spec(library): enable acme

2024-01-15 17:13:03 +08:00 · 2024-01-15 17:13:03 +08:00 · eeb210af1b
commit eeb210af1b
parent fec411f0da
2 changed files with 8 additions and 14 deletions
--- a/spec/library/acme.nix
+++ b/spec/library/acme.nix
@ -1,18 +1,11 @@
 {
-  security.acme = {
-    acceptTerms = true;
-    defaults.email = "koishi@514fpv.one";
-    defaults.group = "nginx";
-    certs = let
-      cloudflare = {
-        dnsProvider = "cloudflare";
-        credentialsFile = "/nix/persist/secret/cloudflare";
-      };
-    in {
-      "514fpv.io" = cloudflare;
-      ".514fpv.io" = cloudflare // { domain = "*.514fpv.io"; };
+  security.acme.certs = let
+    cloudflare = {
+      dnsProvider = "cloudflare";
+      credentialsFile = "/nix/persist/secret/cloudflare";
    };
+  in {
+    "514fpv.io" = cloudflare;
+    ".514fpv.io" = cloudflare // { domain = "*.514fpv.io"; };
  };
-
-  environment.persistence."/nix/persist/fhs".directories = [ "/var/lib/acme" ];
 }