Add acme options

2025-12-19 09:29:36 +01:00 · 2022-06-17 19:14:26 +02:00 · 2022-06-17 19:14:26 +02:00 · ac4125af06
commit ac4125af06
parent e30ef06cae
3 changed files with 25 additions and 2 deletions
--- a/machines/metis/default.nix
+++ b/machines/metis/default.nix
@ -36,6 +36,7 @@
    server = {
      enable = true;
      nextcloud.enable = true;
+      acme.staging = true;
    };
    
    
--- a/modules/server/acme.nix
+++ b/modules/server/acme.nix
@ -0,0 +1,20 @@
+{ config, lib, pkgs, ... }:
+with lib;{
+  options.elss.server.acme.staging = mkEnableOption "Whether to use the staging or the default server for acme";
+  config =
+    let
+      cfg = config.elss.server;
+      staging = config.elss.server.acme.staging;
+    in
+    mkIf cfg.enable {
+      security.acme = {
+        defaults = {
+
+
+          server = mkIf staging "https://acme-staging-v02.api.letsencrypt.org/directory";
+          email = "stefan.ellmauthaler@gmail.com"; # Do not use ellmauthaler.net as the mail server will be covered by acme
+        };
+        acceptTerms = true;
+      };
+    };
+}
--- a/modules/server/default.nix
+++ b/modules/server/default.nix
@ -7,10 +7,11 @@ with lib; {
  options.elss.server.smailserver.enable = mkEnableOption "Set up simple mail server";

  imports = [
+    ./acme.nix
+    ./nextcloud.nix
    ./nginx.nix
    ./smailserver.nix
    ./sql.nix
-    ./nextcloud.nix
  ];

  config =
@ -22,6 +23,7 @@ with lib; {
          nginx.enable = mkDefault true;
          sql.enable = mkDefault true;
          smailserver.enable = mkDefault false; # TODO fix simple mail server
+          nextcloud.enable = mkDefault true;
        };
      };
 }