rice/hosts/ami/acme.nix

{config, ...}: {
  age.secrets.hetzner-dns.file = ../../secrets/hetzner-dns.age;

  security.acme = {
    acceptTerms = true;
    defaults.email = "acme@buffet.sh";
    certs."buffet.sh" = {
      group = "nginx";
      dnsProvider = "hetzner";
      credentialsFile = config.age.secrets.hetzner-dns.path;

      extraDomainNames = [
        "*.buffet.sh"
        "*.buffets.kitchen"
        "buffets.kitchen"
      ];
    };
  };
}
feat: use hetzner dns to get wildcard cert from lets encrypt 2024-05-22 08:32:00 +02:00			`{config, ...}: {`
			`age.secrets.hetzner-dns.file = ../../secrets/hetzner-dns.age;`

add tara config 2024-01-25 16:54:05 +01:00			`security.acme = {`
			`acceptTerms = true;`
			`defaults.email = "acme@buffet.sh";`
			`certs."buffet.sh" = {`
feat: use hetzner dns to get wildcard cert from lets encrypt 2024-05-22 08:32:00 +02:00			`group = "nginx";`
			`dnsProvider = "hetzner";`
			`credentialsFile = config.age.secrets.hetzner-dns.path;`
fix: make sure the cert is valid on all domains 2024-05-25 21:15:23 +02:00
			`extraDomainNames = [`
			`"*.buffet.sh"`
feat: setup woodpecker CI 2024-06-21 11:25:02 +02:00			`"*.buffets.kitchen"`
fix: make sure the cert is valid on all domains 2024-05-25 21:15:23 +02:00			`"buffets.kitchen"`
			`];`
add tara config 2024-01-25 16:54:05 +01:00			`};`
			`};`
			`}`