Your user configuration goes to the XDG location of ~/.local/config/dorothy which Dorothy symlinks to ~/.local/share/dorothy/user, your user configuration consists of the following:
commandsdirectory, for public commandscommands.localdirectory, for private commands (git ignored by default)configdirectory, for public configurationconfig.localdirectory, for private configuration (git ignored by default)
The order of preference within Dorothy is (commands|config).local first, then (commands|config), then Dorothy's own (commands|config) then everything else.
You can find the various configuration files that are available to you by browsing Dorothy's default config directory.
When setting up your user configuration, Dorothy will make sure that the *.local directories are git ignored by default (using $DOROTHY/user/.gitignore), so that they are not unintentionally pushed to the public.
To share this git ignored configuration between your machines, you would have to use a tool like Dorothy's cpr command to copy the configuration between machines.
To work around the sharing difficulty of git ignored configuration, Dorothy also supports Strongbox encryption, which allows you to encrypt your *.local directories, sync them with git, and keep them private from everyone who doesn't have your Strongbox key.
To start using Strongbox for your *.local configuration:
# enter your user configuration directory
cd "$DOROTHY/user"
# install strongbox
setup-util-strongbox
# initialize strongbox for your user repository
strongbox -git-config
# add the .local directories to your user repository's .gitattributes file
echo '*.local/* filter=strongbox diff=strongbox' >> .gitattributes
# generate your strongbox key
strongbox -gen-key 'username/repository'
# remove the .local entries from your .gitignore
edit .gitignore
# add the files to git and thus strongbox
git add .
# check if they are encrypted
git diff-index -p masterWhen Dorothy checks out a Strongbox configured repository it will prompt you to copy of the Strongbox key to the machine beforehand, to ensure decryption works correctly.
Dorothy's secret command allows you to map 1Password fields to easy to use identifiers, that you can securely fetch via secret get SUPER_SECRET_TOKEN or expose only to a specific command secret env SUPER_SECRET_TOKEN -- echo-style --invert='$SUPER_SECRET_TOKEN'. Its database that maps a secret identifier to a 1Password vault, item, and field is stored in $DOROTHY/user/config.local/secret.json.
If you aren't using the secret command, you can use $DOROTHY/user/config.local/environment.bash to export private environment variables:
#!/usr/bin/env bash
# ...
export SUPER_SECRET_TOKEN
# load my default environment configuration
source "$DOROTHY/user/config/environment.bash"
# export my private environment variables
SUPER_SECRET_TOKEN='you will never know'Use $DOROTHY/user/config.local/dns.bash to configure private DNS configuration customized for your machine's hostname:
#!/usr/bin/env bash
# ...
hostname="$(get-hostname)"
if [[ "$hostname" = 'vm-'* ]]; then
# use quad9 in virtual machines
export DNS_PROVIDER='quad9'
elif [[ "$hostname" = 'blue-'* ]]; then
# use custom settings on servers
# redacted
elif [[ "$hostname" = 'green-'* ]]; then
# use custom settings on personal machines
# redacted
elif [[ "$hostname" = 'red-'* ]]; then
# use custom settings on family machines
# redacted
fiUse $DOROTHY/user/config.local/setup.bash to skip loading your $DOROTHY/user/config/setup.bash configuration on virtual machine hostnames:
#!/usr/bin/env bash
hostname="$(get-hostname)"
if [[ "$hostname" != 'vm-'* ]]; then
source "$DOROTHY/user/config/setup.bash"
fi