temp

systems/jeeves/services/acme.nix

@@ -0,0 +1,22 @@
+{ config, ... }:
+let
+  vars = import ../vars.nix;
+in
+{
+  security.acme = {
+    acceptTerms = true;
+    defaults = {
+      email = "themadmaker2@protonmail.com";
+      dnsResolver = "1.1.1.1:53";
+      extraLegoFlags = [
+        "--dns-timeout=300"
+      ];
+    };
+    certs."tmmworkshop.com" = {
+      dnsProvider = "cloudflare";
+      environmentFile = "${vars.secrets}/services/acme/cloudflare.txt";
+      email = "themadmaker2@protonmail.com";
+      group = config.services.haproxy.group;
+    };
+  };
+}

systems/jeeves/services/duckdns.nix

@@ -1,10 +0,0 @@
-let
-  vars = import ../vars.nix;
-in
-{
-  services.duckdns = {
-    enable = true;
-    tokenFile = "${vars.secrets}/services/duckdns/token";
-    domainsFile = "${vars.secrets}/services/duckdns/domains";
-  };
-}

systems/jeeves/services/haproxy.cfg

@@ -22,24 +22,25 @@ defaults
 #Application Setup
 frontend ContentSwitching
   bind *:80 v4v6
-  bind *:443 v4v6 ssl crt /zfs/storage/secrets/docker/cloudflare.pem
+  bind *:443 v4v6 ssl crt /var/lib/acme/tmmworkshop.com/full.pem
   mode  http
   # tmmworkshop.com
+  acl host_tmmworkshop  hdr(host) -i tmmworkshop.com
+  acl host_tmmworkshop  hdr(host) -i www.tmmworkshop.com
   acl host_audiobookshelf  hdr(host) -i audiobookshelf.tmmworkshop.com
   acl host_cache  hdr(host) -i cache.tmmworkshop.com
   acl host_filebrowser  hdr(host) -i filebrowser.tmmworkshop.com
   acl host_homeassistant  hdr(host) -i homeassistant.tmmworkshop.com
   acl host_jellyfin  hdr(host) -i jellyfin.tmmworkshop.com
   acl host_share  hdr(host) -i share.tmmworkshop.com
-  acl host_uptime_kuma  hdr(host) -i uptimekuma-jeeves.tmmworkshop.com
 
+  use_backend tmmworkshop_nodes if host_tmmworkshop
   use_backend audiobookshelf_nodes if host_audiobookshelf
   use_backend cache_nodes  if host_cache
   use_backend filebrowser_nodes  if host_filebrowser
   use_backend homeassistant_nodes  if host_homeassistant
   use_backend jellyfin if host_jellyfin
   use_backend share_nodes  if host_share
-  use_backend uptime_kuma_nodes  if host_uptime_kuma
 
 backend audiobookshelf_nodes
   mode http
@@ -68,6 +69,6 @@ backend share_nodes
   mode http
   server server 127.0.0.1:8091
 
-backend uptime_kuma_nodes
+backend tmmworkshop_nodes
   mode http
-  server server 127.0.0.1:3001
+  server server 127.0.0.1:8080