diff options
Diffstat (limited to 'system/linde.nix')
| -rw-r--r-- | system/linde.nix | 33 |
1 files changed, 3 insertions, 30 deletions
diff --git a/system/linde.nix b/system/linde.nix index e5880491..8e6635b6 100644 --- a/system/linde.nix +++ b/system/linde.nix @@ -39,7 +39,6 @@ in mode = "400"; symlink = false; }; - acme.file = ../secrets/acme.age; binarycache.file = ../secrets/binarycache.age; dex.file = ../secrets/dex.age; powerdns.file = ../secrets/powerdns.age; @@ -610,38 +609,12 @@ in }; }; - services.acme-dns = { - enable = true; - settings = - let - me = "acme.${domain}"; - in - { - general = { - listen = "[${net-acmeip}]:53"; - protocol = "both6"; - domain = me; - nsname = me; - nsadmin = builtins.replaceStrings [ "@" ] [ "." ] config.security.acme.defaults.email; - records = [ - "${me}. AAAA ${net-acmeip}" - "${me}. NS ${me}." - ]; - }; - api = { - ip = "[${net-acmeip}]"; - tls = "letsencrypt"; - port = 443; - notification-email = config.security.acme.defaults.email; - }; - }; - }; - security.acme = { defaults = { email = "alan@alanpearce.eu"; - dnsProvider = "acme-dns"; - credentialsFile = config.age.secrets.acme.path; + dnsProvider = "pdns"; + dnsResolver = "1.1.1.1:53"; + credentialsFile = config.age.secrets.powerdns.path; reloadServices = [ "caddy" ]; validMinDays = 32; }; |