diff options
-rw-r--r-- | hosts/surtr/tls/default.nix | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix index 7e6b370c..9f8d92d6 100644 --- a/hosts/surtr/tls/default.nix +++ b/hosts/surtr/tls/default.nix | |||
@@ -94,10 +94,11 @@ in { | |||
94 | defaults = { | 94 | defaults = { |
95 | email = "phikeebaogobaegh@141.li"; | 95 | email = "phikeebaogobaegh@141.li"; |
96 | keyType = "rsa4096"; # we don't like NIST curves | 96 | keyType = "rsa4096"; # we don't like NIST curves |
97 | extraLegoFlags = [ | 97 | extraLegoRenewFlags = [ |
98 | "--always-deactivate-authorizations" "true" | ||
99 | # "--preferred-chain" "ISRG Root X1" | 98 | # "--preferred-chain" "ISRG Root X1" |
99 | "--always-deactivate-authorizations" "true" | ||
100 | ]; | 100 | ]; |
101 | extraLegoRunFlags = config.security.acme.defaults.extraLegoRenewFlags; | ||
101 | }; | 102 | }; |
102 | certs = | 103 | certs = |
103 | let | 104 | let |