diff options
author | lassulus <lassulus@lassul.us> | 2017-11-12 13:23:06 +0100 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2017-11-12 13:23:06 +0100 |
commit | aac78c4822aec5c017fb3d072d09e7de64cd15ef (patch) | |
tree | ebf2efca958f6573191a76c4714b1dade47540db | |
parent | bfd75eb50477aaf2adcab8742e6eabd705abde05 (diff) |
l cgit.lassul.us: fix acme
-rw-r--r-- | lass/2configs/websites/lassulus.nix | 16 |
1 files changed, 15 insertions, 1 deletions
diff --git a/lass/2configs/websites/lassulus.nix b/lass/2configs/websites/lassulus.nix index 1eca2efd7..77f0c79e3 100644 --- a/lass/2configs/websites/lassulus.nix +++ b/lass/2configs/websites/lassulus.nix @@ -152,10 +152,24 @@ in { ''; }; + security.acme.certs."cgit.lassul.us" = { + email = "lassulus@gmail.com"; + webroot = "/var/lib/acme/acme-challenges"; + plugins = [ + "account_key.json" + "key.pem" + "fullchain.pem" + ]; + group = "nginx"; + allowKeysForGroup = true; + }; + + services.nginx.virtualHosts.cgit = { serverName = "cgit.lassul.us"; addSSL = true; - enableACME = true; + sslCertificate = "/var/lib/acme/cgit.lassul.us/fullchain.pem"; + sslCertificateKey = "/var/lib/acme/cgit.lassul.us/key.pem"; }; users.users.blog = { |