Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

l 1 prism: fix ssl for cgit.lassul.us

Browse Source
This commit is contained in:
lassulus 2016-07-07 23:07:22 +02:00
parent 6eab08eef6
commit 13486879b7
1 changed files with 17 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
lass/1systems/prism.nix
View File

@ -1,5 +1,7 @@
{ config, lib, pkgs, ... }:
with config.krebs.lib;
let
ip = config.krebs.build.host.nets.internet.ip4.addr;
@ -24,11 +26,22 @@ in {
{
imports = [
../2configs/git.nix
( manageCerts [ "cgit.lassul.us" ])
];
krebs.nginx.servers.cgit.server-names = [
"cgit.lassul.us"
];
krebs.nginx.servers.cgit = {
server-names = [
"cgit.lassul.us"
];
locations = [
(nameValuePair "/.well-known/acme-challenge" ''
root /var/lib/acme/challenges/cgit.lassul.us/;
'')
];
ssl = {
enable = true;
certificate = "/var/lib/acme/cgit.lassul.us/fullchain.pem";
certificate_key = "/var/lib/acme/cgit.lassul.us/key.pem";
};
};
}
{
users.extraGroups = {