nixos/jitsi-meet: enableACME by default
This commit is contained in:
parent
1a071343f2
commit
dcc12e4df6
nixos/modules/services/web-apps
|
@ -135,15 +135,11 @@ in
|
||||||
description = ''
|
description = ''
|
||||||
Whether to enable nginx virtual host that will serve the javascript application and act as
|
Whether to enable nginx virtual host that will serve the javascript application and act as
|
||||||
a proxy for the XMPP server. Further nginx configuration can be done by adapting
|
a proxy for the XMPP server. Further nginx configuration can be done by adapting
|
||||||
<option>services.nginx.virtualHosts.<hostName></option>. It is highly recommended to
|
<option>services.nginx.virtualHosts.<hostName></option>.
|
||||||
enable the <option>enableACME</option> and <option>forceSSL</option> options:
|
When this is enabled, ACME will be used to retrieve a TLS certificate by default. To disable
|
||||||
|
this, set the <option>services.nginx.virtualHosts.<hostName>.enableACME</option> to
|
||||||
<programlisting>
|
<literal>false</literal> and if appropriate do the same for
|
||||||
services.nginx.virtualHosts.''${config.services.jitsi-meet.hostName} = {
|
<option>services.nginx.virtualHosts.<hostName>.forceSSL</option>.
|
||||||
enableACME = true;
|
|
||||||
forceSSL = true;
|
|
||||||
};
|
|
||||||
</programlisting>
|
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
|
||||||
|
@ -278,6 +274,8 @@ in
|
||||||
services.nginx = mkIf cfg.nginx.enable {
|
services.nginx = mkIf cfg.nginx.enable {
|
||||||
enable = mkDefault true;
|
enable = mkDefault true;
|
||||||
virtualHosts.${cfg.hostName} = {
|
virtualHosts.${cfg.hostName} = {
|
||||||
|
enableACME = mkDefault true;
|
||||||
|
forceSSL = mkDefault true;
|
||||||
root = pkgs.jitsi-meet;
|
root = pkgs.jitsi-meet;
|
||||||
locations."~ ^/([a-zA-Z0-9=\\?]+)$" = {
|
locations."~ ^/([a-zA-Z0-9=\\?]+)$" = {
|
||||||
extraConfig = ''
|
extraConfig = ''
|
||||||
|
|
Loading…
Reference in New Issue