StuRa/stura-infra
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

acme isnt needed on proxy itself

Browse source
This commit is contained in:
goeranh 2026-02-25 20:11:28 +01:00
parent e10824e57b
commit 6add85a106
No known key found for this signature in database
1 changed files with 0 additions and 23 deletions
Download patch file Download diff file Expand all files Collapse all files

23
hosts/proxy/default.nix
View file

@ -36,29 +36,6 @@
}; };
}; };
security.acme = {
certs."stura.htw-dresden.de" = {
listenHTTP = ":8888";
extraDomainNames = [
"www.stura.htw-dresden.de"
];
group = "haproxy";
# postRun = ''
# cat cert.pem key.pem > full.pem
# chmod 640 full.pem
# systemctl reload haproxy
# '';
};
};
# give haproxy access to the cert files
users.users.haproxy.extraGroups = [ "acme" ];
systemd.services.haproxy = {
after = [ "acme-finished-stura.htw-dresden.de.target" ];
wants = [ "acme-finished-stura.htw-dresden.de.target" ];
};
services = { services = {
openssh = { openssh = {
enable = true; enable = true;