Commit graph

39 commits

Author SHA1 Message Date
Inex Code 46bb08581b fix: Split wildcard and root domains for ACME (#98)
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/98
2024-09-07 00:57:25 +03:00
Inex Code f8223192e5 fix: Add DeSEC to dnsPropagationCheckExceptions
Probably a temp fix to #59
2024-05-02 22:31:30 +03:00
Alexander Tomokhov 4c183d5b40 fix deSEC: DESEC_POLLING_INTERVAL=30, propagation timeout and TTL 2024-03-12 19:58:37 +04:00
Alexander Tomokhov 05fe40ac21 fix ACME for DigitalOcean: add DNS propagation check exceptions 2023-12-22 19:08:53 +04:00
Alexander Tomokhov 5f8cc727e0 ACME: CLOUDFLARE_POLLING_INTERVAL=30
As said in https://github.com/go-acme/lego/issues/2068.
2023-12-22 14:06:55 +04:00
Alexander Tomokhov 66c0184a93 ACME: dnsPropagationCheck = true 2023-12-21 13:38:28 +04:00
Alexander Tomokhov 4c3072ade8 ACME: CLOUDFLARE_POLLING_INTERVAL=10 2023-12-21 13:08:34 +04:00
Alexander Tomokhov 0e62c9292b dnsPropagationCheck = false explicitly for certs.${domain} 2023-12-21 12:15:28 +04:00
Alexander Tomokhov 5760a753af ACME dnsPropagationCheck = false 2023-12-20 18:29:39 +04:00
Alexander Tomokhov fd6e49a21a ACME: do not disable DNS propagation check 2023-12-20 17:43:47 +04:00
Alexander Tomokhov dcaf96c773 Revert "Revert "Revert "add wildcard ACME certificate"""
This reverts commit 4faf8e7dda.
2023-12-20 17:43:47 +04:00
Alexander Tomokhov 3a66da49e1 do not lib.mkForce acme.certs 2023-12-20 17:43:47 +04:00
Alexander Tomokhov 4faf8e7dda Revert "Revert "add wildcard ACME certificate""
This reverts commit 0c4d57c33d.
2023-12-20 16:59:57 +04:00
Alexander Tomokhov c18f332f5f Revert "use enableACME for all virtualHosts"
This reverts commit 46366702bc.
2023-12-19 23:46:42 +04:00
Alexander Tomokhov 46366702bc use enableACME for all virtualHosts 2023-12-19 17:22:32 +04:00
Alexander Tomokhov 0c4d57c33d Revert "add wildcard ACME certificate"
This reverts commit b37cadff68
(except pleroma virtualHosts).
2023-12-19 17:22:32 +04:00
Alexander Tomokhov b37cadff68 add wildcard ACME certificate 2023-12-19 01:52:27 +04:00
Inex Code 312077240a fix(acme): add dns propagation check exceptions 2023-12-19 01:19:03 +04:00
Alexander Tomokhov d881cc8ce5 upgrade nixpkgs to NixOS 23.11 2023-12-18 18:44:18 +04:00
Alexander Tomokhov 83e8f6e8a1 get rid of files.nix; ACME/credentialsFile and other cleanup 2023-12-18 07:49:27 +04:00
Alexander Tomokhov c63b6b808c acme: RestartSec = 15 * 60 2023-12-04 14:33:43 +04:00
Alexander Tomokhov b458458c30 move ocserv to SP module 2023-12-03 09:46:36 +04:00
Alexander Tomokhov 600d8f427d mailserver: set users.groups.acmereceivers.members 2023-11-29 08:28:19 +04:00
Alexander Tomokhov b6cd5846f2 users.groups: acmerecievers => acmereceivers 2023-11-29 08:25:24 +04:00
Alexander Tomokhov 80447abb2e selfprivacy.userdata -> selfprivacy; SP modules -> selfprivacy.modules 2023-11-16 04:00:15 +04:00
Alexander Tomokhov 80ba7d0bda PoC working SP module system
+ simple-nixos-mailserver as an SP module
2023-11-13 00:37:50 +04:00
Inex Code 60dd766846 fix: Reloading nginx after ACME 2023-06-14 19:19:49 +03:00
Inex Code dd020c3a7d fix(acme): Disable DNS propagation check 2023-06-09 15:57:19 +03:00
Inex Code ba1695c642 fix(jitsi): Use the common TLS cert 2023-06-09 14:06:22 +03:00
Inex Code bc5778fdea feat(dns): Add support for DigitalOcean DNS and DeSEC DNS (#31)
Co-authored-by: inexcode <inex.code@selfprivacy.org>
Co-authored-by: NaiJi  <naiji@udongein.xyz>
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/31
2023-06-05 15:45:07 +03:00
Inex Code 3dd8ff1821 feat: add dns.useStagingACME option
Used for testing environments, so we don't stumble upon ACME rate limits.
2022-11-16 11:02:20 +03:00
Inex Code a0a6c99fe8 roll back the roll back 2022-02-16 11:06:51 +03:00
Inex Code 8cb55168eb Merge pull request 'jitsi-fixes' (#15) from jitsi-fixes into master
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/15
2022-02-16 08:30:24 +02:00
Illia Chub 896600bf52 Added missing dependencies 2022-02-16 07:01:12 +02:00
Illia Chub c03fd25959 Resolved build issues with DNS-01 nad webroot enabled 2022-02-16 06:59:59 +02:00
inexcode b583340e1d Revert "Merge pull request 'Fixed Jitsi functionality and Jitsi certificate resolution' (#14) from jitsi-fixes into master"
This reverts commit dc767677d8, reversing
changes made to d4bb381693.
2022-02-15 15:48:42 +03:00
Illia Chub 163afde7cf Fixed Jitsi functionality and Jitsi certificate resolution 2022-02-08 08:44:54 +02:00
Inex Code 7c2264ff89 Fix errors caused by temp files creation 2021-11-17 11:54:36 +03:00
Inex Code 85aaf52635 Initial commit 2021-11-15 13:02:05 +03:00