pastila: wip letsencrypt setup

This commit is contained in:
root 2024-05-31 11:56:19 +02:00
parent 1fe2075869
commit ffd261ab2d
2 changed files with 27 additions and 0 deletions

View file

@ -11,6 +11,7 @@ in
./backups.nix
./armael.nix
./gitolite.nix
./letsencrypt.nix
];
# Use the GRUB 2 boot loader.
@ -56,6 +57,7 @@ in
weechat
transmission
tremc
poezio
];
# This option defines the first version of NixOS you have installed on this particular machine,

25
pastila/letsencrypt.nix Normal file
View file

@ -0,0 +1,25 @@
{ config, lib, pkgs, ... }:
{
security.acme = {
acceptTerms = true;
defaults.email = "armael@deuxfleurs.fr";
defaults.dnsProvider = "gandiv5";
defaults.credentialFiles = {
"GANDIV5_PERSONAL_ACCESS_TOKEN_FILE" = "/etc/secrets/acme/gandi_access_token";
"GANDIV5_API_KEY_FILE" = "/etc/secrets/acme/gandi_api_key";
};
# certs."isomorphis.me" = {};
# certs."mail" = {
# domain = "smtp.isomorphis.me";
# extraDomainNames = [
# "imap.isomorphis.me"
# "smtp.tremeg.net"
# "imap.tremeg.net"
# "smtp.gueneau.me"
# "imap.gueneau.me"
# ];
# };
certs."pastila.isomorphis.me" = {};
};
}