From 2b922d62443b28e199b2bfa49f214f4e9b167947 Mon Sep 17 00:00:00 2001
From: Mike Vink <ivi@vinkies.net>
Date: Tue, 9 Jan 2024 01:24:44 +0100
Subject: got dns challenge cert

---
 profiles/homeserver/acme.nix | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

(limited to 'profiles')

diff --git a/profiles/homeserver/acme.nix b/profiles/homeserver/acme.nix
index a30e395..8b2a1e9 100644
--- a/profiles/homeserver/acme.nix
+++ b/profiles/homeserver/acme.nix
@@ -2,12 +2,14 @@
   security.acme = {
     acceptTerms = true;
     defaults = {
-      # NOTE(ivi): use dns wildcard certs for local services
-      domain = "*.vinkies.net";
       extraLegoRunFlags = ["--preferred-chain" "ISRG Root X1"];
       email = ivi.email;
       dnsProvider = "porkbun";
-      credentialsFile = config.secrets.porkbun.path;
+      environmentFile = config.secrets.porkbun.path;
+    };
+    certs."vinkies.net" = {
+      # NOTE(ivi): use dns wildcard certs for local services
+      domain = "*.vinkies.net";
     };
   };
 }
-- 
cgit v1.2.3