manatee: Add home-assistant module

2026-01-05 17:43:48 +01:00
parent 209c2f7c81
commit 61c73fcfaf
3 changed files with 115 additions and 0 deletions
--- a/hosts/manatee/modules/certs/default.nix
+++ b/hosts/manatee/modules/certs/default.nix
@@ -0,0 +1,31 @@
+{ config, ... }:
+{
+  security.acme = {
+    acceptTerms = true;
+
+    defaults = {
+      email = "acme@ppp.pm";
+    };
+
+    certs = {
+      "ha.ppp.pm" = {
+        dnsProvider = "hetzner";
+        environmentFile = config.age.secrets.hetzner-dns.path;
+        group = "nginx";
+
+        extraLegoFlags = [
+          "--dns.resolvers=1.1.1.1:53,8.8.8.8:53"
+          "--dns.propagation-wait=60s" # Wait for 60 seconds for DNS propagation
+          "--dns-timeout=60"
+          "--http-timeout=60"
+        ];
+      };
+    };
+  };
+
+  age = {
+    secrets = {
+      "hetzner-dns".file = ../../../../secrets/manatee/hetzner-dns.age;
+    };
+  };
+}