description = "Name of the httpd instance to assign this type to";
};
ips = mkOption {
- type = listOf string;
+ type = listOf str;
default = [];
description = "ips to listen to";
};
options = {
enable = mkEnableOption "Add default no-ssl vhost for this instance";
host = mkOption {
- type = string;
+ type = str;
description = "The hostname to use for this vhost";
};
root = mkOption {
description = "The root folder to serve";
};
indexFile = mkOption {
- type = string;
+ type = str;
default = "index.html";
description = "The index file to show.";
};
description = "The fallback vhost that will be defined as first vhost in Apache";
type = submodule {
options = {
- certName = mkOption { type = string; };
- hosts = mkOption { type = listOf string; };
+ certName = mkOption { type = str; };
+ hosts = mkOption { type = listOf str; };
root = mkOption { type = nullOr path; };
extraConfig = mkOption { type = listOf lines; default = []; };
};
description = "List of no ssl vhosts to define for Apache";
type = attrsOf (submodule {
options = {
- hosts = mkOption { type = listOf string; };
+ hosts = mkOption { type = listOf str; };
root = mkOption { type = nullOr path; };
extraConfig = mkOption { type = listOf lines; default = []; };
};
description = "List of vhosts to define for Apache";
type = attrsOf (submodule {
options = {
- certName = mkOption { type = string; };
+ certName = mkOption { type = str; };
addToCerts = mkOption {
type = bool;
default = false;
description = "Use these to certificates. Is ignored (considered true) if certMainHost is not null";
};
certMainHost = mkOption {
- type = nullOr string;
+ type = nullOr str;
description = "Use that host as 'main host' for acme certs";
default = null;
};
- hosts = mkOption { type = listOf string; };
+ hosts = mkOption { type = listOf str; };
root = mkOption { type = nullOr path; };
extraConfig = mkOption { type = listOf lines; default = []; };
};
});
};
watchPaths = mkOption {
- type = listOf string;
+ type = listOf str;
default = [];
description = ''
Paths to watch that should trigger a reload of httpd
};
toVhost = ips: vhostConf: {
enableSSL = true;
- sslServerCert = "${config.security.acme2.certs."${vhostConf.certName}".directory}/cert.pem";
- sslServerKey = "${config.security.acme2.certs."${vhostConf.certName}".directory}/key.pem";
- sslServerChain = "${config.security.acme2.certs."${vhostConf.certName}".directory}/chain.pem";
+ sslServerCert = "${config.security.acme.certs."${vhostConf.certName}".directory}/cert.pem";
+ sslServerKey = "${config.security.acme.certs."${vhostConf.certName}".directory}/key.pem";
+ sslServerChain = "${config.security.acme.certs."${vhostConf.certName}".directory}/chain.pem";
logFormat = "combinedVhost";
listen = map (ip: { inherit ip; port = 443; }) ips;
hostName = builtins.head vhostConf.hosts;
}
) cfg.env;
- config.security.acme2.certs = let
+ config.security.acme.certs = let
typesToManage = attrsets.filterAttrs (k: v: v.enable) cfg.env;
flatVhosts = lists.flatten (attrsets.mapAttrsToList (k: v:
attrValues v.vhostConfs
projects / perso / Immae / Config / Nix.git / blobdiff