jordan/nix-config
1
1
Fork 0
Code Issues 14 Pull Requests Actions Projects 3 Wiki Activity

Set ACME client defaults in server.nix

Browse Source
This commit is contained in:
Jordan Holt 2024-05-17 23:01:07 +01:00
parent b16a42732a
commit 92c3bd3a13
Signed by: jordan
GPG Key ID: B8CFFF61F1CCF520
3 changed files with 8 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
hosts/mail/default.nix
View File

@ -30,12 +30,6 @@
services.openssh.settings.PermitRootLogin = lib.mkForce "prohibit-password"; services.openssh.settings.PermitRootLogin = lib.mkForce "prohibit-password";
security.acme.defaults = {
email = "hostmaster@vimium.com";
group = "nginx";
webroot = "/var/lib/acme/acme-challenge";
};
modules = { modules = {
services = { services = {
borgmatic = { borgmatic = {

9
hosts/server.nix
View File

@ -10,7 +10,14 @@
fonts.fontconfig.enable = false; fonts.fontconfig.enable = false;
security = { security = {
acme.acceptTerms = true; acme = {
acceptTerms = true;
defaults = {
email = "hostmaster@vimium.com";
group = "nginx";
webroot = "/var/lib/acme/acme-challenge";
};
};
auditd.enable = true; auditd.enable = true;
audit = { audit = {
enable = true; enable = true;

6
hosts/vps1/default.nix
View File

@ -40,12 +40,6 @@
services.openssh.settings.PermitRootLogin = lib.mkForce "prohibit-password"; services.openssh.settings.PermitRootLogin = lib.mkForce "prohibit-password";
security.acme.defaults = {
email = "hostmaster@vimium.com";
group = "nginx";
webroot = "/var/lib/acme/acme-challenge";
};
modules = { modules = {
services = { services = {
borgmatic = { borgmatic = {