hosting/selfhostblocks
1
0
Fork 0
Code Issues Activity

[ssl] allow to move out of credentials file additional config

Browse source
This commit is contained in:
ibizaman 2023-11-29 21:37:03 -08:00
parent 3f726c2779
commit 05183e6b57
1 changed files with 17 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
modules/blocks/ssl.nix
View file

@ -36,6 +36,21 @@ in
example = "/run/secrets/ssl"; example = "/run/secrets/ssl";
}; };
additionalCfg = lib.mkOption {
type = lib.types.attrsOf lib.types.str;
description = lib.mdDoc ''Additional environment variables used to configure the DNS provider.
For secrets, use shb.ssl.credentialsFile instead.
See the chose provider's [documentation](https://go-acme.github.io/lego/dns/) for available
options.
'';
example = lib.literalExpression ''{
DNSPROVIDER_TIMEOUT = "10";
DNSPROVIDER_PROPAGATION_TIMEOUT = "240";
}'';
};
dnsResolver = lib.mkOption { dnsResolver = lib.mkOption {
description = "IP of a DNS server used to resolve hostnames."; description = "IP of a DNS server used to resolve hostnames.";
type = lib.types.str; type = lib.types.str;
@ -74,5 +89,7 @@ in
enableDebugLogs = cfg.debug; enableDebugLogs = cfg.debug;
}; };
}; };
systemd.services."acme-${cfg.domain}".environment = cfg.additionalCfg;
}; };
} }