public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

acme: ensure nginx challenges directory is writeable

Browse Source
This commit is contained in:
Domen Kožar 2016-11-29 15:55:33 +01:00
parent 69e0740baa
commit 75f131da02
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
nixos/modules/security/acme.nix
View File

@ -178,6 +178,7 @@ in
path = [ pkgs.simp_le ]; path = [ pkgs.simp_le ];
preStart = '' preStart = ''
mkdir -p '${cfg.directory}' mkdir -p '${cfg.directory}'
chown '${data.user}:${data.group}' '${cfg.directory}'
if [ ! -d '${cpath}' ]; then if [ ! -d '${cpath}' ]; then
mkdir '${cpath}' mkdir '${cpath}'
fi fi

2
nixos/modules/security/acme.xml
View File

@ -75,7 +75,7 @@ options for the <literal>security.acme</literal> module.</para>
<programlisting> <programlisting>
security.acme.certs."foo.example.com" = { security.acme.certs."foo.example.com" = {
webroot = "/var/www/challenges"; webroot = config.security.acme.directory + "/acme-challenge";
email = "foo@example.com"; email = "foo@example.com";
user = "nginx"; user = "nginx";
group = "nginx"; group = "nginx";