NixOS ACME / LetsEncrypt - Public Room Timeline

	NixOS ACME / LetsEncrypt	111 Members
	Another day, another cert renewal	50 Servers

Sender	Message	Time
30 Dec 2021
m1cr0man	You do need to set the group explicitly when using `useACMEHost`. We can't assume that the cert is being used for other purposes in that scenario, thus it would be unsafe to set the group automatically	15:01:20
m1cr0man	* You do need to set the group explicitly when using `useACMEHost`. We can't assume that the cert is being used for only ngnix/apache in that scenario, thus it would be unsafe to set the group automatically	15:01:37
Winter (she/her)	Got it. I feel like that can definitely be documented better, I’ll PR if I can think of adequate wording. Question: why can’t we assume, though? In what scenario would someone be using one certificate across multiple HTTP servers? idk, just seems unlikely, it’s definitely best not to assume but i can’t think of an actual practical use case unless I’m just missing something obvious…	20:05:16
Winter (she/her)	maybe something something different ports something something?	20:07:50
m1cr0man	one wildcard for mail and web is a use case I used to maintain for a deployment	21:14:33
m1cr0man	I added nginx + dovecot + postfix users to acme group	21:14:56
Winter (she/her)	Redacted or Malformed Event	23:18:59
31 Dec 2021
m1cr0man	woohoo finally nixos-unstable is updated :)	13:28:55