summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--ymir.nix6
1 files changed, 5 insertions, 1 deletions
diff --git a/ymir.nix b/ymir.nix
index 8d5f9e62..1853affa 100644
--- a/ymir.nix
+++ b/ymir.nix
@@ -835,7 +835,6 @@ in rec {
835 security.wrappers = { "newgrp".source = "${pkgs.shadow}/bin/newgrp"; }; 835 security.wrappers = { "newgrp".source = "${pkgs.shadow}/bin/newgrp"; };
836 836
837 security.acme = { 837 security.acme = {
838 acceptTerms = true;
839 certs = { 838 certs = {
840 "yggdrasil.li" = { 839 "yggdrasil.li" = {
841 allowKeysForGroup = true; 840 allowKeysForGroup = true;
@@ -851,6 +850,11 @@ in rec {
851 }; 850 };
852 851
853 systemd.services."acme-yggdrasil.li".requires = [ "nginx.service" ]; 852 systemd.services."acme-yggdrasil.li".requires = [ "nginx.service" ];
853 systemd.services."acme-yggdrasil.li".preStart
854 = let mkDir = domain: ''
855 install -d -g ssl -o acme -m 2750 /srv/www/acme/${domain}
856 '';
857 in concatStringsSep "\n" (map mkDir myDomains);
854 858
855 services.uucp = { 859 services.uucp = {
856 enable = true; 860 enable = true;
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-11 09:05:18 +0000