fix(pm/nginx): correct missinghost.invalid startup #151

Since https://github.com/NixOS/nixpkgs/commit/2d0a48912550cdc39a64e71d09d2c838973871ad, ACME certificates have been issued using a different set of services. The missinghost.invalid configuration here ended up breaking the nginx startup by making it so no selfsigned certificate was ever generated, getting nginx to die on a missing certificate.

Additonally, also as a result of this ACME rework, Stalwart was waiting on a bunch of nonexistent things and now no longer is

+2 -2

2 changed files

Interdiff #2 → #3

expand all

unified split

packetmix

systems

common

nginx.nix

teal

stalwart.nix

+2 -2

packetmix/systems/common/nginx.nix

··· 34 security.acme.acceptTerms = true; 35 security.acme.certs = lib.mkIf config.services.nginx.enable { 36 "missinghost.invalid" = { 37 - dnsProvider = null; 38 listenHTTP = null; 39 s3Bucket = null; 40 - webroot = "/dev/null"; 41 email = "invalid@missinghost.invalid"; 42 }; # Nix requires some values, even if we're actually disabling the acme-missinghost.invalid service... that's problematic if there are no defaults for the system 43 };

··· 34 security.acme.acceptTerms = true; 35 security.acme.certs = lib.mkIf config.services.nginx.enable { 36 "missinghost.invalid" = { 37 + dnsProvider = "invalidns"; 38 listenHTTP = null; 39 s3Bucket = null; 40 + webroot = null; # We can't use webroot as the setup service validates it... 41 email = "invalid@missinghost.invalid"; 42 }; # Nix requires some values, even if we're actually disabling the acme-missinghost.invalid service... that's problematic if there are no defaults for the system 43 };

packetmix/systems/teal/stalwart.nix

This file has not been changed.