fix(vpn): fix nginx chown

2024-04-30 23:15:04 +02:00 · 2024-04-30 23:15:04 +02:00 · 0da0f61068
parent f1cfbee8e7
commit 0da0f61068
1 changed files with 1 additions and 1 deletions
--- a/system/vpn.nix
+++ b/system/vpn.nix
@ -40,8 +40,8 @@ in {
      # some options cannot be set immediately
      ${cfg.package}/bin/tailscale up ${lib.escapeShellArgs cfg.extraUpFlags}

-      # TODO nginx.service currently fails because it supposedly doesn't have permissions for this file
      ${cfg.package}/bin/tailscale cert ${tailnetHost}
+    '' + lib.optionalString config.services.nginx.enable ''
      chown nginx:nginx /var/lib/tailscale/certs/${tailnetHost}.{key,crt}
    '';
  };