Merge pull request 'remove tailnet ssl' (#13 ) from develop into master

Reviewed-on: #13
remove tailnet ssl
2026-04-03 14:41:39 +02:00 · 2026-04-03 14:39:57 +02:00
1 changed files with 0 additions and 24 deletions
--- a/hosts/sid/services/nginx.nix
+++ b/hosts/sid/services/nginx.nix
@ -1,6 +1,5 @@
 {
  inputs,
-  config,
  constants,
  lib,
  ...
@ -16,33 +15,10 @@ in
    inputs.synix.nixosModules.nginx
  ];

-  users.users.nginx.extraGroups = [ "tailscale" ];
-  systemd.services.nginx.serviceConfig = {
-    SupplementaryGroups = [ "tailscale" ];
-    Requires = [ "tailscaled.service" ];
-    After = [ "tailscaled.service" ];
-  };
-
-  systemd.services."generate-tailscale-certs-${constants.hosts.sid.domain}" = {
-    wantedBy = [ "multi-user.target" ];
-    before = [ "nginx.service" ];
-    after = [ "tailscaled.service" ];
-    serviceConfig = {
-      Type = "oneshot";
-      ExecStart = "${config.services.tailscale.package}/bin/tailscale cert ${constants.hosts.sid.domain}";
-      User = "root";
-    };
-  };
-
  services.nginx = {
    enable = true;
    openFirewall = true;
    forceSSL = ssl;
-    virtualHosts."${constants.hosts.sid.domain}" = {
-      sslCertificate = "/var/lib/tailscale/certs/${constants.hosts.sid.domain}.crt";
-      sslCertificateKey = "/var/lib/tailscale/certs/${constants.hosts.sid.domain}.key";
-      forceSSL = true;
-    };
    virtualHosts."${constants.services.docs.fqdn}" = mkVirtualHost {
      inherit ssl;
      address = constants.hosts.rx4.ip;
Author	SHA1	Message	Date
sid	8c56beb84c	Merge pull request 'remove tailnet ssl' (#13 ) from develop into master All checks were successful Deploy configs / deploy-configs (push) Successful in 21s Details Reviewed-on: #13	2026-04-03 14:41:39 +02:00
sid	c6c4d905ac	remove tailnet ssl All checks were successful Build hosts / build-hosts (pull_request) Successful in 16s Details Flake check / flake-check (pull_request) Successful in 19s Details	2026-04-03 14:39:57 +02:00