thary/sp-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix ACME for DigitalOcean: add DNS propagation check exceptions

Browse Source
This commit is contained in:
Alexander Tomokhov
2023-12-22 19:08:46 +04:00
parent 19f30daf80
commit 05fe40ac21
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
letsencrypt/acme.nix
View File

@@ -14,6 +14,7 @@ let
dnsCredentialsTemplate = dnsCredentialsTemplates.${cfg.dns.provider};
acme-env-filepath = "/var/lib/selfprivacy/acme-env";
secrets-filepath = "/etc/selfprivacy/secrets.json";
dnsPropagationCheckExceptions = [ "DIGITALOCEAN" ];
in
{
users.groups.acmereceivers.members = [ "nginx" ];
@@ -31,7 +32,8 @@ in
group = "acmereceivers";
dnsProvider = lib.strings.toLower cfg.dns.provider;
credentialsFile = acme-env-filepath;
dnsPropagationCheck = true;
dnsPropagationCheck =
! (lib.elem cfg.dns.provider dnsPropagationCheckExceptions);
};
};
};