* Use Agenix to store secrets out in the open (encrypted with your SSH key)
* Use home-manager
* Keep config modular so you can selectively include it in various hosts and domains (e.g. desktop vs server).
Think of it as building software when you figure out how to organize your config. The bulletpoints above can all be a bit difficult to figure out so don't feel bad if you don't get them installed right away. Try to start with a machine that isn't your daily driver and blocking your workflow.
https://github.com/MatthewCroughan/nixcfg
https://github.com/hlissner/dotfiles
https://github.com/georgewhewell/nixos-host
https://github.com/ipetkov/dotfiles
There's also the DevOS project, which is an attempt to create a base of boilerplate than anyone can use as a start to build a system:
https://devos.divnix.com/
Recommendations:
* Definitely use flakes
* Use Agenix to store secrets out in the open (encrypted with your SSH key)
* Use home-manager
* Keep config modular so you can selectively include it in various hosts and domains (e.g. desktop vs server).
Think of it as building software when you figure out how to organize your config. The bulletpoints above can all be a bit difficult to figure out so don't feel bad if you don't get them installed right away. Try to start with a machine that isn't your daily driver and blocking your workflow.