Use ACME for certificates

Simplifies a lot the configuration. It eliminates the overlay and it accepts the key via environment file
2024-11-06 12:09:39 +01:00 · 2024-11-06 12:09:39 +01:00 · d86ded0d74
commit d86ded0d74
parent 191119d1f1
4 changed files with 77 additions and 22 deletions
--- a/hosts/caddy/default.nix
+++ b/hosts/caddy/default.nix
@ -58,7 +58,12 @@ in
        authKeyFile = config.age.secrets.tailscale-authKey.path;
      };

-      caddy.enable = true;
+      caddy = {
+        enable = true;
+        email = "pasettodavide@gmail.com";
+        domain = "tegola.pro";
+      };
+
    };

    virtualisation = {
--- a/hosts/default.nix
+++ b/hosts/default.nix
@ -13,7 +13,7 @@ let
  # customOverlays = import ../overlay;
  customOverlays = (
    final: prev: {
-      caddy-custom = prev.callPackage ../overlay/caddy-custom.nix { };
+      # caddy-custom = prev.callPackage ../overlay/caddy-custom.nix { };
      jellyseerr = nixpkgs-unstable.legacyPackages."x86_64-linux".jellyseerr;
    }
  );
@ -99,4 +99,15 @@ in
    # specialArgs = { };
  };

+  nextcloud = nixpkgs.lib.nixosSystem {
+    pkgs = pkgs "x86_64-linux";
+    modules = [
+      myModule
+      proxmoxModule
+      ./nextcloud
+      agenix.nixosModules.default
+    ];
+    # specialArgs = { };
+  };
+
 }