summaryrefslogtreecommitdiff
path: root/hosts/surtr/tls
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2022-12-27 16:15:52 +0100
committerGregor Kleen <gkleen@yggdrasil.li>2022-12-27 16:15:52 +0100
commit33e9ba7f890a9b92c2f3741d64668963413003c3 (patch)
tree2ae4300ef574144fdfc74ff49251e675be4dbe59 /hosts/surtr/tls
parentfa46d01d16aad10b28e2ad25957df7727dfc4854 (diff)
downloadnixos-33e9ba7f890a9b92c2f3741d64668963413003c3.tar
nixos-33e9ba7f890a9b92c2f3741d64668963413003c3.tar.gz
nixos-33e9ba7f890a9b92c2f3741d64668963413003c3.tar.bz2
nixos-33e9ba7f890a9b92c2f3741d64668963413003c3.tar.xz
nixos-33e9ba7f890a9b92c2f3741d64668963413003c3.zip
...
Diffstat (limited to 'hosts/surtr/tls')
-rw-r--r--hosts/surtr/tls/default.nix3
1 files changed, 2 insertions, 1 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix
index 4e60a3f9..f1a515db 100644
--- a/hosts/surtr/tls/default.nix
+++ b/hosts/surtr/tls/default.nix
@@ -65,7 +65,7 @@ in {
65 extraDomainNames = optional cfg.domains.${domain}.wildcard "*.${domain}"; 65 extraDomainNames = optional cfg.domains.${domain}.wildcard "*.${domain}";
66 dnsResolver = "127.0.0.1:5353"; 66 dnsResolver = "127.0.0.1:5353";
67 }; 67 };
68 mkRFC2136 = shared // { 68 mkRFC2136 = shared // rec {
69 dnsProvider = "rfc2136"; 69 dnsProvider = "rfc2136";
70 credentialsFile = pkgs.writeText "${domain}_credentials.env" '' 70 credentialsFile = pkgs.writeText "${domain}_credentials.env" ''
71 RFC2136_NAMESERVER=127.0.0.1:53 71 RFC2136_NAMESERVER=127.0.0.1:53
@@ -77,6 +77,7 @@ in {
77 RFC2136_POLLING_INTERVAL=2 77 RFC2136_POLLING_INTERVAL=2
78 RFC2136_SEQUENCE_INTERVAL=1 78 RFC2136_SEQUENCE_INTERVAL=1
79 ''; 79 '';
80 dnsPropagationCheck = false;
80 }; 81 };
81 in assert isTsig; mkRFC2136 // cfg.domains.${domain}.certCfg; 82 in assert isTsig; mkRFC2136 // cfg.domains.${domain}.certCfg;
82 in genAttrs (attrNames cfg.domains) domainAttrset; 83 in genAttrs (attrNames cfg.domains) domainAttrset;