From 021b0dd10e1f6b60dc9fdbefd3b87d29aa0fc579 Mon Sep 17 00:00:00 2001
From: EuAndreh <eu@euandre.org>
Date: Sun, 23 Aug 2020 13:57:52 -0300
Subject: Chage DNS record of prosody

Terraform file changes were du to me initially trying to do this via creating a
SRV DNS record. However this is not required, because Prosody is already on the
$TLD sever, the only difference being that it is listening on a different port.
---
 nixos-switch.sh | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'nixos-switch.sh')

diff --git a/nixos-switch.sh b/nixos-switch.sh
index 12a7dfe..404cba4 100755
--- a/nixos-switch.sh
+++ b/nixos-switch.sh
@@ -11,6 +11,8 @@ rsync -avzP favicons/ "${TLD}:${DATA_ROOT}/favicons/"
 
 # Ugly hack to change TLS certificates permissions
 echo "${USER_PASSWORD}" | ssh "$TLD" sudo -S "\
+sudo chown -R nginx:prosody /var/lib/acme/;                          \
+sudo chmod 755 /var/lib/acme/;                                       \
 sudo chmod 640 /var/lib/acme/${PROSODY_TLD}/key.pem;                 \
 sudo chmod 640 /var/lib/acme/${PROSODY_TLD}/fullchain.pem;           \
 sudo chmod 770 /var/lib/acme/${PROSODY_TLD}/;                        \
-- 
cgit v1.2.3