Página inicial Explorar Ajuda
Entrar
badbayan
/
nix-config
Observar 1
Favorito 0
Fork 0
Arquivos
Branch: master
Branches Tags
nix-config
/
modules
/
domains
/
badbayan.duckdns.org.nix

badbayan.duckdns.org.nix 779 B
Link permanente Histórico Raw

123456789101112131415161718192021222324252627282930313233343536 
  1. { config, inputs, ... }:
    2. 

  2. let
    3. 

  3.   dns = "duckdns";
    4. 

  4.   domain = "badbayan.duckdns.org";
    5. 

  5.   email = "badya65@gmail.com";
    6. 

  6. in {
    7. 

  7.   age.secrets = with inputs.self.modules; {
    8. 

  8.     ${dns}.file = secrets.${dns};
    9. 

  9.   };
    10. 

  10. 

  11.   security.acme.certs.${domain} = {
    12. 

  12.     environmentFile = config.age.secrets.${dns}.path;
    13. 

  13.     domain = "*." + domain;
    14. 

  14.     dnsPropagationCheck = true;
    15. 

  15.     dnsProvider = dns;
    16. 

  16.     inherit email;
    17. 

  17.     extraDomainNames = [ domain ];
    18. 

  18.     inherit (config.security.acme.defaults) group;
    19. 

  19.   };
    20. 

  20. 

  21.   services.nginx.virtualHosts = {
    22. 

  22.     ${domain} = {
    23. 

  23.       forceSSL = true;
    24. 

  24.       enableACME = true;
    25. 

  25.       acmeRoot = null;
    26. 

  26.       globalRedirect = "notbad.dynv6.net";
    27. 

  27.     };
    28. 

  28. 

  29.     "*.${domain}" = {
    30. 

  30.       forceSSL = true;
    31. 

  31.       useACMEHost = domain;
    32. 

  32.       globalRedirect = domain;
    33. 

  33.     };
    34. 

  34.   };
    35. 

  35. }
    36. 

  36.