* How to get nginx and letsencrypt working on the guix system
@ 2023-10-31 18:23 Tobias Alexandra Platen
2023-10-31 18:27 ` Julien Lepiller
` (2 more replies)
0 siblings, 3 replies; 4+ messages in thread
From: Tobias Alexandra Platen @ 2023-10-31 18:23 UTC (permalink / raw)
To: guix-devel
I installed the guix system on a virtual machine, and changed the
config as documented in the guix manual under 12.9.19 Web Services:
(service certbot-service-type
(certbot-configuration
(email "tplaten@posteo.de")
(certificates (list (certificate-
configuration
(domains '("stream.isengaara.de")) (deploy-hook
%nginx-deploy-hook))))))
;;; nginx testing
(service nginx-service-type
(nginx-configuration
(server-blocks
(list (nginx-server-configuration
(server-name '("stream.isengaara.de"))
(root "/srv/http/stream.isengaara.de"))))))
Certbot needs running nginx to create a certificate, and nginx wont
start without a certificate. The documentation does not explain how
to solve this circular service dependency.
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: How to get nginx and letsencrypt working on the guix system
2023-10-31 18:23 How to get nginx and letsencrypt working on the guix system Tobias Alexandra Platen
@ 2023-10-31 18:27 ` Julien Lepiller
2023-10-31 19:00 ` Tobias Alexandra Platen
2023-10-31 19:51 ` Clément Lassieur
2 siblings, 0 replies; 4+ messages in thread
From: Julien Lepiller @ 2023-10-31 18:27 UTC (permalink / raw)
To: guix-devel, Tobias Alexandra Platen
Usually, this is fixed by not uting ssl at first, let certbot generate certificates, and reconfigure with ssl.
Le 31 octobre 2023 19:23:32 GMT+01:00, Tobias Alexandra Platen <guix@platen-software.de> a écrit :
>I installed the guix system on a virtual machine, and changed the
>config as documented in the guix manual under 12.9.19 Web Services:
>
>(service certbot-service-type
> (certbot-configuration
> (email "tplaten@posteo.de")
> (certificates (list (certificate-
>configuration
> (domains '("stream.isengaara.de")) (deploy-hook
>%nginx-deploy-hook))))))
> ;;; nginx testing
> (service nginx-service-type
> (nginx-configuration
> (server-blocks
> (list (nginx-server-configuration
> (server-name '("stream.isengaara.de"))
> (root "/srv/http/stream.isengaara.de"))))))
>
>Certbot needs running nginx to create a certificate, and nginx wont
>start without a certificate. The documentation does not explain how
>to solve this circular service dependency.
>
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: How to get nginx and letsencrypt working on the guix system
2023-10-31 18:23 How to get nginx and letsencrypt working on the guix system Tobias Alexandra Platen
2023-10-31 18:27 ` Julien Lepiller
@ 2023-10-31 19:00 ` Tobias Alexandra Platen
2023-10-31 19:51 ` Clément Lassieur
2 siblings, 0 replies; 4+ messages in thread
From: Tobias Alexandra Platen @ 2023-10-31 19:00 UTC (permalink / raw)
To: guix-devel
shepherd: Starting service nginx...
..........
Throw to key `%exception' with args `("#<&invoke-error program:
\"/gnu/store/8dgzjx9iirxqbwdcr9nfagjp0mn9g4qy-nginx-1.23.3/sbin/nginx\"
arguments: (\"-c\" \"/gnu/store/ywl1y1p77sbcm4nf9nahn6q9cndw637f-
nginx.conf\" \"-p\" \"/var/run/nginx\")
exit-status: 1 term-signal: #f stop-signal: #f>")'.
The directory /var/run/guix does not exist, where is created? How can I
get nginx logs for the failed start?
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: How to get nginx and letsencrypt working on the guix system
2023-10-31 18:23 How to get nginx and letsencrypt working on the guix system Tobias Alexandra Platen
2023-10-31 18:27 ` Julien Lepiller
2023-10-31 19:00 ` Tobias Alexandra Platen
@ 2023-10-31 19:51 ` Clément Lassieur
2 siblings, 0 replies; 4+ messages in thread
From: Clément Lassieur @ 2023-10-31 19:51 UTC (permalink / raw)
To: Tobias Alexandra Platen; +Cc: guix-devel
On Tue, Oct 31 2023, Tobias Alexandra Platen wrote:
> I installed the guix system on a virtual machine, and changed the
> config as documented in the guix manual under 12.9.19 Web Services:
>
> (service certbot-service-type
> (certbot-configuration
> (email "tplaten@posteo.de")
> (certificates (list (certificate-
> configuration
> (domains '("stream.isengaara.de")) (deploy-hook
> %nginx-deploy-hook))))))
> ;;; nginx testing
> (service nginx-service-type
> (nginx-configuration
> (server-blocks
> (list (nginx-server-configuration
> (server-name '("stream.isengaara.de"))
> (root "/srv/http/stream.isengaara.de"))))))
>
> Certbot needs running nginx to create a certificate, and nginx wont
> start without a certificate. The documentation does not explain how
> to solve this circular service dependency.
Hi! There is some reading about it there:
https://debbugs.gnu.org/cgi/pkgreport.cgi?include=subject%3Acertbot;package=guix
There is a proposal from Brice but it's not implemented yet, as far as I
know (https://debbugs.gnu.org/cgi/bugreport.cgi?bug=46961).
Please talk about it on the bug tracker rather than guix devel, this
allows for better tracking.
Thanks,
Clément
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2023-10-31 19:52 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-10-31 18:23 How to get nginx and letsencrypt working on the guix system Tobias Alexandra Platen
2023-10-31 18:27 ` Julien Lepiller
2023-10-31 19:00 ` Tobias Alexandra Platen
2023-10-31 19:51 ` Clément Lassieur
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).