Skynet/misc_nixos-mailserver
7
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

Fix a few issues with ACME certs

Browse source
This commit is contained in:
John Boehr 2017-11-09 13:16:06 -08:00
parent ebd0f656ed
commit bbca0bd678
No known key found for this signature in database
GPG key ID: 73B8EFB60708F699
2 changed files with 4 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

3
mail-server/nginx.nix
View file

@ -20,6 +20,7 @@
with (import ./common.nix { inherit config; });
let
inherit (lib.attrsets) genAttrs;
cfg = config.mailserver;
allDomains = [ cfg.domain ] ++ cfg.extraDomains;
acmeRoot = "/var/lib/acme/acme-challenge";
@ -38,7 +39,7 @@ in
acmeRoot = acmeRoot;
});
};
security.acme.certs."${hostPrefix}.${domain}" = {
security.acme.certs."mailserver" = {
# @todo what user/group should this run as?
user = "postfix"; # cfg.user;
group = "postfix"; # lib.mkDefault cfg.group;