This repository contains my home-manager configuration to setup or restore my mac environment.
Since not all required packages are available via nixpkgs some are installed via brew beforehand.
To run containers download and install orbstack from https://orbstack.dev
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"brew install --cask iterm2 vscodium obsidian postman font-jetbrains-mono-nerd-font
brew install awscli awsume 1password-cli# install nix
sh <(curl -L https://nixos.org/nix/install)
nix-channel --add https://github.com/nix-community/home-manager/archive/master.tar.gz home-manager
nix-channel --add https://nixos.org/channels/nixpkgs-unstable unstable
nix-channel --update
# if not on NixOS execute
export NIX_PATH=$HOME/.nix-defexpr/channels:/nix/var/nix/profiles/per-user/root/channels${NIX_PATH:+:$NIX_PATH}
# install home-manager
nix-shell '<home-manager>' -A installrm -rf ~/.config/home-manager/
git clone https://github.com/flohessling/.nixpkgs.git ~/.config/home-manager/home-manager switchThe secrets are en- / decrypted using GPG, which should be installed by now
// with yubikey
git-crypt unlock
// with 1password
op document get .gitcrypt --force | git-crypt unlock -Upgrading nix on macOS requires the restart of the daemon
sudo -i sh -c 'nix-channel --update && nix-env -iA nixpkgs.nix && launchctl remove org.nixos.nix-daemon && launchctl load /Library/LaunchDaemons/org.nixos.nix-daemon.plist'
After upgrading macOS /etc/zshrc is reset and loses the Nix specific lines that have to be added again to get nix running again.
# Nix
if [ -e '/nix/var/nix/profiles/default/etc/profile.d/nix-daemon.sh' ]; then
. '/nix/var/nix/profiles/default/etc/profile.d/nix-daemon.sh'
fi
# End NixmacOS updates also tend to reset the pam.d/sudo file to use touchID for sudo commands.
Adding this line to /etc/pam.d/sudo enables touchID for sudo password prompts:
auth sufficient pam_tid.so