Revert "Revert "...""

This reverts commit 1e82933a01dcc3810d635567dbef0de286c1e8f2.

1 files changed, 4 insertions, 0 deletions

diff --git a/hosts/surtr/email/default.nix b/hosts/surtr/email/default.nix
index 0e2a78eb..01c22ce5 100644
--- a/hosts/surtr/email/default.nix
+++ b/hosts/surtr/email/default.nix
@@ -716,6 +716,8 @@ in {
 
       virtualHosts = listToAttrs (map (domain: nameValuePair "spm.${domain}" {
         forceSSL = true;
+        kTLS = true;
+        http3 = true;
         sslCertificate = "/run/credentials/nginx.service/spm.${domain}.pem";
         sslCertificateKey = "/run/credentials/nginx.service/spm.${domain}.key.pem";
         extraConfig = ''
@@ -734,6 +736,8 @@ in {
         };
       }) spmDomains) // listToAttrs (map (domain: nameValuePair "mta-sts.${domain}" {
           forceSSL = true;
+          kTLS = true;
+          http3 = true;
           sslCertificate = "/run/credentials/nginx.service/mta-sts.${domain}.pem";
           sslCertificateKey = "/run/credentials/nginx.service/mta-sts.${domain}.key.pem";
           sslTrustedCertificate = "/run/credentials/nginx.service/mta-sts.${domain}.chain.pem";