feat: add nix-darwin scaffolding for macOS hosts #424

Open

lytedev wants to merge 1 commit from nix-darwin into main

pull from: nix-darwin

merge into: lytedev:main

lytedev:main

lytedev:self-hosted-dns

lytedev:fix-runner-tmpfs-revert

lytedev:github-mirror

lytedev:nix-on-droid

lytedev:stalwart-cors

lytedev:mail-phase1-beefcake

lytedev:beefcake-email

lytedev:beefcake-immich

lytedev:firefox-nightly-devedition

lytedev:opencode-jj-plugin

lytedev:fix-bun-baseline

lytedev:fix-user-env-manifest-perms

lytedev:cleanup-home-manager

lytedev:stale-symlink-cleanup

lytedev:flab-stuff

lytedev:printer-sftp

lytedev:dragon-vr-monado

lytedev:clever-vr-game-clamshell-mode-detection

lytedev:wireguard-mesh

Conversation 0 Commits 1 Files changed 10 +430 -1

lytedev commented 2026-03-23 15:02:48 -05:00

Owner

Copy link

Summary

• Add nix-darwin flake input (following nixpkgs-unstable)
• Add darwinConfigurations and darwinModules flake outputs
• Add darwinHost builder in lib/host.nix mirroring the NixOS baseHost pattern
• Add darwin modules: default (nix settings, sops, Touch ID sudo), shell-config (fish + CLI tools + dotfile symlinks), user-env (symlink management via system.activationScripts)
• Add packages/hosts/darwin/ with example template host config
• No hosts enabled yet — ready for real mac hostnames

Test plan

• nix flake check --no-build passes
• nix eval .#darwinConfigurations returns {}
• Temporarily enabling example-mac: nix eval .#darwinConfigurations.example-mac.config.networking.hostName returns "example-mac"
• Bootstrap on an actual mac with darwin-rebuild switch --flake .#<hostname>

🤖 Generated with Claude Code

## Summary - Add `nix-darwin` flake input (following `nixpkgs-unstable`) - Add `darwinConfigurations` and `darwinModules` flake outputs - Add `darwinHost` builder in `lib/host.nix` mirroring the NixOS `baseHost` pattern - Add darwin modules: default (nix settings, sops, Touch ID sudo), shell-config (fish + CLI tools + dotfile symlinks), user-env (symlink management via `system.activationScripts`) - Add `packages/hosts/darwin/` with example template host config - No hosts enabled yet — ready for real mac hostnames ## Test plan - [x] `nix flake check --no-build` passes - [x] `nix eval .#darwinConfigurations` returns `{}` - [x] Temporarily enabling example-mac: `nix eval .#darwinConfigurations.example-mac.config.networking.hostName` returns `"example-mac"` - [ ] Bootstrap on an actual mac with `darwin-rebuild switch --flake .#<hostname>` 🤖 Generated with [Claude Code](https://claude.com/claude-code)

lytedev added 4 commits 2026-03-23 15:02:48 -05:00

feat: auto-provision Bulwark OAuth client in Stalwart via systemd ... 8e63bc9b53

Adds a oneshot service that ensures the bulwark-webmail OAuth client
principal exists in Stalwart's internal directory. Idempotent — checks
first, creates only if missing.

style: format bulwark.nix 0dd24e7f4b

style: format bulwark.nix and mail.nix 9377468353

feat: add nix-darwin scaffolding for macOS hosts ... c09c77f25b

Add nix-darwin flake input, darwinConfigurations/darwinModules outputs,
darwinHost builder, and darwin-specific modules (shell, user-env, defaults).
Mirrors the NixOS module pattern with darwin adaptations (Touch ID sudo,
macOS paths, system.activationScripts for user env).

No hosts are enabled yet — includes an example-mac.nix template.

lytedev force-pushed nix-darwin from c09c77f25b to 91286e3ad2 2026-03-23 15:33:51 -05:00 Compare

All checks were successful

Hide all checks

/ check-format (push) Successful in 10s

Required

Details

/ build (push) Successful in 6m19s

Required

Details

This pull request can be merged automatically.

This branch is out-of-date with the base branch

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin nix-darwin:nix-darwin

git switch nix-darwin

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

bug

Something is wrong

  

enhancement

New feature

  

question

Awaiting information

  

scary

Potentially problematic change

  

upstream

Awaiting upstream changes

No labels

bug

enhancement

question

scary

upstream

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

lytedev/nix!424

No description provided.