fix(openwebui): enable ssl for internal sgx

Signed-off-by: Harald Hoyer <harald@hoyer.xyz>

systems/x86_64-linux/sgx/acme.nix

@@ -0,0 +1,23 @@
+{
+  pkgs,
+  lib,
+  config,
+  ...
+}:
+{
+  sops.secrets.internetbs = {
+    sopsFile = ../../../.secrets/hetzner/internetbs.yaml; # bring your own password file
+  };
+
+  security.acme = {
+    acceptTerms = true;
+    defaults = {
+      email = "harald@hoyer.xyz";
+      dnsProvider = "cloudflare";
+      credentialsFile = config.sops.secrets.internetbs.path;
+    };
+    certs = {
+      "internal.hoyer.world" = {   };
+    };
+  };
+}