diff options
| author | Alan Pearce | 2024-11-27 11:28:13 +0100 |
|---|---|---|
| committer | Alan Pearce | 2024-11-27 11:28:13 +0100 |
| commit | 73f3ca04c8609e76867ea7a0118b211d19ae69a6 (patch) | |
| tree | 61fb598e24eeeb1f13fed6b2a8fd0f1e4b25f9fb /system/linde.nix | |
| parent | cbdcaf87398abde5c094952d6caaaaf185251ced (diff) | |
| download | nixfiles-73f3ca04c8609e76867ea7a0118b211d19ae69a6.tar.lz nixfiles-73f3ca04c8609e76867ea7a0118b211d19ae69a6.tar.zst nixfiles-73f3ca04c8609e76867ea7a0118b211d19ae69a6.zip | |
Remove acme-dns
Diffstat (limited to 'system/linde.nix')
| -rw-r--r-- | system/linde.nix | 33 |
1 files changed, 3 insertions, 30 deletions
diff --git a/system/linde.nix b/system/linde.nix index e5880491..8e6635b6 100644 --- a/system/linde.nix +++ b/system/linde.nix @@ -39,7 +39,6 @@ in mode = "400"; symlink = false; }; - acme.file = ../secrets/acme.age; binarycache.file = ../secrets/binarycache.age; dex.file = ../secrets/dex.age; powerdns.file = ../secrets/powerdns.age; @@ -610,38 +609,12 @@ in }; }; - services.acme-dns = { - enable = true; - settings = - let - me = "acme.${domain}"; - in - { - general = { - listen = "[${net-acmeip}]:53"; - protocol = "both6"; - domain = me; - nsname = me; - nsadmin = builtins.replaceStrings [ "@" ] [ "." ] config.security.acme.defaults.email; - records = [ - "${me}. AAAA ${net-acmeip}" - "${me}. NS ${me}." - ]; - }; - api = { - ip = "[${net-acmeip}]"; - tls = "letsencrypt"; - port = 443; - notification-email = config.security.acme.defaults.email; - }; - }; - }; - security.acme = { defaults = { email = "alan@alanpearce.eu"; - dnsProvider = "acme-dns"; - credentialsFile = config.age.secrets.acme.path; + dnsProvider = "pdns"; + dnsResolver = "1.1.1.1:53"; + credentialsFile = config.age.secrets.powerdns.path; reloadServices = [ "caddy" ]; validMinDays = 32; }; |