summaryrefslogtreecommitdiff
path: root/hosts/surtr/tls
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2022-03-26 16:27:43 +0100
committerGregor Kleen <gkleen@yggdrasil.li>2022-03-26 16:27:43 +0100
commitec7b0f75b5abad46a0d3653741f3da113b665f02 (patch)
treea7ae38dbcb9d6f5a06f6ad2dc26709db2f0091f7 /hosts/surtr/tls
parent2cf55a9d3feedec5e59e0ff955cf21990af21ed4 (diff)
downloadnixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar
nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar.gz
nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar.bz2
nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar.xz
nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.zip
certspotter
Diffstat (limited to 'hosts/surtr/tls')
-rw-r--r--hosts/surtr/tls/default.nix5
1 files changed, 5 insertions, 0 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix
index 6fbab9bd..d204a51d 100644
--- a/hosts/surtr/tls/default.nix
+++ b/hosts/surtr/tls/default.nix
@@ -108,5 +108,10 @@ in {
108 }; 108 };
109 }; 109 };
110 in mapAttrs' (domain: nameValuePair "acme-${domain}") (genAttrs (attrNames config.security.acme.certs) serviceAttrset); 110 in mapAttrs' (domain: nameValuePair "acme-${domain}") (genAttrs (attrNames config.security.acme.certs) serviceAttrset);
111
112 services.certspotter = {
113 watchList = map (domain: ".${domain}") (attrNames cfg.domains);
114 logs = "https://www.gstatic.com/ct/log_list/v2/all_logs_list.json";
115 };
111 }; 116 };
112} 117}