From 2623d05a30d91f4b0a38ddb8b411bcfe84fe4a3f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=E2=9C=BF=20corey?= Date: Thu, 9 Apr 2026 14:57:46 -0700 Subject: [PATCH] fix(spore): wait for tailscaled before nginx config reload During activation, if Tailscale restarts (e.g. after a package update), nginx-config-reload.service can run while MagicDNS is temporarily unavailable, causing nginx -t to fail with "host not found in upstream". Adding a soft dependency on tailscaled.service ensures systemd orders the reload after Tailscale is up. Co-Authored-By: Claude Sonnet 4.6 --- hosts/spore/services/web/default.nix | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/hosts/spore/services/web/default.nix b/hosts/spore/services/web/default.nix index 334a76cb..701c9f61 100644 --- a/hosts/spore/services/web/default.nix +++ b/hosts/spore/services/web/default.nix @@ -194,4 +194,11 @@ }; }; users.users.nginx.extraGroups = ["acme"]; + + # Ensure nginx config reload (triggered during activation) waits for + # Tailscale so upstream hostnames resolve during nginx -t. + systemd.services.nginx-config-reload = { + after = ["tailscaled.service"]; + wants = ["tailscaled.service"]; + }; }