30 lines
607 B
Nix
30 lines
607 B
Nix
{ pkgs, lib, config, ... }:
|
|
|
|
let
|
|
custom-generate-certs = pkgs.writeShellApplication {
|
|
name = "custom-generate-certs";
|
|
|
|
runtimeInputs = [
|
|
pkgs.mkcert
|
|
];
|
|
|
|
text = ''
|
|
mkcert -install
|
|
mkdir -p /var/projects/own/mkcert/
|
|
pushd /var/projects/own/mkcert/
|
|
# TODO: Grep from nix config
|
|
mkcert daniel-siepmann.localhost
|
|
mkcert mailhog.localhost
|
|
'';
|
|
};
|
|
in {
|
|
# TODO: Run once before httpd service starts?
|
|
environment.systemPackages = [
|
|
custom-generate-certs
|
|
];
|
|
|
|
security.pki.certificateFiles = [
|
|
/var/projects/own/mkcert/rootCA.pem
|
|
];
|
|
}
|