server/services/acme.nix

{ config, ... }:

{
  # Configure automated TLS acquisition/renewal
  security.acme = {
    acceptTerms = true;
    defaults = {
      email = "maddie@spyhoodle.me";
    };
  };

  # ACME data must be readable by the NGINX user
  users.users.nginx.extraGroups = [
    "acme"
  ];
}
initial commit 2024-09-24 20:36:31 +01:00			`{ config, ... }:`

			`{`
			`# Configure automated TLS acquisition/renewal`
			`security.acme = {`
			`acceptTerms = true;`
			`defaults = {`
			`email = "maddie@spyhoodle.me";`
			`};`
			`};`

			`# ACME data must be readable by the NGINX user`
			`users.users.nginx.extraGroups = [`
			`"acme"`
			`];`
			`}`