diff options
| author | José Romildo Malaquias <malaquias@gmail.com> | 2017-11-02 10:27:39 -0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2017-11-02 10:27:39 -0200 |
| commit | 62204a59c73bffbaf013906c7c6834ca003512a5 (patch) | |
| tree | 70da668e90e54e497c6a6ce286b0b27a132814b7 /nixos | |
| parent | 82e75a0bacb85a0bfee292e53e280f69dc92a0a2 (diff) | |
| parent | 7dce131b8625e4cb51f1e4ebcb28f88e21458c14 (diff) | |
| download | nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.tar nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.tar.gz nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.tar.bz2 nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.tar.lz nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.tar.xz nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.tar.zst nixlib-62204a59c73bffbaf013906c7c6834ca003512a5.zip | |
Merge branch 'master' into upd.lxqt
Diffstat (limited to 'nixos')
| -rw-r--r-- | nixos/modules/hardware/opengl.nix | 2 | ||||
| -rw-r--r-- | nixos/modules/security/acme.nix | 18 |
2 files changed, 18 insertions, 2 deletions
diff --git a/nixos/modules/hardware/opengl.nix b/nixos/modules/hardware/opengl.nix index 486fe7c1cd8f..c2c36f02a143 100644 --- a/nixos/modules/hardware/opengl.nix +++ b/nixos/modules/hardware/opengl.nix @@ -93,7 +93,7 @@ in hardware.opengl.extraPackages = mkOption { type = types.listOf types.package; default = []; - example = literalExample "with pkgs; [ vaapiIntel libvdpau-va-gl vaapiVdpau ]"; + example = literalExample "with pkgs; [ vaapiIntel libvdpau-va-gl vaapiVdpau intel-ocl ]"; description = '' Additional packages to add to OpenGL drivers. This can be used to add OpenCL drivers, VA-API/VDPAU drivers etc. diff --git a/nixos/modules/security/acme.nix b/nixos/modules/security/acme.nix index a40c5ef9ebe1..fb011019f7f5 100644 --- a/nixos/modules/security/acme.nix +++ b/nixos/modules/security/acme.nix @@ -139,6 +139,20 @@ in ''; }; + production = mkOption { + type = types.bool; + default = true; + description = '' + If set to true, use Let's Encrypt's production environment + instead of the staging environment. The main benefit of the + staging environment is to get much higher rate limits. + + See + <literal>https://letsencrypt.org/docs/staging-environment</literal> + for more detail. + ''; + }; + certs = mkOption { default = { }; type = with types; attrsOf (submodule certOpts); @@ -177,7 +191,9 @@ in cmdline = [ "-v" "-d" domain "--default_root" data.webroot "--valid_min" cfg.validMin ] ++ optionals (data.email != null) [ "--email" data.email ] ++ concatMap (p: [ "-f" p ]) data.plugins - ++ concatLists (mapAttrsToList (name: root: [ "-d" (if root == null then name else "${name}:${root}")]) data.extraDomains); + ++ concatLists (mapAttrsToList (name: root: [ "-d" (if root == null then name else "${name}:${root}")]) data.extraDomains) + ++ (if cfg.production then [] + else ["--server" "https://acme-staging.api.letsencrypt.org/directory"]); acmeService = { description = "Renew ACME Certificate for ${cert}"; after = [ "network.target" "network-online.target" ]; |