};
type = attrsOf (attrsOf (listOf str));
};
+ keys = mkOption {
+ default = {};
+ description = "DNS keys";
+ type = attrsOf (submodule {
+ options = {
+ algorithm = mkOption { type = str; description = "Algorithm"; };
+ secret = mkOption { type = str; description = "Secret"; };
+ };
+ });
+ };
slaveZones = mkOption {
description = "List of slave zones";
type = listOf (submodule {
description = "NS master groups of this zone";
type = listOf str;
};
+ keys = mkOption {
+ default = [];
+ description = "Keys associated to the server";
+ type = listOf str;
+ };
};
});
};
type = listOf (submodule {
options = {
name = mkOption { type = str; description = "zone name"; };
+ withCAA = mkOption { type = nullOr str; description = "CAA entry"; default = null; };
slaves = mkOption {
description = "NS slave groups of this zone";
type = listOf str;
type = submodule {
options = {
password = mkOption { type = str; description = "Password for encrypting files"; };
- remote = mkOption { type = str; description = "Remote url access"; };
- accessKeyId = mkOption { type = str; description = "Remote access-key"; };
- secretAccessKey = mkOption { type = str; description = "Remote access secret"; };
+ remotes = mkOption {
+ type = attrsOf (submodule {
+ options = {
+ remote = mkOption {
+ type = unspecified;
+ example = literalExample ''
+ bucket: "s3://some_host/${bucket}";
+ '';
+ description = ''
+ Function.
+ Takes a bucket name as argument and returns a url
+ '';
+ };
+ accessKeyId = mkOption { type = str; description = "Remote access-key"; };
+ secretAccessKey = mkOption { type = str; description = "Remote access secret"; };
+ };
+ });
+ };
+ };
+ };
+ };
+ zrepl_backup = mkOption {
+ type = submodule {
+ options = {
+ ssh_key = mkOption {
+ description = "SSH key information";
+ type = submodule {
+ options = {
+ public = mkOption { type = str; description = "Public part of the key"; };
+ private = mkOption { type = lines; description = "Private part of the key"; };
+ };
+ };
+ };
+ mysql = mkMysqlOptions "Zrepl" {};
};
};
};
};
};
};
+ eban = mkOption {
+ description = "Eban credentials for webhook";
+ type = submodule {
+ options = {
+ user = mkOption { type = str; description = "User"; };
+ password = mkOption { type = str; description = "Password"; };
+ };
+ };
+ };
nrdp_tokens = mkOption { type = listOf str; description = "Tokens allowed to push status update"; };
slack_url = mkOption { type = str; description = "Slack webhook url to push status update"; };
slack_channel = mkOption { type = str; description = "Slack channel to push status update"; };
+ netdata_aggregator = mkOption { type = str; description = "Url where netdata information should be sent"; };
+ netdata_keys = mkOption { type = attrsOf str; description = "netdata host keys"; };
contacts = mkOption { type = attrsOf unspecified; description = "Contact dicts to fill naemon objects"; };
email_check = mkOption {
description = "Emails services to check";
type = submodule {
options = {
contact = mkOption { type = str; description = "Contact e-mail address"; };
+ assets = mkOption {
+ default = {};
+ type = attrsOf (submodule {
+ options = {
+ url = mkOption { type = str; description = "URL to fetch"; };
+ sha256 = mkOption { type = str; description = "Hash of the url"; };
+ };
+ });
+ description = "Assets to provide on assets.immae.eu";
+ };
davical = mkOption {
description = "Davical configuration";
type = submodule {
};
};
};
+ status_engine = mkOption {
+ description = "Status Engine configuration";
+ type = submodule {
+ options = {
+ mysql = mkMysqlOptions "StatusEngine" {};
+ ldap = mkLdapOptions "StatusEngine" {};
+ };
+ };
+ };
task = mkOption {
description = "Taskwarrior configuration";
type = submodule {
type = attrsOf str;
description = "Mapping 'name'.php => script for webhooks";
};
+ csp_reports = mkOption {
+ description = "CSP report configuration";
+ type = submodule {
+ options = {
+ report_uri = mkOption { type = str; description = "URI to report CSP violations to"; };
+ policies = mkOption { type = attrsOf str; description = "CSP policies to apply"; };
+ postgresql = mkPsqlOptions "CSP reports";
+ };
+ };
+ };
commento = mkOption {
description = "Commento configuration";
type = submodule {
};
};
};
+ serverSpecific = mkOption { type = attrsOf unspecified; description = "Server specific configuration"; };
websites = mkOption {
description = "Websites configurations";
type = submodule {
};
};
};
+ caldance = mkOption {
+ description = "Caldance configurations by environment";
+ type = submodule {
+ options = {
+ integration = mkOption {
+ description = "environment configuration";
+ type = submodule {
+ options = {
+ password = mkOption { type = str; description = "Password file content for basic auth"; };
+ };
+ };
+ };
+ };
+ };
+ };
tellesflorian = mkOption {
description = "Tellesflorian configurations by environment";
type =