atproto-nix.org NixOS Configuration

NixOS configuration for snek.cc hosting ATProto services.

Services

Bluesky PDS - Personal Data Server at pds.snek.cc
Microcosm Constellation - Available at constellation.snek.cc (alias: con.snek.cc)
Microcosm Spacedust - Available at spacedust.snek.cc (alias: sd.snek.cc)
Static Sites - Main site and PDSLS at snek.cc and pdsls.snek.cc

Features

Rate-limited API endpoints (10 req/s, burst 20)
Automatic TLS with on-demand certificate generation
Caddy reverse proxy with custom rate limiting plugin
sops-nix for secrets management

Secrets Management

Secrets are managed using sops-nix with age encryption via SSH host key:

pds_jwt_secret - JWT signing key for PDS
pds_admin_password - Admin password
pds_plc_rotation_key - PLC rotation key
acme_email - Email for ACME/Let's Encrypt

Edit secrets with:

sops secrets.sops.yaml

Deployment

nixos-rebuild switch --flake .#nixos

Repository

tangled

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
www/snek.cc		www/snek.cc
LICENSE		LICENSE
README.md		README.md
configuration.nix		configuration.nix
flake.lock		flake.lock
flake.nix		flake.nix
hardware-configuration.nix		hardware-configuration.nix
secrets.sops.yaml		secrets.sops.yaml
setup_pds_secrets.sh		setup_pds_secrets.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

atproto-nix.org NixOS Configuration

Services

Features

Secrets Management

Deployment

Repository

About

Uh oh!

Releases

Packages

Languages

License

atproto-nix/nixos

Folders and files

Latest commit

History

Repository files navigation

atproto-nix.org NixOS Configuration

Services

Features

Secrets Management

Deployment

Repository

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages