nixos-and-flakes-book/docs/nixos-with-flakes/get-started-with-nixos.md
2023-07-04 13:56:18 +08:00

4.1 KiB

Get Started with NixOS

Now that we have learned the basics of the Nix language, we can start using it to configure our NixOS system. The default configuration file for NixOS is located at /etc/nixos/configuration.nix. This file contains all the declarative configuration for the system, including settings for the time zone, language, keyboard layout, network, users, file system, and boot options.

To modify the system state in a reproducible manner (which is highly recommended), we need to manually edit the /etc/nixos/configuration.nix file and then execute sudo nixos-rebuild switch to apply the modified configuration. This command generates a new system environment based on the modified configuration file, sets the new environment as the default one, and preserves the previous environment in the boot options of grub/systemd-boot. This ensures that we can always roll back to the old environment if the new one fails to start.

While /etc/nixos/configuration.nix is the classic method for configuring NixOS, it relies on data sources configured by nix-channel and lacks a version-locking mechanism, making it challenging to ensure the reproducibility of the system. A better approach is to use Flakes, which provides reproducibility and facilitates configuration management.

In this section, we will first learn how to manage NixOS using the classic method (/etc/nixos/configuration.nix), and then we will explore the more advanced Flakes.

Configuring the System using /etc/nixos/configuration.nix

The /etc/nixos/configuration.nix file is the default and classic method for configuring NixOS. While it lacks some of the advanced features of Flakes, it is still widely used and provides flexibility in system configuration.

To illustrate how to use /etc/nixos/configuration.nix, let's consider an example where we enable SSH and add a user named ryan to the system. We can achieve this by adding the following content to /etc/nixos/configuration.nix:

{ config, pkgs, ... }:

{
  imports =
    [ # Include the results of the hardware scan.
      ./hardware-configuration.nix
    ];

  # Omit previous configuration settings...

  # Add user 'ryan'
  users.users.ryan = {
    isNormalUser = true;
    description = "ryan";
    extraGroups = [ "networkmanager" "wheel" ];
    openssh.authorizedKeys.keys = [
        # Replace with your own public key
        "ssh-ed25519 <some-public-key> ryan@ryan-pc"
    ];
    packages = with pkgs; [
      firefox
    #  thunderbird
    ];
  };

  # Enable openssh-server
  services.openssh = {
    enable = true;
    permitRootLogin = "no";         # Disable root login
    passwordAuthentication = false; # Disable password login
    openFirewall = true;
    forwardX11 = true;              # Enable X11 forwarding
  };

  # Omit the rest of the configuration...
}

In this configuration, we declare our intention to enable the openssh service, add an SSH public key for the user 'ryan', and disable password login.

To deploy the modified configuration, run sudo nixos-rebuild switch. This command will apply the changes, generate a new system environment, and set it as the default. You can now log in to the system using SSH with the configured SSH keys.

Remember that any reproducible changes to the system can be made by modifying the /etc/nixos/configuration.nix file and deploying the changes with sudo nixos-rebuild switch.

To find configuration options and documentation:

  • Use search engines like Google, e.g., search for Chrome NixOS to find NixOS-related information about Chrome. The NixOS Wiki and the source code of Nixpkgs are usually among the top results.
  • Utilize the NixOS Options Search to search for keywords.
  • Refer to the Configuration section in the NixOS Manual for system-level configuration documentation.
  • Search for keywords directly in the source code of nixpkgs on GitHub.

References