- Replace kawa:kawa123@100.64.0.1:4222 with NATS placeholders
- Replace initialPassword 'kawa2026' with <INITIAL_PASSWORD>
- Update README with password placeholders
- Add security notes for default credentials
Safe for public release.
- Vosk for offline speech recognition (French)
- pyttsx3 for text-to-speech
- NATS integration for voice commands
- Ollama integration for AI responses
- Works on Debian/Ubuntu/NixOS
Problem: extraUpFlags in services.tailscale blocks boot if network
is not ready or Headscale is unreachable.
Solution:
- services.tailscale.enable = true (installs tailscale)
- Separate kawa-mesh-connect systemd service:
- Waits for network-online.target
- Waits for tailscaled.service
- Connects to mesh after boot
Commands to verify:
systemctl status tailscaled
systemctl status kawa-mesh-connect
tailscale status
- Fix hostname: static value instead of /sys read (pure mode)
- Fix NATS: use settings.http_port instead of httpPort
- Add kawa-base.nix with corrected NATS options
- Update flake.nix to include all modules
- Enable SSH with PermitRootLogin for debugging
- Add nixos/kawa.nix module for NixOS integration
- Add flake.nix for Nix flakes support
- Update setup script to detect and handle NixOS
- Include NATS, Syncthing, and Tailscale configuration
- Add parameters for Headscale connection
