This commit is contained in:
albert 2024-08-05 21:54:32 +09:00
parent d6dad1f681
commit 281084402a
Signed by: albert
GPG key ID: 3895DD267CA11BA9
2 changed files with 11 additions and 3 deletions

View file

@ -56,21 +56,28 @@
sopsFile = ../../../secrets/cloudflare.yaml;
};
sops.secrets."cloudflare/email" = {
owner = "haproxy";
sopsFile = ../../../secrets/cloudflare.yaml;
};
security.acme = {
acceptTerms = true;
defaults = {
keyType = "pem";
group = "haproxy";
extraLegoFlags = [ "--pem" ];
reloadServices = [ "haproxy" ];
email = "albert@sysctl.io";
dnsProvider = "cloudflare";
credentialFiles = {
CLOUDFLARE_API_KEY_FILE = "/var/run/secrets/cloudflare/api_key";
CLOUDFLARE_EMAIL_FILE = "/var/run/secrets/cloudflare/email";
};
};
certs = {
"sysctl.io" = {
directory = "/haproxy/";
enableDebugLogs = true;
};
};
};

View file

@ -1,4 +1,5 @@
cloudflare:
email: ENC[AES256_GCM,data:ycl75o3oi/zF6czNBfKzIg==,iv:MWUwoMU4XfHX9rilJlRGuPbISvhwtMAfku/0ZAckTSo=,tag:nekhk1dNOKeuYg87/ulDKA==,type:str]
api_key: ENC[AES256_GCM,data:DEPN2A7lQy74PIUdS1IBcQrO/hk77rApSjL6ET4NRizkpI2r,iv:xVwDzr1zJpt7UlfQZ87m+sY8VjDe/t/1hr41pMq9osg=,tag:2nzfNdeOU6Wx7tGIdMEZWQ==,type:str]
sops:
kms: []
@ -6,8 +7,8 @@ sops:
azure_kv: []
hc_vault: []
age: []
lastmodified: "2024-08-05T12:28:18Z"
mac: ENC[AES256_GCM,data:agVBlqv2ly721vWi+CL0s11jg9lkzpeuaQWr//qeZ9Tu67CM/DOzj+PZs29tkgnv/nFALxPQ4vXB89iW/106tJrKzZT5DhNRvAfDlC7gWTquPXxw6KkvlqSXlcFxsJjBRmQeUVnkk37zn2KQQl8dfn8KdyHU2WyJDEMNcV9miho=,iv:Qj0eSeaGpS6zbbjts20H81NOeyPbL9vA2g1UNr3Z+vY=,tag:Kt9h1ESzO2ARlEqbqp1fqQ==,type:str]
lastmodified: "2024-08-05T12:54:12Z"
mac: ENC[AES256_GCM,data:okgSNCxIjjO1Et52EVeaCz7Ep+QqEcwvTsyTmZEW1gedc7bQSCYra+E5RqS/xlVw6//+N5VJx0kSBYG79KVwMWC9tnm9FSwQwFBb8MvCjEdH2Dgxf9VXYd53P8SdLA8hQoFfREJekIbTiZoVGG6mk4Yl++ufECG/zl1IE6/eeVg=,iv:IiGI8uRJA/H8uIBd2nexg4R4ORVrtAvFIkKEMBB2/bQ=,tag:13Fgq4FSOim3V9l72XzjHA==,type:str]
pgp:
- created_at: "2024-08-05T12:38:54Z"
enc: |-