, I've moved back to NixOS on bare-metal.
WSL is fine and all, but it has enough warts that get really annoying,
especially as a Java developer.
emacs29-pgtk is now available from NixOS-unstable directly.
the overlay still provides some updates, like more frequent ELPA/MELPA
package updates, but they are incompatible with how doom manages package
updates anyway. I might think about bringin back the overlay without
emacs itself in future, but for now, I'm getting off the bandwagon.
The plan was and still is to get off of overlay and emacs unstable
completely. While the run was pretty good, I consider Emacs to be part
of my digital infrastructure now, and having it broken means bad news.
Removing overlay and going back to stable branch just means reducing the
number of moving pieces, having more eyes on common friction points and
faster resolution. Hope this works as well as I'm expecting now.
Ideally this should be split into separate packages, but we'll see. This
commit enables two services for bebop:
- outline (getoutline.com)
A personal notion.so - like note-taking and knowledge base.
I do like and prefer org-mode, but this is nicer looking and useful
for gen-pop.
- paperless
To store all documents in PDF format plus automatically OCR them and
query the OCR'ed text.
I'm not sure whether the passwordless sudo is required, but I'm too
tired to test right now. Anyway, this works.
Also unsure on the statelessness of deploy-rs, but again, its simple
enough, didn't require changing anything else much and it works.
Perhaps some day, I'll see about trying out colmena for deploying
secrets, but until then, agenix is good enough for my needs.
Right now this fails, because what I assume is a failure with emulation
in WSL, but otherwise I'm linking the overall approach of reusing the
preconfigured nixOSConfigurations in the same flake, as well as
lightweight burden of configuration. Doesn't hurt that it is written in
Rust rather than Python.