summaryrefslogtreecommitdiff
path: root/hosts/surtr/tls/default.nix
diff options
context:
space:
mode:
Diffstat (limited to 'hosts/surtr/tls/default.nix')
-rw-r--r--hosts/surtr/tls/default.nix3
1 files changed, 2 insertions, 1 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix
index 4e60a3f9..f1a515db 100644
--- a/hosts/surtr/tls/default.nix
+++ b/hosts/surtr/tls/default.nix
@@ -65,7 +65,7 @@ in {
65 extraDomainNames = optional cfg.domains.${domain}.wildcard "*.${domain}"; 65 extraDomainNames = optional cfg.domains.${domain}.wildcard "*.${domain}";
66 dnsResolver = "127.0.0.1:5353"; 66 dnsResolver = "127.0.0.1:5353";
67 }; 67 };
68 mkRFC2136 = shared // { 68 mkRFC2136 = shared // rec {
69 dnsProvider = "rfc2136"; 69 dnsProvider = "rfc2136";
70 credentialsFile = pkgs.writeText "${domain}_credentials.env" '' 70 credentialsFile = pkgs.writeText "${domain}_credentials.env" ''
71 RFC2136_NAMESERVER=127.0.0.1:53 71 RFC2136_NAMESERVER=127.0.0.1:53
@@ -77,6 +77,7 @@ in {
77 RFC2136_POLLING_INTERVAL=2 77 RFC2136_POLLING_INTERVAL=2
78 RFC2136_SEQUENCE_INTERVAL=1 78 RFC2136_SEQUENCE_INTERVAL=1
79 ''; 79 '';
80 dnsPropagationCheck = false;
80 }; 81 };
81 in assert isTsig; mkRFC2136 // cfg.domains.${domain}.certCfg; 82 in assert isTsig; mkRFC2136 // cfg.domains.${domain}.certCfg;
82 in genAttrs (attrNames cfg.domains) domainAttrset; 83 in genAttrs (attrNames cfg.domains) domainAttrset;