xengi/infra
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix http challenge

Browse source
This commit is contained in:
XenGi 2025-12-04 22:46:52 +01:00
parent ff9315233c
commit 2a28214610
Signed by: xengi
SSH key fingerprint: SHA256:dM+fLZGsDvyv6kunjE8bGduL24VsCFB4LEOSdmRHdG0
1 changed files with 6 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

11
services/nginx.nix
View file

@ -24,7 +24,8 @@ in
quic = true; quic = true;
kTLS = true; kTLS = true;
forceSSL = true; forceSSL = true;
useACMEHost = fqdn; #useACMEHost = fqdn;
enableACME = true;
listen = [ listen = [
{ {
addr = "0.0.0.0"; addr = "0.0.0.0";
@ -48,7 +49,7 @@ in
} }
]; ];
locations = { locations = {
"/.well-known/acme-challenge".root = config.security.acme.defaults.webroot; #"/.well-known/acme-challenge".root = config.security.acme.defaults.webroot;
"/".return = "418 \"I'm a Teapot!\""; "/".return = "418 \"I'm a Teapot!\"";
"= /.well-known/matrix/client" = { "= /.well-known/matrix/client" = {
return = "200 '{\"m.homeserver\": {\"base_url\": \"https://matrix.berlin.ccc.de\"}}'"; return = "200 '{\"m.homeserver\": {\"base_url\": \"https://matrix.berlin.ccc.de\"}}'";
@ -70,7 +71,7 @@ in
}; };
}; };
security.acme.certs."${fqdn}" = { #security.acme.certs."${fqdn}" = {
reloadServices = [ "nginx" ]; # reloadServices = [ "nginx" ];
}; #};
} }