summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorlassulus <lassulus@lassul.us>2017-11-12 13:23:06 +0100
committerlassulus <lassulus@lassul.us>2017-11-12 13:23:06 +0100
commitaac78c4822aec5c017fb3d072d09e7de64cd15ef (patch)
treeebf2efca958f6573191a76c4714b1dade47540db
parentbfd75eb50477aaf2adcab8742e6eabd705abde05 (diff)
l cgit.lassul.us: fix acme
-rw-r--r--lass/2configs/websites/lassulus.nix16
1 files changed, 15 insertions, 1 deletions
diff --git a/lass/2configs/websites/lassulus.nix b/lass/2configs/websites/lassulus.nix
index 1eca2efd7..77f0c79e3 100644
--- a/lass/2configs/websites/lassulus.nix
+++ b/lass/2configs/websites/lassulus.nix
@@ -152,10 +152,24 @@ in {
'';
};
+ security.acme.certs."cgit.lassul.us" = {
+ email = "lassulus@gmail.com";
+ webroot = "/var/lib/acme/acme-challenges";
+ plugins = [
+ "account_key.json"
+ "key.pem"
+ "fullchain.pem"
+ ];
+ group = "nginx";
+ allowKeysForGroup = true;
+ };
+
+
services.nginx.virtualHosts.cgit = {
serverName = "cgit.lassul.us";
addSSL = true;
- enableACME = true;
+ sslCertificate = "/var/lib/acme/cgit.lassul.us/fullchain.pem";
+ sslCertificateKey = "/var/lib/acme/cgit.lassul.us/key.pem";
};
users.users.blog = {