X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=modules%2Fprivate%2Fwebsites%2Fdefault.nix;h=440fddf512ea8ac0d8f6f49122b274f00d4bc878;hb=c1767d2e71fcda94227c472aee447f507116d820;hp=2542e86526e4b2a35fe9013a4cb8474ac007ac18;hpb=87949cb97f78dad19743352a584af432a4800e03;p=perso%2FImmae%2FConfig%2FNix.git diff --git a/modules/private/websites/default.nix b/modules/private/websites/default.nix index 2542e86..440fddf 100644 --- a/modules/private/websites/default.nix +++ b/modules/private/websites/default.nix @@ -1,7 +1,7 @@ { lib, pkgs, config, ... }: let - www_root = "/run/current-system/webapps/_www"; - theme_root = "/run/current-system/webapps/_theme"; + www_root = ./_www; + theme_root = pkgs.webapps.apache-theme.theme; apacheConfig = { cache = { # This setting permits to ignore time-based cache for files in the @@ -52,7 +52,7 @@ let LDAPOpCacheTTL 600 - Include /var/secrets/apache-ldap + Include ${config.secrets.fullPaths."apache-ldap"} ''; }; global = { @@ -102,15 +102,10 @@ in options.myServices.websites.enable = lib.mkEnableOption "enable websites"; config = lib.mkIf config.myServices.websites.enable { - services.duplyBackup.profiles.php = { - rootDir = "/var/lib/php"; - remotes = [ "eriomem" "ovh" ]; - }; users.users.wwwrun.extraGroups = [ "keys" ]; networking.firewall.allowedTCPPorts = [ 80 443 ]; - secrets.keys = [{ - dest = "apache-ldap"; + secrets.keys."apache-ldap" = { user = "wwwrun"; group = "wwwrun"; permissions = "0400"; @@ -126,7 +121,7 @@ in ''; - }]; + }; system.activationScripts = { httpd = '' @@ -149,9 +144,9 @@ in }; }; - services.filesWatcher.httpdProd.paths = [ "/var/secrets/apache-ldap" ]; - services.filesWatcher.httpdInte.paths = [ "/var/secrets/apache-ldap" ]; - services.filesWatcher.httpdTools.paths = [ "/var/secrets/apache-ldap" ]; + services.filesWatcher.httpdProd.paths = [ config.secrets.fullPaths."apache-ldap" ]; + services.filesWatcher.httpdInte.paths = [ config.secrets.fullPaths."apache-ldap" ]; + services.filesWatcher.httpdTools.paths = [ config.secrets.fullPaths."apache-ldap" ]; services.websites.env.production = { enable = true; @@ -159,7 +154,7 @@ in httpdName = "Prod"; ips = let ips = config.myEnv.servers.eldiron.ips.production; - in [ips.ip4] ++ (ips.ip6 or []); + in (ips.ip4 or []) ++ (ips.ip6 or []); modules = makeModules; extraConfig = makeExtraConfig; fallbackVhost = { @@ -176,11 +171,11 @@ in httpdName = "Inte"; ips = let ips = config.myEnv.servers.eldiron.ips.integration; - in [ips.ip4] ++ (ips.ip6 or []); + in (ips.ip4 or []) ++ (ips.ip6 or []); modules = makeModules; extraConfig = makeExtraConfig ++ moomin; fallbackVhost = { - certName = "eldiron"; + certName = "integration"; hosts = ["eldiron.immae.eu" ]; root = www_root; extraConfig = [ "DirectoryIndex index.htm" ]; @@ -193,7 +188,7 @@ in httpdName = "Tools"; ips = let ips = config.myEnv.servers.eldiron.ips.main; - in [ips.ip4] ++ (ips.ip6 or []); + in (ips.ip4 or []) ++ (ips.ip6 or []); modules = makeModules; extraConfig = makeExtraConfig ++ [ '' @@ -217,19 +212,22 @@ in }; }; - services.websites.webappDirs = { - _www = ./_www; - _theme = pkgs.webapps.apache-theme.theme; - }; + myServices.tools.kanboard.farm.instances.tonnelle = null; myServices.websites = { bakeer.cloud.enable = true; capitaines.landing_pages.enable = true; chloe = { - integration.enable = true; + new.enable = true; production.enable = true; }; + christophe_carpentier = { + website.enable = true; + agorakit.enable = true; + agora-project.enable = true; + }; + cip-ca = { sympa.enable = true; }; @@ -243,11 +241,15 @@ in evariste.enable = true; denisejerome.enable = true; oms.enable = true; + bingo.enable = true; aventuriers.enable = true; production.enable = true; }; - emilia.moodle.enable = false; + emilia = { + moodle.enable = false; + atelierfringant.enable = true; + }; florian = { app.enable = true; @@ -271,6 +273,13 @@ in leila.production.enable = true; + librezo = { + cloud.enable = true; + dolibarr.enable = true; + dolibarrDev.enable = true; + website.enable = true; + }; + ludivine = { integration.enable = true; production.enable = true; @@ -280,18 +289,31 @@ in nath.villon.enable = true; + nicecoop = { + gestion-compte.enable = true; + gestion-compte-integration.enable = true; + odoo.enable = true; + copanier.enable = true; + }; papa = { surveillance.enable = true; maison_bbc.enable = true; }; - patrick_fodella.production.enable = true; + patrick_fodella = { + ecolyeu.enable = true; + altermondia.enable = true; + }; piedsjaloux = { integration.enable = true; production.enable = true; }; + ressourcerie_banon.production.enable = true; + ressourcerie_banon.cryptpad.enable = true; + ressourcerie_banon.cloud.enable = true; + richie.production.enable = true; syden.peertube.enable = true; @@ -301,6 +323,7 @@ in tools.assets.enable = true; tools.cloud.enable = true; tools.commento.enable = true; + tools.cryptpad.enable = true; tools.dav.enable = true; tools.db.enable = true; tools.diaspora.enable = true; @@ -312,8 +335,11 @@ in tools.performance.enable = true; tools.tools.enable = true; tools.email.enable = true; + tools.stats.enable = false; + tools.visio.enable = true; games.codenames.enable = true; + games.terraforming-mars.enable = true; }; }; }