Revert "use enableACME for all virtualHosts"

This reverts commit 46366702bc.
2023-12-19 23:46:42 +04:00
parent 46366702bc
commit c18f332f5f
10 changed files with 30 additions and 12 deletions
--- a/sp-modules/bitwarden/module.nix
+++ b/sp-modules/bitwarden/module.nix
@@ -72,8 +72,9 @@ in
      '';
    };
    services.nginx.virtualHosts."password.${sp.domain}" = {
+      sslCertificate = "/var/lib/acme/${sp.domain}/fullchain.pem";
+      sslCertificateKey = "/var/lib/acme/${sp.domain}/key.pem";
      forceSSL = true;
-      enableACME = true;
      extraConfig = ''
        add_header Strict-Transport-Security $hsts_header;
        #add_header Content-Security-Policy "script-src 'self'; object-src 'none'; base-uri 'none';" always;