adriangl 566732a02c vaultwarden: local HTTPS via self-signed snakeoil-certs
Add a general environment.snakeoil-certs module that generates
self-signed certs at runtime (oneshot service + daily timer, idempotent
via x509 -checkend). Terminate TLS for vaultwarden with nginx on port
8001 -> 127.0.0.1:8000 using a snakeoil cert, so it's reachable over
the tailnet IP without the broken public reverse proxy.
2026-06-19 22:18:48 +02:00
2026-06-19 22:11:07 +02:00
2026-06-16 13:21:26 +02:00
2026-03-24 00:45:14 +01:00
2026-06-19 22:11:07 +02:00
2026-06-11 22:46:31 +02:00
2025-08-29 02:23:00 +02:00

first install enable lanzaboote 'sudo sbctl create-keys'

rebuild 'sudo nixos-rebuild switch --flake .# --no-write-lock-file -L --builders ""'

S
Description
I felt like starting again, setting up my nixos dotfiles.
Readme 27 MiB
Languages
Nix 99.4%
Luau 0.6%