Refine wildcard to only tailnet domains

2025-04-02 05:25:01 -04:00 · 2025-04-02 05:25:01 -04:00 · 14d0fb13ed
commit 14d0fb13ed
parent 316ba904aa
2 changed files with 4 additions and 4 deletions
--- a/nixos/machines/driftwood/configuration.nix
+++ b/nixos/machines/driftwood/configuration.nix
@ -33,9 +33,9 @@
      email = "admin@stranger.systems";
    };
    # Get a wildcard cert
-    certs."wildcard.stranger.systems" = {
-      domain = "stranger.systems";
-      extraDomainNames = ["*.stranger.systems"];
+    certs."tailnet.stranger.systems" = {
+      domain = "tailnet.stranger.systems";
+      extraDomainNames = ["*.tailnet.stranger.systems"];
      dnsProvider = "cloudflare";
      dnsPropagationCheck = true;
      credentialFiles = {
--- a/nixos/machines/driftwood/containers/hub.nix
+++ b/nixos/machines/driftwood/containers/hub.nix
@ -16,7 +16,7 @@

  services.nginx.virtualHosts."hub.tailnet.stranger.systems" = {
    forceSSL = true;
-    useACMEHost = "wildcard.stranger.systems";
+    useACMEHost = "tailnet.stranger.systems";
    locations."/" = {
      proxyPass = "http://127.0.0.1:8081";
    };