Fix gitweb, add https.

diff --git a/profiles/gitweb.nix b/profiles/gitweb.nix
index da20c960508a9245ce5e2535700d517273cfa5c9..2dd0d760a84fba5602084f5790dd1a5397bd64a1 100644 (file)
--- a/profiles/gitweb.nix
+++ b/profiles/gitweb.nix
@@ -3,15 +3,22 @@ let
   fqdn = "git.${config.networking.fqdn}";
 in
 {
-  services.nginx.gitweb = {
-    enable = true;
-    location = "";
-    virtualHost = "${fqdn}";
+  services.nginx = {
+    gitweb = {
+      enable = true;
+      location = "";
+      virtualHost = "${fqdn}";
+    };
+    virtualHosts."${fqdn}" = {
+      enableACME = config.security.acme.acceptTerms;
+      forceSSL = config.security.acme.acceptTerms;
+    };
   };
   # BOILER
   # PLATE
   networking.hosts."127.0.0.1" = [ "${fqdn}" ];
   # TODO Check perms see if they are g2g. idk about recursive +x
+  # Rethink this. Ugly.
   systemd.tmpfiles.rules = [
     "d '${config.services.gitweb.projectroot}' 0775 ${config.services.nginx.user} git"
     "Z '${config.services.gitweb.projectroot}' 0775 ${config.services.nginx.user} git"