Add certificate creation and handling to websites

[perso/Immae/Config/Nix.git] / nixops / modules / websites / capitaines / default.nix

diff --git a/nixops/modules/websites/capitaines/default.nix b/nixops/modules/websites/capitaines/default.nix
index 0d852667ee66e8c308953fe0fbb7894826a2311c..4bbf48806e73501779fe5dafe422273d816ca6f4 100644 (file)
--- a/nixops/modules/websites/capitaines/default.nix
+++ b/nixops/modules/websites/capitaines/default.nix
@@ -13,20 +13,17 @@ in {
   };
 
   config = lib.mkIf cfg.production.enable {
-    security.acme.certs."capitaines" = config.services.myCertificates.certConfig // {
-      domain = "mastodon.capitaines.fr";
-      extraDomains = { "capitaines.fr" = null; };
-    };
     system.extraSystemBuilderCmds = ''
       mkdir -p $out/webapps
       ln -s ${siteDir} $out/webapps/${webappName}
       '';
 
     services.websites.production.vhostConfs.capitaines_mastodon = {
-      certName    = "capitaines";
-      hosts       = [ "mastodon.capitaines.fr" ];
-      root        = root;
-      extraConfig = [
+      certName     = "capitaines";
+      certMainHost = "mastodon.capitaines.fr";
+      hosts        = [ "mastodon.capitaines.fr" ];
+      root         = root;
+      extraConfig  = [
         ''
         ErrorDocument 404 /index.html
         <Directory ${root}>
@@ -39,9 +36,10 @@ in {
     };
 
     services.websites.production.vhostConfs.capitaines = {
-      certName = "capitaines";
-      hosts    = [ "capitaines.fr" ];
-      root     = "/run/current-system/webapps/_www";
+      certName   = "capitaines";
+      addToCerts = true;
+      hosts      = [ "capitaines.fr" ];
+      root       = "/run/current-system/webapps/_www";
       extraConfig = [ ''
         <Directory /run/current-system/webapps/_www>
           DirectoryIndex index.htm