hacc/haccfiles
8
0
Fork 1
Code Issues 1 Pull requests Projects Releases Wiki Activity

hotfix: disable mumble website

Browse source 
disable the mumble website because of cert permission issues causes by ad9c1f4481
nginx doesn't start because it can read the cert of the website
This commit is contained in:
schweby 2022-01-17 22:37:43 +01:00
parent ad9c1f4481
commit 6f0d8a6af9
Signed by: moira
GPG key ID: AF92FDD91CB44B2F
1 changed files with 10 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
services/murmur.nix
View file

@ -28,16 +28,16 @@ in
networking.firewall.allowedTCPPorts = [ config.services.murmur.port ]; networking.firewall.allowedTCPPorts = [ config.services.murmur.port ];
networking.firewall.allowedUDPPorts = [ config.services.murmur.port ]; networking.firewall.allowedUDPPorts = [ config.services.murmur.port ];
services.nginx.virtualHosts = # services.nginx.virtualHosts =
let vhost = { # let vhost = {
forceSSL = true; # forceSSL = true;
enableACME = true; # enableACME = true;
root = mumblesite.outPath; # root = mumblesite.outPath;
}; # };
in { # in {
"mumble.infra4future.de" = vhost; # "mumble.infra4future.de" = vhost;
"mumble.hacc.space" = vhost; # "mumble.hacc.space" = vhost;
}; # };
# set ACLs so that the murmur user can read the certificates # set ACLs so that the murmur user can read the certificates
security.acme.certs."mumble.hacc.space".postRun = "${pkgs.acl}/bin/setfacl -Rm u:murmur:rX /var/lib/acme/mumble.hacc.space"; security.acme.certs."mumble.hacc.space".postRun = "${pkgs.acl}/bin/setfacl -Rm u:murmur:rX /var/lib/acme/mumble.hacc.space";