From 527cea875ab37a7469975cd09906f424b988175c Mon Sep 17 00:00:00 2001
From: seth <getchoo@tuta.io>
Date: Thu, 3 Aug 2023 03:31:35 -0400
Subject: hosts/atlas+p-body: use cloudflare dns for acme

---
 hosts/atlas/nginx.nix | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'hosts/atlas')

diff --git a/hosts/atlas/nginx.nix b/hosts/atlas/nginx.nix
index b6b2fe7..1e2a349 100644
--- a/hosts/atlas/nginx.nix
+++ b/hosts/atlas/nginx.nix
@@ -1,9 +1,14 @@
 {config, ...}: {
+  getchoo.server.acme.enable = true;
   networking.firewall.allowedTCPPorts = [443];
 
   security.acme = {
     acceptTerms = true;
-    defaults.email = "getchoo@tuta.io";
+    defaults = {
+      email = "getchoo@tuta.io";
+      dnsProvider = "cloudflare";
+      credentialsFile = config.age.secrets.cloudflareApiKey.path;
+    };
   };
 
   services.nginx = {
-- 
cgit v1.2.3