l lassul.us: fix acme
This commit is contained in:
parent
6d12698fe0
commit
337ae5f489
@ -153,15 +153,15 @@ in {
|
|||||||
};
|
};
|
||||||
|
|
||||||
security.acme.certs."cgit.lassul.us" = {
|
security.acme.certs."cgit.lassul.us" = {
|
||||||
email = "lassulus@gmail.com";
|
email = "lassulus@lassul.us";
|
||||||
webroot = "/var/lib/acme/acme-challenges";
|
webroot = "/var/lib/acme/acme-challenge";
|
||||||
plugins = [
|
plugins = [
|
||||||
"account_key.json"
|
"account_key.json"
|
||||||
"key.pem"
|
|
||||||
"fullchain.pem"
|
"fullchain.pem"
|
||||||
|
"key.pem"
|
||||||
];
|
];
|
||||||
group = "nginx";
|
group = "nginx";
|
||||||
allowKeysForGroup = true;
|
user = "nginx";
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
||||||
@ -170,6 +170,9 @@ in {
|
|||||||
addSSL = true;
|
addSSL = true;
|
||||||
sslCertificate = "/var/lib/acme/cgit.lassul.us/fullchain.pem";
|
sslCertificate = "/var/lib/acme/cgit.lassul.us/fullchain.pem";
|
||||||
sslCertificateKey = "/var/lib/acme/cgit.lassul.us/key.pem";
|
sslCertificateKey = "/var/lib/acme/cgit.lassul.us/key.pem";
|
||||||
|
locations."/.well-known/acme-challenge".extraConfig = ''
|
||||||
|
root /var/lib/acme/acme-challenge;
|
||||||
|
'';
|
||||||
};
|
};
|
||||||
|
|
||||||
users.users.blog = {
|
users.users.blog = {
|
||||||
|
Loading…
Reference in New Issue
Block a user