Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

l websites lassul.us: use enableACME

Browse Source
This commit is contained in:
lassulus 2017-09-18 00:04:06 +02:00
parent de16ae2a12
commit c40c6ead1e
1 changed files with 1 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
lass/2configs/websites/lassulus.nix
View File

@ -14,14 +14,6 @@ in {
security.acme = { security.acme = {
certs."lassul.us" = { certs."lassul.us" = {
email = "lass@lassul.us";
webroot = "/var/lib/acme/acme-challenges";
plugins = [
"account_key.json"
"key.pem"
"fullchain.pem"
"full.pem"
];
allowKeysForGroup = true; allowKeysForGroup = true;
group = "lasscert"; group = "lasscert";
}; };
@ -71,13 +63,11 @@ in {
]; ];
services.nginx.virtualHosts."lassul.us" = { services.nginx.virtualHosts."lassul.us" = {
enableACME = true;
serverAliases = [ "lassul.us" ]; serverAliases = [ "lassul.us" ];
locations."/".extraConfig = '' locations."/".extraConfig = ''
root /srv/http/lassul.us; root /srv/http/lassul.us;
''; '';
locations."/.well-known/acme-challenge".extraConfig = ''
root /var/lib/acme/challenges/lassul.us/;
'';
locations."= /retiolum-hosts.tar.bz2".extraConfig = '' locations."= /retiolum-hosts.tar.bz2".extraConfig = ''
alias ${config.krebs.tinc.retiolum.hostsArchive}; alias ${config.krebs.tinc.retiolum.hostsArchive};
''; '';