JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #184845 from auchter/auchter/soju-tls

Browse Source
This commit is contained in:
Winter 2022-08-02 16:54:27 -04:00 committed by GitHub
commit 805e3f9451
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
nixos/modules/services/networking/soju.nix
View File

@ -49,12 +49,14 @@ in
tlsCertificate = mkOption { tlsCertificate = mkOption {
type = types.nullOr types.path; type = types.nullOr types.path;
default = null;
example = "/var/host.cert"; example = "/var/host.cert";
description = lib.mdDoc "Path to server TLS certificate."; description = lib.mdDoc "Path to server TLS certificate.";
}; };
tlsCertificateKey = mkOption { tlsCertificateKey = mkOption {
type = types.nullOr types.path; type = types.nullOr types.path;
default = null;
example = "/var/host.key"; example = "/var/host.key";
description = lib.mdDoc "Path to server TLS certificate key."; description = lib.mdDoc "Path to server TLS certificate key.";
}; };
@ -97,6 +99,16 @@ in
###### implementation ###### implementation
config = mkIf cfg.enable { config = mkIf cfg.enable {
assertions = [
{
assertion = (cfg.tlsCertificate != null) == (cfg.tlsCertificateKey != null);
message = ''
services.soju.tlsCertificate and services.soju.tlsCertificateKey
must both be specified to enable TLS.
'';
}
];
systemd.services.soju = { systemd.services.soju = {
description = "soju IRC bouncer"; description = "soju IRC bouncer";
wantedBy = [ "multi-user.target" ]; wantedBy = [ "multi-user.target" ];