ilyakooo0/nixpkgs
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-12-29 14:57:28 +03:00
Code Issues Projects Releases Wiki Activity

Merge pull request #99948 from jsimonetti/acme-dnsresolver

Browse Source 
nixos/security/acme: Add DNS resolver option
This commit is contained in:
Andreas Rammhold 2020-10-07 16:04:34 +02:00 committed by GitHub
commit 9cc924a12a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
nixos/modules/security/acme.nix
View File

@ -110,6 +110,7 @@ let
protocolOpts = if useDns then ( protocolOpts = if useDns then (
[ "--dns" data.dnsProvider ] [ "--dns" data.dnsProvider ]
++ optionals (!data.dnsPropagationCheck) [ "--dns.disable-cp" ] ++ optionals (!data.dnsPropagationCheck) [ "--dns.disable-cp" ]
++ optionals (data.dnsResolver != null) [ "--dns.resolvers" data.dnsResolver ]
) else ( ) else (
[ "--http" "--http.webroot" data.webroot ] [ "--http" "--http.webroot" data.webroot ]
); );
@ -403,6 +404,17 @@ let
''; '';
}; };
dnsResolver = mkOption {
type = types.nullOr types.str;
default = null;
example = "1.1.1.1:53";
description = ''
Set the resolver to use for performing recursive DNS queries. Supported:
host:port. The default is to use the system resolvers, or Google's DNS
resolvers if the system's cannot be determined.
'';
};
credentialsFile = mkOption { credentialsFile = mkOption {
type = types.path; type = types.path;
description = '' description = ''