diff options
| author | Alex Auvolat <alex@adnab.me> | 2021-12-30 19:27:32 +0100 |
|---|---|---|
| committer | Alex Auvolat <alex@adnab.me> | 2021-12-30 19:27:32 +0100 |
| commit | b00a8358b20ac99912bacafd8fee5466da257e67 (patch) | |
| tree | df81c06567cbae31098ac77f41c9c11d67b9cc79 /configuration.nix | |
| parent | 230c1d727b951e032603a5c776f540003829bff6 (diff) | |
| download | nixcfg-b00a8358b20ac99912bacafd8fee5466da257e67.tar.gz nixcfg-b00a8358b20ac99912bacafd8fee5466da257e67.zip | |
Add TLS to Nomad
Diffstat (limited to 'configuration.nix')
| -rw-r--r-- | configuration.nix | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/configuration.nix b/configuration.nix index 649e7e8..205eb6d 100644 --- a/configuration.nix +++ b/configuration.nix @@ -224,6 +224,15 @@ in enabled = true; network_interface = "wg0"; }; + tls = { + http = true; + rpc = true; + ca_file = "/var/lib/nomad/pki/nomad-ca.crt"; + cert_file = "/var/lib/nomad/pki/nomad2021.crt"; + key_file = "/var/lib/nomad/pki/nomad2021.key"; + verify_server_hostname = true; + verify_https_client = true; + }; plugin = [ { docker = [ |