sid/sid.ovh
1
0
Fork 0
Code Issues 3 Pull requests 2 Projects Releases Packages Wiki Activity Actions

rm step-ca and coredns
All checks were successful
Flake check / flake-check (pull_request) Successful in 20s
Details
Build hosts / build-hosts (pull_request) Successful in 24s
Details

Browse source
This commit is contained in:
sid 2026-05-17 23:01:56 +02:00
parent 5c8d94d03d
commit 27492ea730
7 changed files with 24 additions and 162 deletions
Download patch file Download diff file Expand all files Collapse all files

21
hosts/rx4/services/vaultwarden.nix
View file

@ -62,18 +62,10 @@ in
};
};
security.acme = {
acceptTerms = true;
defaults.email = "admin@${domain}";
certs."pw-custom" = {
domain = fqdn;
dnsProvider = "hetzner";
dnsResolver = "1.1.1.1:53";
credentialFiles = {
HETZNER_API_TOKEN_FILE = config.sops.secrets.hetzner-api-key.path;
};
group = "nginx";
};
security.acme.certs."pw-custom" = {
domain = fqdn;
postRun = "systemctl restart vaultwarden.service";
group = "nginx";
};
sops =
@ -90,11 +82,6 @@ in
"vaultwarden/smtp-password" = {
inherit owner group mode;
};
hetzner-api-key = {
inherit mode;
owner = "acme";
group = "acme";
};
};
templates = {
"vaultwarden/env-file" = {