makefu/stockholm
1
0
Fork 0
Code Issues Pull requests Actions1 Packages Projects Releases Wiki Activity

tv pki: immigrate certificate environment

Browse source
This commit is contained in:
tv 2019-04-20 18:54:58 +02:00
parent d825d2db87
commit f940a17905
2 changed files with 15 additions and 9 deletions

10
tv/2configs/default.nix
View file

@ -17,6 +17,7 @@ with import <stockholm/lib>;
./bash ./bash
./htop.nix ./htop.nix
./nginx ./nginx
./pki
./ssh.nix ./ssh.nix
./sshd.nix ./sshd.nix
./vim.nix ./vim.nix
@ -90,15 +91,6 @@ with import <stockholm/lib>;
}; };
} }
{
environment.variables =
flip genAttrs (_: "${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt") [
"CURL_CA_BUNDLE"
"GIT_SSL_CAINFO"
"SSL_CERT_FILE"
];
}
{ {
services.cron.enable = false; services.cron.enable = false;
services.nscd.enable = false; services.nscd.enable = false;

14
tv/2configs/pki/default.nix Normal file
View file

@ -0,0 +1,14 @@
with import <stockholm/lib>;
{ config, ... }: let
certFile = config.environment.etc."ssl/certs/ca-certificates.crt".source;
in {
environment.variables = flip genAttrs (_: toString certFile) [
"CURL_CA_BUNDLE"
"GIT_SSL_CAINFO"
"SSL_CERT_FILE"
];
}