selfprivacy-nixos-config/letsencrypt/acme.nix

{ config, pkgs, ... }:
let
  cfg = config.services.userdata;
in
{
  users.groups.acmerecievers = {
    members = [ "nginx" "dovecot2" "postfix" "virtualMail" "ocserv" ];
  };
  security.acme = {
    acceptTerms = true;
    email = "${cfg.username}@${cfg.domain}";
    certs = {
      "${cfg.domain}" = {
        domain = "*.${cfg.domain}";
        extraDomainNames = [ "${cfg.domain}" ];
        group = "acmerecievers";
        dnsProvider = "cloudflare";
        credentialsFile = "/var/cloudflareCredentials.ini";
      };
    };
  };
}
Initial commit 2021-11-15 10:02:05 +00:00			`{ config, pkgs, ... }:`
			`let`
			`cfg = config.services.userdata;`
			`in`
			`{`
			`users.groups.acmerecievers = {`
			`members = [ "nginx" "dovecot2" "postfix" "virtualMail" "ocserv" ];`
			`};`
			`security.acme = {`
			`acceptTerms = true;`
			`email = "${cfg.username}@${cfg.domain}";`
			`certs = {`
			`"${cfg.domain}" = {`
			`domain = "*.${cfg.domain}";`
			`extraDomainNames = [ "${cfg.domain}" ];`
			`group = "acmerecievers";`
			`dnsProvider = "cloudflare";`
			`credentialsFile = "/var/cloudflareCredentials.ini";`
			`};`
			`};`
			`};`
			`}`