From d9768ec54e5b7820bb7bf3af5ddd91419349c6d3 Mon Sep 17 00:00:00 2001
From: Franck Cuny <franck@fcuny.net>
Date: Thu, 1 Jan 2026 09:29:35 -0800
Subject: combine acme and reverse proxy configuration

---
 profiles/acme.nix          | 12 ------------
 profiles/reverse-proxy.nix |  9 +++++++++
 2 files changed, 9 insertions(+), 12 deletions(-)
 delete mode 100644 profiles/acme.nix

(limited to 'profiles')

diff --git a/profiles/acme.nix b/profiles/acme.nix
deleted file mode 100644
index df04998..0000000
--- a/profiles/acme.nix
+++ /dev/null
@@ -1,12 +0,0 @@
-{ config, ... }:
-{
-  age.secrets.acme-cloudflare-env.file = ../secrets/acme-cloudflare-env.age;
-
-  security.acme.acceptTerms = true;
-  security.acme.defaults = {
-    email = "franck@fcuny.net";
-    dnsResolver = "1.1.1.1:53";
-    dnsProvider = "cloudflare";
-    credentialsFile = config.age.secrets.acme-cloudflare-env.path;
-  };
-}
diff --git a/profiles/reverse-proxy.nix b/profiles/reverse-proxy.nix
index daf2ecb..45b42f5 100644
--- a/profiles/reverse-proxy.nix
+++ b/profiles/reverse-proxy.nix
@@ -1,6 +1,7 @@
 {
   pkgs,
   lib,
+  config,
   ...
 }:
 let
@@ -35,6 +36,14 @@ in
     443
   ];
 
+  security.acme.acceptTerms = true;
+  security.acme.defaults = {
+    email = "franck@fcuny.net";
+    dnsResolver = "1.1.1.1:53";
+    dnsProvider = "cloudflare";
+    credentialsFile = config.age.secrets.acme-cloudflare-env.path;
+  };
+
   services.nginx = {
     enable = true;
     recommendedProxySettings = true;
-- 
cgit v1.2.3