summaryrefslogtreecommitdiff
path: root/hosts/surtr/tls.nix
diff options
context:
space:
mode:
Diffstat (limited to 'hosts/surtr/tls.nix')
-rw-r--r--hosts/surtr/tls.nix4
1 files changed, 3 insertions, 1 deletions
diff --git a/hosts/surtr/tls.nix b/hosts/surtr/tls.nix
index cc868f45..9cd6bd0c 100644
--- a/hosts/surtr/tls.nix
+++ b/hosts/surtr/tls.nix
@@ -4,6 +4,8 @@ let
4 4
5 knotDNSCredentials = zone: pkgs.writeText "lego-credentials" '' 5 knotDNSCredentials = zone: pkgs.writeText "lego-credentials" ''
6 EXEC_PATH=${knotDNSExec zone}/bin/update-dns.sh 6 EXEC_PATH=${knotDNSExec zone}/bin/update-dns.sh
7 EXEC_PROPAGATION_TIMEOUT=600
8 EXEC_POLLING_INTERVAL=10
7 ''; 9 '';
8 knotDNSExec = zone: pkgs.writeScriptBin "update-dns.sh" '' 10 knotDNSExec = zone: pkgs.writeScriptBin "update-dns.sh" ''
9 #!${pkgs.zsh}/bin/zsh -xe 11 #!${pkgs.zsh}/bin/zsh -xe
@@ -49,7 +51,7 @@ in {
49 extraDomainNames = [ "*.rheperire.org" ]; 51 extraDomainNames = [ "*.rheperire.org" ];
50 dnsProvider = "exec"; 52 dnsProvider = "exec";
51 credentialsFile = knotDNSCredentials "rheperire.org"; 53 credentialsFile = knotDNSCredentials "rheperire.org";
52 dnsPropagationCheck = false; 54 dnsResolver = "1.1.1.1:53";
53 }; 55 };
54 }; 56 };
55 }; 57 };