From dfa02cb2e26afd4b51b864d8ff6ae1bac3fbd8b5 Mon Sep 17 00:00:00 2001
From: Gregor Kleen <gkleen@yggdrasil.li>
Date: Tue, 22 Feb 2022 11:19:10 +0100
Subject: ...

---
 hosts/surtr/tls/default.nix | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix
index 7e6b370c..9f8d92d6 100644
--- a/hosts/surtr/tls/default.nix
+++ b/hosts/surtr/tls/default.nix
@@ -94,10 +94,11 @@ in {
       defaults = {
         email = "phikeebaogobaegh@141.li";
         keyType = "rsa4096"; # we don't like NIST curves
-        extraLegoFlags = [
-          "--always-deactivate-authorizations" "true"
+        extraLegoRenewFlags = [
           # "--preferred-chain" "ISRG Root X1"
+          "--always-deactivate-authorizations" "true"
         ];
+        extraLegoRunFlags = config.security.acme.defaults.extraLegoRenewFlags;
       };
       certs =
         let
-- 
cgit v1.2.3