From 05fe40ac21bd5468fba51864b564fc50a44d2876 Mon Sep 17 00:00:00 2001
From: Alexander Tomokhov <alexoundos@selfprivacy.org>
Date: Fri, 22 Dec 2023 19:08:46 +0400
Subject: [PATCH] fix ACME for DigitalOcean: add DNS propagation check
 exceptions

---
 letsencrypt/acme.nix | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/letsencrypt/acme.nix b/letsencrypt/acme.nix
index 8eead75..1fa7b33 100644
--- a/letsencrypt/acme.nix
+++ b/letsencrypt/acme.nix
@@ -14,6 +14,7 @@ let
   dnsCredentialsTemplate = dnsCredentialsTemplates.${cfg.dns.provider};
   acme-env-filepath = "/var/lib/selfprivacy/acme-env";
   secrets-filepath = "/etc/selfprivacy/secrets.json";
+  dnsPropagationCheckExceptions = [ "DIGITALOCEAN" ];
 in
 {
   users.groups.acmereceivers.members = [ "nginx" ];
@@ -31,7 +32,8 @@ in
         group = "acmereceivers";
         dnsProvider = lib.strings.toLower cfg.dns.provider;
         credentialsFile = acme-env-filepath;
-        dnsPropagationCheck = true;
+        dnsPropagationCheck =
+          ! (lib.elem cfg.dns.provider dnsPropagationCheckExceptions);
       };
     };
   };