From 9cbd60a80b025df0da2c18c3ce0ecadf8de1179b Mon Sep 17 00:00:00 2001 From: teutat3s Date: Tue, 10 Sep 2024 14:27:35 +0200 Subject: [PATCH] alerts.pub.solar: use DNS challenge for cert --- modules/prometheus/default.nix | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/modules/prometheus/default.nix b/modules/prometheus/default.nix index 19e3384..4474e05 100644 --- a/modules/prometheus/default.nix +++ b/modules/prometheus/default.nix @@ -12,6 +12,15 @@ owner = "alertmanager"; }; + security.acme.certs = { + "alerts.${config.pub-solar-os.networking.domain}" = { + # disable http challenge + webroot = null; + # enable dns challenge + dnsProvider = "namecheap"; + }; + }; + services.nginx.virtualHosts."alerts.${config.pub-solar-os.networking.domain}" = { enableACME = true; forceSSL = true;