Nix/System
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Wildcard cert for stranger.systems

Browse source
This commit is contained in:
Nathan McCarty 2025-04-02 04:41:04 -04:00
parent bc55a7e78f
commit f715fd0807
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
nixos/machines/driftwood/configuration.nix
View file

@ -32,6 +32,17 @@
defaults = { defaults = {
email = "admin@stranger.systems"; email = "admin@stranger.systems";
}; };
# Get a wildcard cert
certs."wildcard.stranger.systems" = {
domain = "stranger.systems";
extraDomainNames = ["*.stranger.systems"];
dnsProvider = "cloudflare";
dnsPropagationCheck = true;
credentialFiles = {
"CLOUDFLARE_EMAIL_FILE" = "/run/secrets/cloudflare/email";
"CLOUDFLARE_API_KEY_FILE" = "/run/secrets/cloudflare/key";
};
};
}; };
# ACME data must be readable by the NGINX user # ACME data must be readable by the NGINX user