Fediversity/simple-nixos-fediverse
6
1
Fork 2
Code Issues 21 Pull requests 1 Actions Projects Wiki Activity

acme fixup

Browse source
This commit is contained in:
Taeer Bar-Yam 2024-09-23 12:39:15 -04:00
parent 3e4b486921
commit 2116ac6b27
1 changed files with 5 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
fediversity/garage.nix
View file

@ -172,10 +172,12 @@ in
s3_api.root_domain = ".${fedicfg.api.domain}"; s3_api.root_domain = ".${fedicfg.api.domain}";
}; };
}; };
services.nginx.virtualHosts."garagePortProxy" = { services.nginx.virtualHosts."garagePortProxy" = {
forceSSL = true; forceSSL = true;
enableACME = true; useACME = true;
serverName = "*.${fedicfg.web.rootDomain}"; serverName = fedicfg.web.rootDomain;
serverAliases = lib.mapAttrsToList (bucket: _: "${bucket}.${fedicfg.web.rootDomain}") cfg.ensureBuckets; ## TODO: use wildcard certificates?
locations."/" = { locations."/" = {
proxyPass = "http://localhost:3902"; proxyPass = "http://localhost:3902";
extraConfig = '' extraConfig = ''
@ -183,6 +185,7 @@ in
''; '';
}; };
}; };
systemd.services.ensure-garage = { systemd.services.ensure-garage = {
after = [ "garage.service" ]; after = [ "garage.service" ];
wantedBy = [ "garage.service" ]; wantedBy = [ "garage.service" ];