nixos-conf/servers/utils/acme-http-client.nix

{ lib, ... }:
{
  options.services.nginx.virtualHosts = lib.mkOption {
    type = lib.types.attrsOf (
      lib.types.submodule {
        config = lib.mkDefault {
          enableACME = true;
        };
      }
    );
  };

  config = {
    environment.persistence."/persist".directories = [
      {
        directory = "/var/lib/acme";
        user = "acme";
        group = "acme";
        mode = "u=rwx,g=rx,o=rx";
      }
    ];

    networking.firewall.allowedTCPPorts = [ 80 ];

    security.acme = {
      acceptTerms = true;
      defaults.email = "vili.m.sinerva@gmail.com";
    };
  };
}
Refactor server files 2025-05-29 02:12:20 +03:00			`{ lib, ... }:`
			`{`
			`options.services.nginx.virtualHosts = lib.mkOption {`
			`type = lib.types.attrsOf (`
			`lib.types.submodule {`
			`config = lib.mkDefault {`
			`enableACME = true;`
			`};`
			`}`
			`);`
			`};`

			`config = {`
Migrate forgejo to disko+impermanence 2025-07-01 23:59:48 +03:00			`environment.persistence."/persist".directories = [`
			`{`
			`directory = "/var/lib/acme";`
			`user = "acme";`
			`group = "acme";`
			`mode = "u=rwx,g=rx,o=rx";`
			`}`
			`];`

Refactor server files 2025-05-29 02:12:20 +03:00			`networking.firewall.allowedTCPPorts = [ 80 ];`

			`security.acme = {`
			`acceptTerms = true;`
			`defaults.email = "vili.m.sinerva@gmail.com";`
			`};`
			`};`
			`}`