1
0
Fork 0
forked from pub-solar/infra
pub-solar-infra-new/modules
teutat3s 9758aeda5d
garage: fix wildcard DNS cert renewal with wildcard
CNAME records

By usind wildcard CNAME records, we make lego think it needs to validate
challenges using these CNAME records. We actually want regular
_acme-challenge.* records, so use a environment variable to avoid CNAME
detection. This fixes DNS cert renewal. Still curious? See:
https://letsencrypt.org/2019/10/09/onboarding-your-customers-with-lets-encrypt-and-acme/
2024-10-23 20:18:57 +02:00
..
backups backups: add storagebox to programs.ssh.knownHosts 2024-08-29 16:36:09 +02:00
caddy style: run treefmt 2024-05-08 22:57:07 +02:00
collabora style: run treefmt 2024-05-08 22:57:07 +02:00
core security: add libolm to permittedInsecurePackages 2024-10-05 13:03:40 +02:00
coturn style: run treefmt 2024-05-08 22:57:07 +02:00
docker style: run treefmt 2024-05-08 22:57:07 +02:00
forgejo secrets: rename restic-repo-storagebox{,-nachtigall} 2024-08-29 16:22:58 +02:00
garage garage: fix wildcard DNS cert renewal with wildcard 2024-10-23 20:18:57 +02:00
grafana flora-6: remove 2024-09-10 16:02:24 +02:00
keycloak backups: rename pub-solar-os.backups.backups -> pub-solar-os.backups.restic 2024-08-28 17:12:22 +02:00
loki loki: store logs in /var/lib/loki 2024-09-10 16:02:25 +02:00
mail mail: add backups to garage bucket + storagebox 2024-08-29 16:19:24 +02:00
mailman secrets: rename restic-repo-storagebox{,-nachtigall} 2024-08-29 16:22:58 +02:00
mastodon mastodon: switch files.pub.solar from storj to garage 2024-10-17 21:15:55 +02:00
matrix secrets: rename restic-repo-storagebox{,-nachtigall} 2024-08-29 16:22:58 +02:00
matrix-irc style: run treefmt 2024-05-08 22:57:07 +02:00
matrix-telegram style: run treefmt 2024-05-08 22:57:07 +02:00
mediawiki mediawiki: add backups to garage bucket + storagebox 2024-08-28 17:13:34 +02:00
nextcloud secrets: rename restic-repo-storagebox{,-nachtigall} 2024-08-29 16:22:58 +02:00
nginx mastodon: switch files.pub.solar from storj to garage 2024-10-17 21:15:55 +02:00
nginx-mastodon style: run treefmt 2024-05-08 22:57:07 +02:00
nginx-mastodon-files nginx: use safer request_uri variable 2024-10-17 21:15:57 +02:00
nginx-matrix style: run treefmt 2024-05-08 22:57:07 +02:00
nginx-prometheus-exporters nginx: use square brackets for IPv6 address 2024-06-05 01:59:54 +02:00
nginx-website website: force HTTPS 2024-08-27 10:03:43 +02:00
nginx-website-miom style: run treefmt 2024-05-08 22:57:07 +02:00
obs-portal obs-portal: run backups 1h later to avoid lock conflict 2024-09-09 17:28:57 +02:00
opensearch Put modules into uniform folders 2024-04-28 19:17:09 +02:00
owncast style: run treefmt 2024-05-08 22:57:07 +02:00
postgresql nachtigall: make postgres wait for zfs mount 2024-08-27 10:00:42 +02:00
prometheus chore: run nix fmt 2024-09-10 16:02:26 +02:00
prometheus-exporters metronom: add promtail, prometheus node-exporter 2024-06-06 12:52:55 +02:00
promtail flora-6: remove 2024-09-10 16:02:24 +02:00
searx style: run treefmt 2024-05-08 22:57:07 +02:00
tmate style: run treefmt 2024-05-08 22:57:07 +02:00
tt-rss tt-rss: lint with treefmt 2024-07-18 17:49:29 +02:00
unlock-luks-on-boot modules: add unlock-luks-on-boot 2024-08-24 03:05:28 +02:00
unlock-zfs-on-boot style: run treefmt 2024-05-08 22:57:07 +02:00