feat(focus): enable libvirt and acme

2024-01-27 09:55:36 +08:00 · 2024-01-27 09:55:36 +08:00 · 8adda87035
parent 16f597ef8a
commit 8adda87035
2 changed files with 12 additions and 1 deletions
--- a/spec/focus/acme.nix
+++ b/spec/focus/acme.nix
@ -0,0 +1,11 @@
+{
+  security.acme.certs = let
+    cloudflare = {
+      dnsProvider = "cloudflare";
+      credentialsFile = "/nix/persist/secret/cloudflare";
+    };
+  in {
+    "sf.514fpv.io" = cloudflare;
+    ".sf.514fpv.io" = cloudflare // { domain = "*.sf.514fpv.io"; };
+  };
+}
--- a/spec/focus/default.nix
+++ b/spec/focus/default.nix
@ -3,7 +3,6 @@
  global = {
    id = "22e9d4e37bd7436ba0cbe6e767fb0912";
    auth.openssh.enable = true;
-    libvirt.enable = false;
    fs.esp.uuid = "8C36-CBE2";
    fs.type = "zfs";
    fs.zfs.externalStore = true;
@ -14,6 +13,7 @@
    fs.cryptsetup.allowDiscards = false;
    fs.cryptsetup.uuids.secret = "c2bc361e-6f9a-48fa-b698-ed3603a9664a";
    boot.lanzaboote = true;
+    acme.enable = true;
  };

  services.fstrim.enable = true;