3
0
Fork 0
forked from mirrors/nixpkgs
nixpkgs/nixos
Franz Pletz 612781e816 simp_le service: letsencrypt cert auto-renewal
This new service invokes `simp_le` for a defined set of certs on a regular
basis with a systemd timer. `simp_le` is smart enough to handle account
registration, domain validation and renewal on its own. The only thing
required is an existing HTTP server that serves the path
`/.well-known/acme-challenge` from the webroot cert parameter.

Example:

  services.simp_le.certs."foo.example.com" = {
    webroot = "/var/www/challenges";
    extraDomains = [ "www.example.com" ];
    email = "foo@example.com";
    validMin = 2592000;
    renewInterval = "weekly";
  };

Example Nginx vhost:

  services.nginx.appendConfig = ''
    http {
      server {
        server_name _;
        listen 80;
        listen [::]:80;

        location /.well-known/acme-challenge {
          root /var/www/challenges;
        }

        location / {
          return 301 https://$host$request_uri;
        }
      }
    }
  '';
2015-12-12 16:06:51 +01:00
..
doc/manual release-notes: mention bumblebee changes 2015-12-08 18:54:02 +03:00
lib Enable to create hybrid ISO without UEFI boot 2015-11-28 08:55:47 +03:00
maintainers Hack to parallelize AMI copying 2015-09-29 14:54:12 +02:00
modules simp_le service: letsencrypt cert auto-renewal 2015-12-12 16:06:51 +01:00
tests nixos/tests: test SDDM with KDE 5 enabled 2015-12-11 07:09:08 -06:00
COPYING
default.nix Add a way to pin a NixOS version within the module system. 2015-11-19 20:58:45 +00:00
README
release-combined.nix nixos: add sddm test to combined constituents 2015-12-11 07:08:33 -06:00
release-small.nix release-small.nix: Drop the grub1 test 2015-08-11 13:51:55 +02:00
release.nix nixos/tests: test SDDM with KDE 5 enabled 2015-12-11 07:09:08 -06:00

*** NixOS ***

NixOS is a Linux distribution based on the purely functional package
management system Nix.  More information can be found at
http://nixos.org/nixos and in the manual in doc/manual.