alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
nixpkgs/nixos/modules
History
Franz Pletz 612781e816 simp_le service: letsencrypt cert auto-renewal 
This new service invokes `simp_le` for a defined set of certs on a regular
basis with a systemd timer. `simp_le` is smart enough to handle account
registration, domain validation and renewal on its own. The only thing
required is an existing HTTP server that serves the path
`/.well-known/acme-challenge` from the webroot cert parameter.

Example:

  services.simp_le.certs."foo.example.com" = {
    webroot = "/var/www/challenges";
    extraDomains = [ "www.example.com" ];
    email = "foo@example.com";
    validMin = 2592000;
    renewInterval = "weekly";
  };

Example Nginx vhost:

  services.nginx.appendConfig = ''
    http {
      server {
        server_name _;
        listen 80;
        listen [::]:80;

        location /.well-known/acme-challenge {
          root /var/www/challenges;
        }

        location / {
          return 301 https://$host$request_uri;
        }
      }
    }
  '';
2015-12-12 16:06:51 +01:00
..
config Merge pull request from grwlf/allproxy 2015-12-11 12:57:36 +01:00
hardware nixos/bumblebee: update for new packages 2015-12-05 00:54:09 +03:00
installer
misc pump.io service: init 2015-12-06 13:35:21 +00:00
profiles
programs
security
services simp_le service: letsencrypt cert auto-renewal 2015-12-12 16:06:51 +01:00
system grub: fix typo in variable name (trivial) 2015-12-10 19:52:08 +01:00
tasks nixos/kbd: make systemd-vconsole-setup work with KMS 2015-12-03 22:54:24 +03:00
testing
virtualisation Merge pull request from jgillich/rkt 2015-12-11 08:04:44 +03:00
module-list.nix simp_le service: letsencrypt cert auto-renewal 2015-12-12 16:06:51 +01:00
rename.nix