{ pkgs, lib, config, ... }:
let
  app = "lemorillon";
  domain = "${app}.hemono.fr";
  dataDir = "/srv/http/${app}";
in {
  services.nginx = {
    enable = true;
    virtualHosts.${domain} = {
      forceSSL = true;
      enableACME = true;
      root = dataDir;
      locations = {
        "/" = {
          index = "index.htm";
        };
      };
    };
  };
  systemd.tmpfiles.rules = [
    "d ${dataDir} 0700 ${config.services.nginx.user} ${config.services.nginx.group}"
  ];
}