X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=modules%2Fprivate%2Fdatabases%2Fmariadb.nix;h=04e4bd626d02ee659eb5307e97a9671aa24c1ed8;hb=5400b9b6f65451d41a9106fae6fc00f97d83f4ef;hp=3359064b9d3f6141be744f183c02225177c3dbe0;hpb=0907cf1ba08ad04cff9b1fe805ac6f2072c24142;p=perso%2FImmae%2FConfig%2FNix.git diff --git a/modules/private/databases/mariadb.nix b/modules/private/databases/mariadb.nix index 3359064..04e4bd6 100644 --- a/modules/private/databases/mariadb.nix +++ b/modules/private/databases/mariadb.nix @@ -96,8 +96,8 @@ in { dataDir = cfg.dataDir; extraOptions = '' ssl_ca = ${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt - ssl_key = ${config.security.acme.directory}/mysql/key.pem - ssl_cert = ${config.security.acme.directory}/mysql/fullchain.pem + ssl_key = ${config.security.acme.certs.mysql.directory}/key.pem + ssl_cert = ${config.security.acme.certs.mysql.directory}/fullchain.pem # for replication log-bin=mariadb-bin @@ -113,7 +113,7 @@ in { security.acme.certs."mysql" = config.myServices.databasesCerts // { user = "mysql"; group = "mysql"; - plugins = [ "fullchain.pem" "key.pem" "account_key.json" ]; + plugins = [ "fullchain.pem" "key.pem" "account_key.json" "account_reg.json" ]; domain = "db-1.immae.eu"; postRun = '' systemctl restart mysql.service