diff options
| -rwxr-xr-x | nixos-switch.sh | 3 | ||||
| -rw-r--r-- | vps-configuration.env.nix | 2 |
2 files changed, 4 insertions, 1 deletions
diff --git a/nixos-switch.sh b/nixos-switch.sh index cd05c5b..01e8817 100755 --- a/nixos-switch.sh +++ b/nixos-switch.sh @@ -9,6 +9,8 @@ echo "${USER_PASSWORD}" | ssh "$TLD" sudo -S nix-channel --add "https://nixos.or echo "${USER_PASSWORD}" | ssh "$TLD" sudo -S -i nixos-rebuild switch --upgrade rsync -avzP favicons/ "${TLD}:${DATA_ROOT}/favicons/" +# shellcheck disable=2050 +if [[ true = false ]]; then echo Ugly hack to change TLS certificates permissions echo "${USER_PASSWORD}" | ssh "$TLD" sudo -S "\ sudo chown -R nginx:prosody /var/lib/acme/; \ @@ -26,3 +28,4 @@ sudo chown nginx:prosody /var/lib/acme/${PROSODY_CONVERSE_TLD}/fullchain.pem; \ sudo chown nginx:prosody /var/lib/acme/${PROSODY_CONVERSE_TLD}/key.pem; \ sudo chown nginx:prosody /var/lib/acme/${PROSODY_CONVERSE_TLD}/; \ sudo systemctl restart prosody.service" +fi diff --git a/vps-configuration.env.nix b/vps-configuration.env.nix index e938e27..edfa9b1 100644 --- a/vps-configuration.env.nix +++ b/vps-configuration.env.nix @@ -204,7 +204,7 @@ in { "/var/lib/acme/${envsubstConfiguration.prosodyConverseTLD}/key.pem"; }; in { - enable = true; + enable = false; admins = [ envsubstConfiguration.prosodyAdminUser ]; allowRegistration = false; modules = { websocket = true; }; |