acme: make ToS and contact config common

2024-08-16 08:55:49 +02:00 · 2024-08-16 08:55:49 +02:00 · ce3a40671c
parent 8ffb7e51f1
commit ce3a40671c
5 changed files with 4 additions and 7 deletions
--- a/common/base-server.nix
+++ b/common/base-server.nix
@ -57,4 +57,7 @@
  ];
  time.timeZone = "UTC";
  security.acme.acceptTerms = true;
  security.acme.defaults.email = "infra@forkos.org";
 }
--- a/common/raito-vm.nix
+++ b/common/raito-vm.nix
@ -30,8 +30,6 @@ in
  config = mkIf cfg.enable {
    services.qemuGuest.enable = true;
    systemd.network.enable = true;
    security.acme.defaults.email = "bagel-acme@lahfa.xyz";
    security.acme.acceptTerms = true;
    networking.useDHCP = lib.mkDefault false;
    systemd.network.networks."10-nat-lan" = {
--- a/hosts/bagel-box/default.nix
+++ b/hosts/bagel-box/default.nix
@ -47,9 +47,6 @@
  bagel.sysadmin.enable = true;
  security.acme.acceptTerms = true;
  security.acme.defaults.email = "infra@forkos.org";
  services.openssh.enable = true;
  system.stateVersion = "24.11";
--- a/hosts/build-coord/default.nix
+++ b/hosts/build-coord/default.nix
@ -1,3 +1,4 @@
 { lib, ... }:
 {
  imports = [ ./hardware.nix ];
--- a/hosts/wob-vpn-gw/netboot.nix
+++ b/hosts/wob-vpn-gw/netboot.nix
@ -42,8 +42,6 @@ in {
  networking.firewall.extraInputRules = ''
    ip6 saddr 2a01:584:11::/64 tcp sport < 1024 tcp dport 443 accept;
  '';
  security.acme.acceptTerms = true;
  security.acme.defaults.email = "infra@forkos.org";
  services.nginx = {
    enable = true;
    virtualHosts."vpn-gw.wob01.infra.forkos.org" = {