dotfiles/system/nixos/acme-tanker.nix
Daniel Kempkens b438a36f3b
All checks were successful
Build / build-arm64-linux (push) Successful in 19m49s
Build / build-amd64-linux (push) Successful in 42m11s
all: switch from tailscale to headscale
2023-09-21 21:57:56 +02:00

36 lines
730 B
Nix

{ config, ... }:
{
security.acme = {
acceptTerms = true;
defaults = {
email = "acme@kempkens.io";
group = "nginx";
dnsProvider = "cloudflare";
credentialsFile = config.age.secrets.acme-credentials.path;
dnsResolver = "1.1.1.1:53";
dnsPropagationCheck = true;
reloadServices = [ "nginx.service" ];
};
certs = {
"kempkens.io" = {
domain = "*.kempkens.io";
};
"daniel.sx" = {
domain = "*.daniel.sx";
extraDomainNames = [ "*.cache.daniel.sx" ];
};
"nifoc.pw" = {
domain = "*.nifoc.pw";
};
"headscale.kempkens.network" = {
domain = "*.headscale.kempkens.network";
};
};
};
}