eliribble
/
nixos-systems
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add ACME-based Let's Encrypt certificate for TLS 

The bare "sovr.cloud" certificate doesn't work yet, but I'm leaving it
there for now.
This commit is contained in:
Eli Ribble 2025-01-03 09:02:07 -07:00
parent f57f7097c1
commit d7aabdf198
1 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
sovr/etc/nixos/configuration.nix
View File

@ -41,6 +41,22 @@
programs.neovim.enable = true; programs.neovim.enable = true;
programs.neovim.defaultEditor = true; programs.neovim.defaultEditor = true;
security.acme = {
acceptTerms = true;
certs."_.sovr.cloud" = {
dnsProvider = "porkbun";
domain = "*.sovr.cloud";
environmentFile = "/opt/keys/porkbun";
group = "nginx";
};
/*certs."sovr.cloud" = {
dnsProvider = "porkbun";
domain = "sovr.cloud";
environmentFile = "/opt/keys/porkbun";
group = "nginx";
};*/
defaults.email = "eli@theribbles.org";
};
# Configure network proxy if necessary # Configure network proxy if necessary
# networking.proxy.default = "http://user:password@proxy:port/"; # networking.proxy.default = "http://user:password@proxy:port/";
# networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain"; # networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain";