xengi/infra
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix http challenge

Browse source
This commit is contained in:
XenGi 2025-12-04 22:46:52 +01:00
parent ff9315233c
commit 2a28214610
Signed by: xengi
SSH key fingerprint: SHA256:dM+fLZGsDvyv6kunjE8bGduL24VsCFB4LEOSdmRHdG0
1 changed files with 6 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

11
services/nginx.nix
View file

@ -24,7 +24,8 @@ in
quic = true;
kTLS = true;
forceSSL = true;
useACMEHost = fqdn;
#useACMEHost = fqdn;
enableACME = true;
listen = [
{
addr = "0.0.0.0";
@ -48,7 +49,7 @@ in
}
];
locations = {
"/.well-known/acme-challenge".root = config.security.acme.defaults.webroot;
#"/.well-known/acme-challenge".root = config.security.acme.defaults.webroot;
"/".return = "418 \"I'm a Teapot!\"";
"= /.well-known/matrix/client" = {
return = "200 '{\"m.homeserver\": {\"base_url\": \"https://matrix.berlin.ccc.de\"}}'";
@ -70,7 +71,7 @@ in
};
};
security.acme.certs."${fqdn}" = {
reloadServices = [ "nginx" ];
};
#security.acme.certs."${fqdn}" = {
# reloadServices = [ "nginx" ];
#};
}