3p/nixpkgs: fix pomerium-fix
This commit is contained in:
parent
4707c69469
commit
c552ff053b
1 changed files with 0 additions and 9 deletions
|
@ -27,12 +27,3 @@ diff --git a/nixos/modules/services/web-servers/pomerium.nix b/nixos/modules/ser
|
||||||
LoadCredential = optionals (cfg.useACMEHost != null) [
|
LoadCredential = optionals (cfg.useACMEHost != null) [
|
||||||
"fullchain.pem:/var/lib/acme/${cfg.useACMEHost}/fullchain.pem"
|
"fullchain.pem:/var/lib/acme/${cfg.useACMEHost}/fullchain.pem"
|
||||||
"key.pem:/var/lib/acme/${cfg.useACMEHost}/key.pem"
|
"key.pem:/var/lib/acme/${cfg.useACMEHost}/key.pem"
|
||||||
@@ -119,7 +123,7 @@ in
|
|
||||||
before = [ "acme-finished-${cfg.useACMEHost}.target" ];
|
|
||||||
after = [ "acme-${cfg.useACMEHost}.service" ];
|
|
||||||
# Block reloading if not all certs exist yet.
|
|
||||||
- unitConfig.ConditionPathExists = [ "${certs.${cfg.useACMEHost}.directory}/fullchain.pem" ];
|
|
||||||
+ unitConfig.ConditionPathExists = [ "${config.security.acme.certs.${cfg.useACMEHost}.directory}/fullchain.pem" ];
|
|
||||||
serviceConfig = {
|
|
||||||
Type = "oneshot";
|
|
||||||
TimeoutSec = 60;
|
|
||||||
|
|
Loading…
Reference in a new issue