X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=nixops%2Fmodules%2Fwebsites%2Faten%2Faten.nix;fp=nixops%2Fmodules%2Fwebsites%2Faten%2Faten.nix;h=0000000000000000000000000000000000000000;hb=f8026b6e4c869aa108f6361c8ccd50890657994d;hp=04876a1a2afc95b3c2bc58338b87abe06dfd51bb;hpb=4aac110f17f0528d90510eec00c9a8df60bcf04f;p=perso%2FImmae%2FConfig%2FNix.git
diff --git a/nixops/modules/websites/aten/aten.nix b/nixops/modules/websites/aten/aten.nix
deleted file mode 100644
index 04876a1..0000000
--- a/nixops/modules/websites/aten/aten.nix
+++ /dev/null
@@ -1,104 +0,0 @@
-{ aten, lib, config }: rec {
- app = aten.override { inherit (config) environment; };
- phpFpm = rec {
- preStart = ''
- if [ ! -f "${app.varDir}/currentWebappDir" -o \
- ! -f "${app.varDir}/currentKey" -o \
- "${app}" != "$(cat ${app.varDir}/currentWebappDir 2>/dev/null)" ] \
- || ! sha512sum -c --status ${app.varDir}/currentKey; then
- pushd ${app} > /dev/null
- /run/wrappers/bin/sudo -u wwwrun APP_ENV=${app.environment} ./bin/console --env=${app.environment} cache:clear --no-warmup
- popd > /dev/null
- echo -n "${app}" > ${app.varDir}/currentWebappDir
- sha512sum /var/secrets/webapps/${app.environment}-aten > ${app.varDir}/currentKey
- fi
- '';
- serviceDeps = [ "postgresql.service" ];
- socket = "/var/run/phpfpm/aten-${app.environment}.sock";
- pool = ''
- listen = ${socket}
- user = ${apache.user}
- group = ${apache.group}
- listen.owner = ${apache.user}
- listen.group = ${apache.group}
- php_admin_value[upload_max_filesize] = 20M
- php_admin_value[post_max_size] = 20M
- ;php_admin_flag[log_errors] = on
- php_admin_value[open_basedir] = "${app}:${app.varDir}:/tmp"
- php_admin_value[session.save_path] = "${app.varDir}/phpSessions"
- ${if app.environment == "dev" then ''
- pm = ondemand
- pm.max_children = 5
- pm.process_idle_timeout = 60
- env[SYMFONY_DEBUG_MODE] = "yes"
- '' else ''
- pm = dynamic
- pm.max_children = 20
- pm.start_servers = 2
- pm.min_spare_servers = 1
- pm.max_spare_servers = 3
- ''}'';
- };
- keys = [{
- dest = "webapps/${app.environment}-aten";
- user = apache.user;
- group = apache.group;
- permissions = "0400";
- text = ''
- SetEnv APP_ENV "${app.environment}"
- SetEnv APP_SECRET "${config.secret}"
- SetEnv DATABASE_URL "${config.psql_url}"
- '';
- }];
- apache = rec {
- user = "wwwrun";
- group = "wwwrun";
- modules = [ "proxy_fcgi" ];
- webappName = "aten_${app.environment}";
- root = "/run/current-system/webapps/${webappName}";
- vhostConf = ''
-
- SetHandler "proxy:unix:${phpFpm.socket}|fcgi://localhost"
-
-
- Include /var/secrets/webapps/${app.environment}-aten
-
- ${if app.environment == "dev" then ''
-
- Use LDAPConnect
- Require ldap-group cn=dev.aten.pro,cn=httpd,ou=services,dc=immae,dc=eu
- ErrorDocument 401 ""
-
-
-
- Use LDAPConnect
- Require ldap-group cn=dev.aten.pro,cn=httpd,ou=services,dc=immae,dc=eu
- ErrorDocument 401 ""
-
- '' else ''
- Use Stats aten.pro
-
-
- Use LDAPConnect
- Require ldap-group cn=aten.pro,cn=httpd,ou=services,dc=immae,dc=eu
- ErrorDocument 401 ""
-
- ''}
-
-
- Options Indexes FollowSymLinks MultiViews Includes
- AllowOverride All
- Require all granted
- DirectoryIndex index.php
- FallbackResource /index.php
-
- '';
- };
- activationScript = {
- deps = [ "wrappers" ];
- text = ''
- install -m 0755 -o ${apache.user} -g ${apache.group} -d ${app.varDir}
- install -m 0750 -o ${apache.user} -g ${apache.group} -d ${app.varDir}/phpSessions
- '';
- };
-}