summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJohannes Löthberg <johannes@kyriasis.com>2024-05-16 20:24:47 +0000
committerJohannes Löthberg <johannes@kyriasis.com>2024-05-16 20:24:47 +0000
commit705f54203553e847288350888aa7966034e4e4dd (patch)
treea74b599478ac16588319742e65a0ac67dca2fcef
parent52a15cc2765b3a01dfbd21faa7c360dbc902e441 (diff)
downloadfile-705f54203553e847288350888aa7966034e4e4dd.tar.xz
Give prosody access to kyriasis.com cert
-rw-r--r--theos/certs/init.sls16
-rw-r--r--theos/certs/kyriasis_com.sls10
2 files changed, 18 insertions, 8 deletions
diff --git a/theos/certs/init.sls b/theos/certs/init.sls
index 82b7907..451d701 100644
--- a/theos/certs/init.sls
+++ b/theos/certs/init.sls
@@ -1,16 +1,16 @@
include:
- - .kyriasis_com
- - .theos_kyriasis_com
- - .xan_kyriasis_com
+ - .actual_kyriasis_com
+ - .gallery_remmy_io
- .git_kyriasis_com
- - .taskd_kyriasis_com
- - .miniflux_kyriasis_com
- .grafana_kyriasis_com
+ - .kyriasis_com
+ - .miniflux_kyriasis_com
- .prometheus_kyriasis_com
- - .repsys_kyriasis_com
- .remmy_io
- - .gallery_remmy_io
- - .actual_kyriasis_com
+ - .repsys_kyriasis_com
+ - .taskd_kyriasis_com
+ - .theos_kyriasis_com
+ - .xan_kyriasis_com
/etc/letsencrypt/archive:
file.directory:
diff --git a/theos/certs/kyriasis_com.sls b/theos/certs/kyriasis_com.sls
index 68bb7ab..2d1b83a 100644
--- a/theos/certs/kyriasis_com.sls
+++ b/theos/certs/kyriasis_com.sls
@@ -27,4 +27,14 @@ kyriasis.com:
- group: synapse
- mode: 600
+prosody-access-kyriasis.com-cert:
+ acl.present:
+ - name: /etc/letsencrypt/archive/kyriasis.com/
+ - acl_type: user
+ - acl_name: prosody
+ - perms: r-x
+ - recurse: True
+ - require_in:
+ - acme: kyriasis.com
+
# vim: set ft=yaml et: