X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=nixops%2Fmodules%2Fwebsites%2Ftools%2Ftools%2Fshaarli.nix;h=56658fd482dc5fe07837fcc8ede9b4849312de42;hb=85f5ed68104de9edd8f8e532dc0c2de931e3ca1b;hp=157c4de661ac2cac58c4e1c8eca757f393426e2c;hpb=5f08b34c5247ee0c4de2a9264d059b69271e3473;p=perso%2FImmae%2FConfig%2FNix.git diff --git a/nixops/modules/websites/tools/tools/shaarli.nix b/nixops/modules/websites/tools/tools/shaarli.nix index 157c4de..56658fd 100644 --- a/nixops/modules/websites/tools/tools/shaarli.nix +++ b/nixops/modules/websites/tools/tools/shaarli.nix @@ -49,6 +49,7 @@ in rec { vhostConf = '' Alias /Shaarli "${root}" + Include /run/keys/webapps/tools-shaarli DirectoryIndex index.php index.htm index.html Options Indexes FollowSymLinks MultiViews Includes @@ -64,18 +65,17 @@ in rec { destDir = "/run/keys/webapps"; user = apache.user; group = apache.group; - permissions = "0700"; + permissions = "0400"; text = '' - SHAARLI_LDAP_PASSWORD="${env.ldap.password}" - SHAARLI_LDAP_DN="${env.ldap.dn}" - SHAARLI_LDAP_HOST="ldaps://${env.ldap.host}" - SHAARLI_LDAP_BASE="${env.ldap.base}" - SHAARLI_LDAP_FILTER="${env.ldap.search}" + SetEnv SHAARLI_LDAP_PASSWORD "${env.ldap.password}" + SetEnv SHAARLI_LDAP_DN "${env.ldap.dn}" + SetEnv SHAARLI_LDAP_HOST "ldaps://${env.ldap.host}" + SetEnv SHAARLI_LDAP_BASE "${env.ldap.base}" + SetEnv SHAARLI_LDAP_FILTER "${env.ldap.search}" ''; }; phpFpm = rec { - serviceDeps = [ "openldap.service" "tools-shaarli-key.service" ]; - envFile = "/run/keys/webapps/tools-shaarli"; + serviceDeps = [ "openldap.service" ]; basedir = builtins.concatStringsSep ":" [ webRoot varDir ]; socket = "/var/run/phpfpm/shaarli.sock"; pool = '' @@ -87,7 +87,6 @@ in rec { pm = ondemand pm.max_children = 60 pm.process_idle_timeout = 60 - clear_env = no ; Needed to avoid clashes in browser cookies (same domain) php_value[session.name] = ShaarliPHPSESSID