summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--hosts/surtr/http.nix7
1 files changed, 5 insertions, 2 deletions
diff --git a/hosts/surtr/http.nix b/hosts/surtr/http.nix
index 032b1fa5..6edc1466 100644
--- a/hosts/surtr/http.nix
+++ b/hosts/surtr/http.nix
@@ -50,7 +50,7 @@
50 virtualHosts = { 50 virtualHosts = {
51 "webdav.141.li" = { 51 "webdav.141.li" = {
52 forceSSL = true; 52 forceSSL = true;
53 sslCertificate = "${config.security.acme.certs."webdav.141.li".directory}/fullchain.pem"; 53 sslCertificate = "/run/credentials/nginx.service/webdav.141.li.pem";
54 sslCertificateKey = "/run/credentials/nginx.service/webdav.141.li.key.pem"; 54 sslCertificateKey = "/run/credentials/nginx.service/webdav.141.li.key.pem";
55 locations."/" = { 55 locations."/" = {
56 proxyPass = "http://webdav/"; 56 proxyPass = "http://webdav/";
@@ -69,7 +69,10 @@
69 systemd.services.nginx = { 69 systemd.services.nginx = {
70 preStart = lib.mkForce config.services.nginx.preStart; 70 preStart = lib.mkForce config.services.nginx.preStart;
71 serviceConfig = { 71 serviceConfig = {
72 LoadCredential = [ "webdav.141.li.key.pem:${config.security.acme.certs."webdav.141.li".directory}/key.pem" ]; 72 LoadCredential = [
73 "webdav.141.li.key.pem:${config.security.acme.certs."webdav.141.li".directory}/key.pem"
74 "webdav.141.li.pem:${config.security.acme.certs."webdav.141.li".directory}/fullchain.pem"
75 ];
73 }; 76 };
74 }; 77 };
75 }; 78 };
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-11 09:50:07 +0000