- www = ''
- listen = /var/run/phpfpm/www.sock
- user = wwwrun
- group = wwwrun
- listen.owner = wwwrun
- listen.group = wwwrun
- pm = ondemand
- pm.max_children = 5
- pm.process_idle_timeout = 60
- ;php_admin_flag[log_errors] = on
- php_admin_value[open_basedir] = "/var/www"
- '';
+ connexionswing_dev = mypkgs.connexionswing_dev.phpFpm.pool;
+ connexionswing_prod = mypkgs.connexionswing_prod.phpFpm.pool;
+ nextcloud = mypkgs.nextcloud.phpFpm.pool;
+ mantisbt = mypkgs.mantisbt.phpFpm.pool;
+ };
+ };
+
+ system.activationScripts = {
+ connexionswing_dev = mypkgs.connexionswing_dev.activationScript;
+ connexionswing_prod = mypkgs.connexionswing_prod.activationScript;
+ nextcloud = mypkgs.nextcloud.activationScript;
+ httpd = ''
+ install -d -m 0755 /var/lib/acme/acme-challenge
+ '';
+ redis = ''
+ mkdir -p /run/redis
+ chown redis /run/redis
+ '';
+ gitolite =
+ assert checkEnv "NIXOPS_GITOLITE_LDAP_PASSWORD";
+ let
+ gitolite_ldap_groups = wrap {
+ name = "gitolite_ldap_groups.sh";
+ file = ./packages/gitolite_ldap_groups.sh;
+ vars = {
+ LDAP_PASS = builtins.getEnv "NIXOPS_GITOLITE_LDAP_PASSWORD";
+ };
+ paths = [ pkgs.openldap pkgs.stdenv.shellPackage pkgs.gnugrep pkgs.coreutils ];
+ };
+ in {
+ deps = [ "users" ];
+ text = ''
+ if [ -d /var/lib/gitolite ]; then
+ ln -sf ${gitolite_ldap_groups} /var/lib/gitolite/gitolite_ldap_groups.sh
+ chmod g+rx /var/lib/gitolite
+ fi
+ if [ -f /var/lib/gitolite/projects.list ]; then
+ chmod g+r /var/lib/gitolite/projects.list
+ fi
+ '';