SetEnv TASKD_LDAP_FILTER "${env.ldap.search}"
'';
}];
- security.acme.certs."eldiron".extraDomains.${fqdn} = null;
- services.myWebsites.tools.modules = [ "proxy_fcgi" "sed" ];
- services.myWebsites.tools.vhostConfs.task = {
+ services.websites.tools.modules = [ "proxy_fcgi" "sed" ];
+ services.websites.tools.vhostConfs.task = {
certName = "eldiron";
+ addToCerts = true;
hosts = [ "task.immae.eu" ];
root = "/run/current-system/webapps/_task";
extraConfig = [ ''
</Location>
'') env.taskwarrior-web);
};
- services.myPhpfpm.poolConfigs = {
+ services.phpfpm.poolConfigs = {
tasks = ''
listen = /var/run/phpfpm/task.sock
user = ${user}
'';
};
- system.extraSystemBuilderCmds = ''
- ln -s ${./www} $out/webapps/_task
- '';
+ myServices.websites.webappDirs._task = ./www;
security.acme.certs."task" = config.services.myCertificates.certConfig // {
inherit user group;
inherit fqdn;
listenHost = "::";
pki.manual.ca.cert = "${server_vardir}/keys/ca.cert";
- pki.manual.server.cert = "/var/lib/acme/task/fullchain.pem";
- pki.manual.server.crl = "/var/lib/acme/task/invalid.crl";
- pki.manual.server.key = "/var/lib/acme/task/key.pem";
+ pki.manual.server.cert = "${config.security.acme.directory}/task/fullchain.pem";
+ pki.manual.server.crl = "${config.security.acme.directory}/task/invalid.crl";
+ pki.manual.server.key = "${config.security.acme.directory}/task/key.pem";
requestLimit = 104857600;
};