X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=modules%2Fprivate%2Fenvironment.nix;h=837d24be95e65a9251ba93b54163fc48b6f4a113;hb=fcbdf67afe262bf6b35a4047956b2f8c12a04cb1;hp=e79feec573e2273e3471cc3d2f0b362f397173ae;hpb=75489e72e379af8aeac64bc4967717d9ae776ff0;p=perso%2FImmae%2FConfig%2FNix.git diff --git a/modules/private/environment.nix b/modules/private/environment.nix index e79feec..837d24b 100644 --- a/modules/private/environment.nix +++ b/modules/private/environment.nix @@ -228,6 +228,7 @@ in ''; type = submodule { options = { + rootKeys = mkOption { type = attrsOf str; description = "Keys of root users"; }; ldap = mkOption { description = '' LDAP credentials for cn=ssh,ou=services,dc=immae,dc=eu dn @@ -384,6 +385,16 @@ in }; type = attrsOf (attrsOf (listOf str)); }; + keys = mkOption { + default = {}; + description = "DNS keys"; + type = attrsOf (submodule { + options = { + algorithm = mkOption { type = str; description = "Algorithm"; }; + secret = mkOption { type = str; description = "Secret"; }; + }; + }); + }; slaveZones = mkOption { description = "List of slave zones"; type = listOf (submodule { @@ -393,6 +404,11 @@ in description = "NS master groups of this zone"; type = listOf str; }; + keys = mkOption { + default = []; + description = "Keys associated to the server"; + type = listOf str; + }; }; }); }; @@ -401,6 +417,7 @@ in type = listOf (submodule { options = { name = mkOption { type = str; description = "zone name"; }; + withCAA = mkOption { type = nullOr str; description = "CAA entry"; default = null; }; slaves = mkOption { description = "NS slave groups of this zone"; type = listOf str; @@ -558,6 +575,15 @@ in }; }; }; + eban = mkOption { + description = "Eban credentials for webhook"; + type = submodule { + options = { + user = mkOption { type = str; description = "User"; }; + password = mkOption { type = str; description = "Password"; }; + }; + }; + }; nrdp_tokens = mkOption { type = listOf str; description = "Tokens allowed to push status update"; }; slack_url = mkOption { type = str; description = "Slack webhook url to push status update"; }; slack_channel = mkOption { type = str; description = "Slack channel to push status update"; }; @@ -595,7 +621,10 @@ in description = "FTP configuration"; type = submodule { options = { - ldap = mkLdapOptions "FTP" {}; + ldap = mkLdapOptions "FTP" { + proftpd_filter = mkOption { type = str; description = "Filter for proftpd listing in LDAP"; }; + pure-ftpd_filter = mkOption { type = str; description = "Filter for pure-ftpd listing in LDAP"; }; + }; }; }; }; @@ -779,6 +808,16 @@ in description = "Buildbot configuration"; type = submodule { options = { + ssh_key = mkOption { + description = "SSH key information"; + type = submodule { + options = { + public = mkOption { type = str; description = "Public part of the key"; }; + private = mkOption { type = lines; description = "Private part of the key"; }; + }; + }; + }; + workerPassword = mkOption { description = "Buildbot worker password"; type = str; }; user = mkOption { description = "Buildbot user"; type = submodule { @@ -830,6 +869,7 @@ in ''; }; pythonPathHome = mkOption { type = bool; description = "Whether to add project’s python home to python path"; }; + workerPort = mkOption { type = port; description = "Port for the worker"; }; secrets = mkOption { type = attrsOf str; description = "Secrets for the project to dump as files"; @@ -933,6 +973,15 @@ in type = submodule { options = { ldap = mkLdapOptions "Gitolite" {}; + ssh_key = mkOption { + description = "SSH key information"; + type = submodule { + options = { + public = mkOption { type = str; description = "Public part of the key"; }; + private = mkOption { type = lines; description = "Private part of the key"; }; + }; + }; + }; }; }; }; @@ -1140,6 +1189,16 @@ in }; }; }; + cryptpad = mkOption { + description = "Cryptpad configuration"; + type = attrsOf (submodule { + options = { + email = mkOption { type = str; description = "Admin e-mail"; }; + admins = mkOption { type = listOf str; description = "Instance admin public keys"; }; + port = mkOption { type = port; description = "Port to listen to"; }; + }; + }); + }; ympd = mkOption { description = "Ympd configuration"; type = submodule { @@ -1158,6 +1217,16 @@ in }; }; }; + umami = mkOption { + description = "Umami configuration"; + type = submodule { + options = { + listenPort = mkOption { type = port; description = "Port to listen to"; }; + postgresql = mkPsqlOptions "Umami"; + hashSalt = mkOption { type = str; description = "Hash salt"; }; + }; + }; + }; yourls = mkOption { description = "Yourls configuration"; type = submodule { @@ -1413,13 +1482,6 @@ in }; }; }; - - privateFiles = mkOption { - type = path; - description = '' - Path to secret files to make available during build - ''; - }; }; options.hostEnv = mkOption { readOnly = true;