moved step-ca defaults file for mtls

modules/hosts/soteria/soteria.nix

@@ -50,12 +50,6 @@ in
     shell.program = "zsh";
     docker.enable = true;
 
-    home.file.".step/config/defaults.json".text = builtins.toJSON {
-      "ca-url" = "https://janus.john-stream.com/";
-      fingerprint = "2036c44f7b5901566ff7611ea6c927291ecc6d2dd00779c0eead70ec77fa10d6";
-      root = "${config.home.homeDirectory}/.step/certs/root_ca.crt";
-    };
-
     # sops.secrets."janus/admin_password" = {
     #   path = "${config.home.homeDirectory}/.janus";
     #   mode = "0400";
@@ -66,12 +60,16 @@ in
     mtls = {
       enable = true;
       subject = hostname;
-      caURL = "https://janus.john-stream.com/";
+      ca = {
+        url = "https://janus.john-stream.com/";
+        fingerprint = "2036c44f7b5901566ff7611ea6c927291ecc6d2dd00779c0eead70ec77fa10d6";
+      };
       san = [
         "${hostname}.john-stream.com"
         "192.168.1.142"
       ];
       lifetime = "1h";
+      renew.onCalendar = "*:3/15";
       renew.postCommands = [
         "${lib.getExe pkgs.docker} restart envoy"
       ];