diff --git a/hosts/bekkalokk/services/gitea/web-secret-provider/default.nix b/hosts/bekkalokk/services/gitea/web-secret-provider/default.nix index 3a8c0a3..4e9c628 100644 --- a/hosts/bekkalokk/services/gitea/web-secret-provider/default.nix +++ b/hosts/bekkalokk/services/gitea/web-secret-provider/default.nix @@ -102,4 +102,12 @@ in systemd.targets.timers.wants = map (org: "gitea-web-secret-provider@${org}.timer") organizations; services.openssh.authorizedKeysFiles = map (org: "/var/lib/gitea-web/authorized_keys.d/${org}") organizations; + + users.users.nginx.extraGroups = [ "gitea-web" ]; + services.nginx.virtualHosts."pages.pvv.ntnu.no" = { + kTLS = true; + forceSSL = true; + enableACME = true; + root = "/var/lib/gitea-web/web"; + }; }