feat: Add Digital Ocean as a DNS provider

2023-02-06 12:05:07 +03:00 · 2023-02-06 12:05:07 +03:00 · c7385cb9ea
parent 8d99d1c78a
commit c7385cb9ea
2 changed files with 23 additions and 13 deletions
--- a/files.nix
+++ b/files.nix
@ -37,17 +37,27 @@ in
          rm -f /var/lib/nextcloud/db-pass
          rm -f /var/lib/nextcloud/admin-pass
        '';
-      cloudflareCredentials = ''
-        mkdir -p /var/lib/cloudflare
-        chmod 0440 /var/lib/cloudflare
-        chown nginx:acmerecievers /var/lib/cloudflare
-        echo 'CF_API_KEY=REPLACEME' > /var/lib/cloudflare/Credentials.ini
-        echo 'CLOUDFLARE_DNS_API_TOKEN=REPLACEME' >> /var/lib/cloudflare/Credentials.ini
-        echo 'CLOUDFLARE_ZONE_API_TOKEN=REPLACEME' >> /var/lib/cloudflare/Credentials.ini
-        ${sed} -i "s/REPLACEME/$(cat /etc/nixos/userdata/userdata.json | ${jq} -r '.dns.apiKey')/g" /var/lib/cloudflare/Credentials.ini
-        chmod 0440 /var/lib/cloudflare/Credentials.ini
-        chown nginx:acmerecievers /var/lib/cloudflare/Credentials.ini
-      '';
+      cloudflareCredentials =
+        if cfg.dns.provider == "DIGITALOCEAN" then ''
+          mkdir -p /var/lib/cloudflare
+          chmod 0440 /var/lib/cloudflare
+          chown nginx:acmerecievers /var/lib/cloudflare
+          echo 'DO_AUTH_TOKEN=REPLACEME' > /var/lib/cloudflare/Credentials.ini
+          ${sed} -i "s/REPLACEME/$(cat /etc/nixos/userdata/userdata.json | ${jq} -r '.dns.apiKey')/g" /var/lib/cloudflare/Credentials.ini
+          chmod 0440 /var/lib/cloudflare/Credentials.ini
+          chown nginx:acmerecievers /var/lib/cloudflare/Credentials.ini
+        ''
+        else ''
+          mkdir -p /var/lib/cloudflare
+          chmod 0440 /var/lib/cloudflare
+          chown nginx:acmerecievers /var/lib/cloudflare
+          echo 'CF_API_KEY=REPLACEME' > /var/lib/cloudflare/Credentials.ini
+          echo 'CLOUDFLARE_DNS_API_TOKEN=REPLACEME' >> /var/lib/cloudflare/Credentials.ini
+          echo 'CLOUDFLARE_ZONE_API_TOKEN=REPLACEME' >> /var/lib/cloudflare/Credentials.ini
+          ${sed} -i "s/REPLACEME/$(cat /etc/nixos/userdata/userdata.json | ${jq} -r '.dns.apiKey')/g" /var/lib/cloudflare/Credentials.ini
+          chmod 0440 /var/lib/cloudflare/Credentials.ini
+          chown nginx:acmerecievers /var/lib/cloudflare/Credentials.ini
+        '';
      resticCredentials = ''
        mkdir -p /root/.config/rclone
        chmod 0400 /root/.config/rclone
--- a/letsencrypt/acme.nix
+++ b/letsencrypt/acme.nix
@ -17,13 +17,13 @@ in
        domain = "*.${cfg.domain}";
        extraDomainNames = [ "${cfg.domain}" ];
        group = "acmerecievers";
-        dnsProvider = "cloudflare";
+        dnsProvider = lib.strings.toLower cfg.dns.provider;
        credentialsFile = "/var/lib/cloudflare/Credentials.ini";
      };
      "meet.${cfg.domain}" = {
        domain = "meet.${cfg.domain}";
        group = "acmerecievers";
-        dnsProvider = "cloudflare";
+        dnsProvider = lib.strings.toLower cfg.dns.provider;
        credentialsFile = "/var/lib/cloudflare/Credentials.ini";
      };
    };