Cloonar/cloonar-assistant
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: acme generation

Browse Source
This commit is contained in:
Dominik Polakovics Polakovics
2025-04-29 00:38:32 +02:00
parent 021e7bf1a0
commit ed1a4ed7f5
1 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
modules/cloonar-assistant/home-assistant/default.nix
View File

@@ -92,13 +92,23 @@ in
}; };
users.groups.hass.gid = gid; users.groups.hass.gid = gid;
users.users.nginx.extraGroups = [ "ssl-users" ];
services.nginx.enable = true; services.nginx.enable = true;
services.nginx.virtualHosts."${domain}" = { services.nginx.virtualHosts."${domain}" = {
root = "/var/www"; root = "/var/www";
sslCertificate = "/var/lib/acme/${domain}/fullchain.pem";
sslCertificateKey = "/var/lib/acme/${domain}/key.pem";
sslTrustedCertificate = "/var/lib/acme/${domain}/chain.pem";
forceSSL = true; forceSSL = true;
extraConfig = '' extraConfig = ''
proxy_buffering off; proxy_buffering off;
''; '';
location.""^~ /.well-known/acme-challenge/".extraConfig = ''
auth_basic off;
auth_request off;
'';
locations."/".extraConfig = '' locations."/".extraConfig = ''
proxy_pass http://10.233.0.2:8123; proxy_pass http://10.233.0.2:8123;
proxy_set_header Host $host; proxy_set_header Host $host;