diff options
| author | Dylan <boss@tehbox.org> | 2026-04-29 23:15:45 +1200 |
|---|---|---|
| committer | Dylan <boss@tehbox.org> | 2026-04-29 23:19:15 +1200 |
| commit | f96e43f992211290e3287facc505bea0bc1a3931 (patch) | |
| tree | 02860a965002f0418847cedad2fac2e71208b443 /modules/cgit.nix | |
| parent | da3a4174ae0a287871e36899893abe9c858ad7e5 (diff) | |
| download | nixos-configuration-f96e43f992211290e3287facc505bea0bc1a3931.tar.gz nixos-configuration-f96e43f992211290e3287facc505bea0bc1a3931.zip | |
Lots of updates
Diffstat (limited to 'modules/cgit.nix')
| -rw-r--r-- | modules/cgit.nix | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/modules/cgit.nix b/modules/cgit.nix index 1e62631..af4ecf2 100644 --- a/modules/cgit.nix +++ b/modules/cgit.nix @@ -74,6 +74,22 @@ in default = "git.example.com"; description = "Domain to host it on"; }; + useACMEHost = mkOption { + type = types.str; + default = ""; + description = "SSL cert to use if already aquired using security.acme.certs"; + }; + enableACME = mkEnableOption "Enable ACME with nginx"; + onlySSL = mkOption { + type = types.bool; + default = false; + description = "Only allow ssl connections"; + }; + forceSSL = mkOption { + type = types.bool; + default = true; + description = "Force ssl connections"; + }; package = mkPackageOption pkgs "cgit" { }; extraConfig = mkOption { type = types.str; @@ -132,6 +148,10 @@ fastcgi_param HTTP_HOST $server_name; fastcgi_pass unix:${config.services.fcgiwrap.instances.cgit.socket.address}; ''; }; + enableACME = cfg.enableACME; + forceSSL = cfg.forceSSL; + } // lib.optionalAttrs (cfg.useACMEHost != "") { + useACMEHost = "${cfg.useACMEHost}"; }; }; } |