tadpole: Add certs module

hosts/tadpole/modules/certs/default.nix

@@ -0,0 +1,12 @@
+{ ... }:
+{
+  security.acme = {
+    certs = {
+      "ppp.pm" = {
+        webroot = "/var/lib/acme/acme-challenge/";
+        email = "p@ppp.pm";
+        group = "nginx";
+      };
+    };
+  };
+}

hosts/tadpole/modules/ppp.pm-site/default.nix

@@ -14,16 +14,6 @@ in
   };
 
   config = lib.mkIf (enabled && nginxEnabled) {
-    security.acme = {
-      certs = {
-        "ppp.pm" = {
-          webroot = "/var/lib/acme/acme-challenge/";
-          email = "p@ppp.pm";
-          group = "nginx";
-        };
-      };
-    };
-
     services.pppdotpm-site = {
       enable = true;
       domain = "ppp.pm";