!MthpOIxqJhTgrMNxDS:nixos.org

NixOS ACME / LetsEncrypt

103 Members
Another day, another cert renewal46 Servers

You have reached the beginning of time (for this room).


SenderMessageTime
22 Aug 2023
@raitobezarius:matrix.orgraitobezariusAnd used in NixOS19:32:29
@raitobezarius:matrix.orgraitobezariusRather than solved in NixOS19:32:32
@raitobezarius:matrix.orgraitobezariusAs you said it, we have too much complexity in our NixOS module19:32:54
@raitobezarius:matrix.orgraitobezariusBecause we don't have enough good primitives for this19:32:59
@raitobezarius:matrix.orgraitobezariussystemd is in the good position to create the right primitive19:33:05
@raitobezarius:matrix.orgraitobezariusMeanwhile, an official patch can be blessed19:33:12
@raitobezarius:matrix.orgraitobezariusAnd can be applied to nixpkgs19:33:17
@raitobezarius:matrix.orgraitobezariushttps://github.com/systemd/systemd/issues/2807519:33:38
@raitobezarius:matrix.orgraitobezariusAs the OP is interacting here, I'd just encourage to push through19:33:49
@raitobezarius:matrix.orgraitobezariusAnd coordinate with NixOS systemd folks if help is needed19:33:56
@raitobezarius:matrix.orgraitobezariusIt's not like anyway we don't need that feature for something else than ACME19:35:56
@raitobezarius:matrix.orgraitobezariusSo I wish we don't see hacks to generalize this behavior everywhere19:36:03
@m1cr0man:m1cr0man.comm1cr0manI do agree this should be solved upsream. I don't know if you clicked in but the "competing" PR (my one) is a pure systemd + nix implementation with arguably less overheads.20:26:48
@m1cr0man:m1cr0man.comm1cr0manIt's annoying to add more complexity but personally I am trying to keep the diff and unique code low where possible. Both lego and systemd could do with upstreamed features to help us out. For example, if lego had an "offline ok" flag for checking renewal that would remove all the openssl shenanigans. I did plan to upstream that at one point but just never had the time20:29:25
30 Aug 2023
@ajs124:ajs124.deajs124 joined the room.17:38:15

Show newer messages


Back to Room ListRoom Version: 6