pub-solar/infra
6
1
Fork 3
Code Issues 20 Pull requests 9 Actions Packages Projects 1 Releases Wiki Activity
infra/secrets
History
teutat3s 9758aeda5d
All checks were successful
Flake checks / Check (pull_request) Successful in 20m13s
Details
garage: fix wildcard DNS cert renewal with wildcard 
CNAME records

By usind wildcard CNAME records, we make lego think it needs to validate
challenges using these CNAME records. We actually want regular
_acme-challenge.* records, so use a environment variable to avoid CNAME
detection. This fixes DNS cert renewal. Still curious? See:
https://letsencrypt.org/2019/10/09/onboarding-your-customers-with-lets-encrypt-and-acme/
2024-10-23 20:18:57 +02:00
..
mail flora-6: remove 2024-09-10 16:02:24 +02:00
acme-namecheap-env.age garage: fix wildcard DNS cert renewal with wildcard 2024-10-23 20:18:57 +02:00
age-yubikey-464-identity.txt wireguard: initial commit 2024-04-05 11:09:31 +00:00
age-yubikey-485-identity.txt wireguard: initial commit 2024-04-05 11:09:31 +00:00
alertmanager-envfile.age flora-6: remove 2024-09-10 16:02:24 +02:00
blue-shell-wg-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
coturn-static-auth-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
delite-wg-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
drone-db-secrets.age secrets: revert rekey of non-related secrets 2024-07-18 17:43:10 +02:00
drone-secrets.age secrets: revert rekey of non-related secrets 2024-07-18 17:43:10 +02:00
forgejo-actions-runner-token.age secrets: revert rekey of non-related secrets 2024-07-18 17:43:10 +02:00
forgejo-database-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
forgejo-mailer-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
forgejo-ssh-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
garage-admin-token.age flora-6: remove 2024-09-10 16:02:24 +02:00
garage-rpc-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
grafana-admin-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
grafana-keycloak-client-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
grafana-smtp-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
keycloak-database-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
mastodon-active-record-encryption-deterministic-key.age mastodon: update to version 4.3.0 from nixos-unstable 2024-10-17 20:31:47 +02:00
mastodon-active-record-encryption-key-derivation-salt.age mastodon: update to version 4.3.0 from nixos-unstable 2024-10-17 20:31:47 +02:00
mastodon-active-record-encryption-primary-key.age mastodon: update to version 4.3.0 from nixos-unstable 2024-10-17 20:31:47 +02:00
mastodon-extra-env-secrets.age mastodon: switch files.pub.solar from storj to garage 2024-10-17 21:15:55 +02:00
mastodon-otp-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
mastodon-secret-key-base.age flora-6: remove 2024-09-10 16:02:24 +02:00
mastodon-smtp-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
mastodon-vapid-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
mastodon-vapid-public-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
matrix-mautrix-telegram-env-file.age flora-6: remove 2024-09-10 16:02:24 +02:00
matrix-synapse-secret-config.yaml.age flora-6: remove 2024-09-10 16:02:24 +02:00
matrix-synapse-signing-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
matrix-synapse-sliding-sync-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
mediawiki-admin-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
mediawiki-database-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
mediawiki-oidc-client-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
mediawiki-secret-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
metronom-root-ssh-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
metronom-wg-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
nachtigall-root-ssh-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
nachtigall-wg-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
nextcloud-admin-pass.age flora-6: remove 2024-09-10 16:02:24 +02:00
nextcloud-secrets.age flora-6: remove 2024-09-10 16:02:24 +02:00
obs-portal-database-env.age flora-6: remove 2024-09-10 16:02:24 +02:00
obs-portal-env.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-password-droppie.age refactor: change file structure to use modules dir 2023-11-06 13:11:30 +01:00
restic-repo-droppie.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-repo-garage-metronom-env.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-repo-garage-metronom.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-repo-garage-nachtigall-env.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-repo-garage-nachtigall.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-repo-storagebox-metronom.age flora-6: remove 2024-09-10 16:02:24 +02:00
restic-repo-storagebox-nachtigall.age flora-6: remove 2024-09-10 16:02:24 +02:00
searx-environment.age flora-6: remove 2024-09-10 16:02:24 +02:00
secrets.nix style: fix formatting 2024-10-17 20:31:47 +02:00
tankstelle-forgejo-actions-runner-token.age flora-6: remove 2024-09-10 16:02:24 +02:00
tankstelle-wg-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
trinkgenossin-wg-private-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
tt-rss-database-password.age flora-6: remove 2024-09-10 16:02:24 +02:00
tt-rss-feed-crypt-key.age flora-6: remove 2024-09-10 16:02:24 +02:00
tt-rss-keycloak-client-secret.age flora-6: remove 2024-09-10 16:02:24 +02:00
tt-rss-smtp-password.age flora-6: remove 2024-09-10 16:02:24 +02:00