Initial commit: Ultimate Notetaking, Sync & Backup System

A NixOS-based system for managing personal data across three tiers:
- Tier 1: Configuration (shareable via git)
- Tier 2: Syncable data (nb + Syncthing)
- Tier 3: Large data (self-hosted services + backup)

Includes:
- NixOS modules for nb, Syncthing, backup (restic)
- Server modules for Forgejo, Immich, Jellyfin
- Helper scripts (usync, ustatus)
- Comprehensive documentation

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

secrets/secrets.yaml.example

@@ -0,0 +1,38 @@
+# Example secrets file for sops-nix
+#
+# This file shows the structure of secrets.yaml.
+# DO NOT put actual secrets in this file!
+#
+# To use:
+# 1. Install sops and age
+# 2. Create age key: age-keygen -o ~/.config/sops/age/keys.txt
+# 3. Create .sops.yaml in repo root with your public key
+# 4. Copy this to secrets.yaml and encrypt: sops secrets/secrets.yaml
+#
+# Example .sops.yaml:
+# ---
+# keys:
+#   - &admin age1xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
+# creation_rules:
+#   - path_regex: secrets/secrets\.yaml$
+#     key_groups:
+#       - age:
+#           - *admin
+
+# Restic backup password
+restic-password: "your-secure-backup-password-here"
+
+# Syncthing API key (optional, for automation)
+syncthing-api-key: "your-syncthing-api-key"
+
+# Cloud storage credentials
+# For Backblaze B2:
+b2-account-id: "your-b2-account-id"
+b2-account-key: "your-b2-account-key"
+
+# For AWS S3:
+# aws-access-key-id: "your-aws-key"
+# aws-secret-access-key: "your-aws-secret"
+
+# Forgejo admin password (initial setup)
+forgejo-admin-password: "your-forgejo-admin-password"