try to statically set caddy to prevent cloudflare hash breaking

2025-10-12 07:13:16 +00:00 · 2025-09-30 16:32:48 -04:00
parent 774773c748
commit 68d8e60b7e
2 changed files with 16 additions and 4 deletions
--- a/platforms/nixos/modules/nmasur/presets/services/cloudflare/cloudflare.nix
+++ b/platforms/nixos/modules/nmasur/presets/services/cloudflare/cloudflare.nix
@@ -66,10 +66,7 @@ in
    nmasur.presets.services.caddy.cidrAllowlist = cloudflareIpRanges;

    # Tell Caddy to use Cloudflare DNS for ACME challenge validation
-    services.caddy.package = pkgs.caddy.withPlugins {
-      plugins = [ "github.com/caddy-dns/cloudflare@v0.2.1" ];
-      hash = "sha256-AcWko5513hO8I0lvbCLqVbM1eWegAhoM0J0qXoWL/vI=";
-    };
+    services.caddy.package = pkgs.nmasur.caddy;
    nmasur.presets.services.caddy.tlsPolicies = [
      {
        issuers = [