diff options
| author | Gregor Kleen <gkleen@yggdrasil.li> | 2022-03-26 16:27:43 +0100 |
|---|---|---|
| committer | Gregor Kleen <gkleen@yggdrasil.li> | 2022-03-26 16:27:43 +0100 |
| commit | ec7b0f75b5abad46a0d3653741f3da113b665f02 (patch) | |
| tree | a7ae38dbcb9d6f5a06f6ad2dc26709db2f0091f7 /hosts | |
| parent | 2cf55a9d3feedec5e59e0ff955cf21990af21ed4 (diff) | |
| download | nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar.gz nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar.bz2 nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.tar.xz nixos-ec7b0f75b5abad46a0d3653741f3da113b665f02.zip | |
certspotter
Diffstat (limited to 'hosts')
| -rw-r--r-- | hosts/surtr/tls/default.nix | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix index 6fbab9bd..d204a51d 100644 --- a/hosts/surtr/tls/default.nix +++ b/hosts/surtr/tls/default.nix | |||
| @@ -108,5 +108,10 @@ in { | |||
| 108 | }; | 108 | }; |
| 109 | }; | 109 | }; |
| 110 | in mapAttrs' (domain: nameValuePair "acme-${domain}") (genAttrs (attrNames config.security.acme.certs) serviceAttrset); | 110 | in mapAttrs' (domain: nameValuePair "acme-${domain}") (genAttrs (attrNames config.security.acme.certs) serviceAttrset); |
| 111 | |||
| 112 | services.certspotter = { | ||
| 113 | watchList = map (domain: ".${domain}") (attrNames cfg.domains); | ||
| 114 | logs = "https://www.gstatic.com/ct/log_list/v2/all_logs_list.json"; | ||
| 115 | }; | ||
| 111 | }; | 116 | }; |
| 112 | } | 117 | } |