nixos/global/acme/default.nix

{
  pkgs,
  lib,
  config,
  ...
}:
with lib;
let
  cfg = config.global.acme;
in
{
  options.global.acme = {
    enable = mkEnableOption "ACME SSL certificates";
  };

  config = mkIf cfg.enable {
    security.acme = {
      acceptTerms = true;
      defaults.email = mkDefault "koishi@514fpv.one";
      defaults.group = config.services.nginx.group;
    };

    environment.persistence."/nix/persist/fhs".directories = [ "/var/lib/acme" ];
  };
}
chore: nix fmt 2025-01-13 11:52:09 +08:00			`{`
			`pkgs,`
			`lib,`
			`config,`
			`...`
			`}:`
			`with lib;`
			`let`
feat(acme): add acme defaults 2024-01-15 15:57:25 +08:00			`cfg = config.global.acme;`
chore: nix fmt 2025-01-13 11:52:09 +08:00			`in`
			`{`
feat(acme): add acme defaults 2024-01-15 15:57:25 +08:00			`options.global.acme = {`
			`enable = mkEnableOption "ACME SSL certificates";`
			`};`

			`config = mkIf cfg.enable {`
			`security.acme = {`
			`acceptTerms = true;`
			`defaults.email = mkDefault "koishi@514fpv.one";`
			`defaults.group = config.services.nginx.group;`
			`};`

			`environment.persistence."/nix/persist/fhs".directories = [ "/var/lib/acme" ];`
			`};`
			`}`