| 15 Apr 2025 |
 hexa | and dynamic updates to that | 23:43:22 |
 conr | oh i see it on leggo | 23:44:13 |
 softwing 🩷💛🤍💜💙 (he/they/it) | @hexa:lossy.network lemme bounce offa your server | 23:44:14 |
| hexa | hm? | 23:44:29 |
| softwing 🩷💛🤍💜💙 (he/they/it) | nvm doesn't seem to allow https conns | 23:45:30 |
| conr | security.acme = {
acceptTerms = true;
defaults.email = "admin@example.org";
certs = {
"example.org" = {
domain = "*.example.org";
group = "porkbun";
dnsProvider = "cloudflare";
# location of your CLOUDFLARE_DNS_API_TOKEN=[value]
# https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#EnvironmentFile=
environmentFile = "/home/admin/porkbun";
};
};
};
so if i want to use this config, what is my environmentFile look like? api token info? | 23:53:06 |
| conr | * security.acme = {
acceptTerms = true;
defaults.email = "admin@example.org";
certs = {
"example.org" = {
domain = "*.example.org";
group = "nginx";
dnsProvider = "porkbun";
# location of your CLOUDFLARE_DNS_API_TOKEN=[value]
# https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#EnvironmentFile=
environmentFile = "/home/admin/porkbun";
};
};
};
so if i want to use this config, what is my environmentFile look like? api token info? | 23:54:14 |
| conr | * security.acme = {
acceptTerms = true;
defaults.email = "admin@example.org";
certs = {
"example.org" = {
domain = "*.example.org";
group = "nginx";
dnsProvider = "porkbun";
environmentFile = "/home/admin/porkbun";
};
};
};
so if i want to use this config, what is my environmentFile look like? api token info? | 23:54:34 |
| hexa | https://go-acme.github.io/lego/dns/porkbun/#credentials | 23:55:03 |
| conr | is the lego pkg installed too? | 23:55:41 |
| hexa | it is what we use behind security.acme | 23:56:01 |
| hexa | it is implicitly used | 23:56:05 |
| conr | ok thanks! i’ll try | 23:56:12 |
| 16 Apr 2025 |
| conr | hm getting this error Failed to determine group credentials: No such process | 00:29:18 |
| conr | what should my /home/admin/porkbun file group permissions be? | 00:29:45 |
| hexa | it is being included via EnvironmentFile= into the systemd unit | 00:35:06 |
| hexa | so it mostly just needs to exist | 00:35:11 |
| hexa | maybe in /home does not work because the unit uses ProtectSystem=strict | 00:35:32 |
| conr | In reply to @hexa:lossy.network
it is being included via EnvironmentFile= into the systemd unit what does this mean? | 00:40:08 |
| softwing 🩷💛🤍💜💙 (he/they/it) | Could you explain that <lego> file? | 00:41:17 |
| softwing 🩷💛🤍💜💙 (he/they/it) | * Could you explain that lego file? | 00:41:34 |
| softwing 🩷💛🤍💜💙 (he/they/it) | * Could you explain that lego files function? | 00:42:09 |
| conr | PORKBUN_SECRET_API_KEY=xxxxxx \
PORKBUN_API_KEY=yyyyyy \
lego --email you@example.com --dns porkbun -d '*.example.com' -d example.com run
| 00:42:17 |
| conr | but i put the api token i created in it | 00:42:30 |
| conr | and it lives here on nixos /home/user/porkbun | 00:42:52 |
| softwing 🩷💛🤍💜💙 (he/they/it) | Oh basically a nix command? | 00:42:55 |
| hexa | sorry, I cannot support you at that level | 00:43:56 |
| softwing 🩷💛🤍💜💙 (he/they/it) | I mean ik Linux commands but not nix specific commandsa | 00:43:57 |
| softwing 🩷💛🤍💜💙 (he/they/it) | * I mean ik Linux commands but not nix specific commands | 00:44:03 |
| conr | yes its a pkg | 00:44:07 |
