--- /dev/null
+{ lib, config, pkgs, ... }:
+let
+ cfg = config.myServices.websites.attilax.dolibarr;
+ varDir = "/var/lib/ftp/attilax/dolibarr";
+ apacheUser = config.services.httpd.Prod.user;
+ apacheGroup = config.services.httpd.Prod.group;
+in {
+ options.myServices.websites.attilax.dolibarr.enable = lib.mkEnableOption "enable Dolibarr website";
+
+ config = lib.mkIf cfg.enable {
+ system.activationScripts.dolibarr = {
+ deps = [ "httpd" "users" ];
+ text = ''
+ install -m 0755 -o ${apacheUser} -g ${apacheGroup} -d /var/lib/php/sessions/attilax
+ '';
+ };
+ services.phpfpm.pools.attilax_dolibarr = {
+ user = apacheUser;
+ group = apacheGroup;
+ settings = {
+ "listen.owner" = apacheUser;
+ "listen.group" = apacheGroup;
+
+ "pm" = "ondemand";
+ "pm.max_children" = "5";
+ "pm.process_idle_timeout" = "60";
+
+ "php_admin_value[upload_max_filesize]" = "100M";
+ "php_admin_value[post_max_size]" = "100M";
+ "php_admin_value[open_basedir]" = "/var/lib/php/sessions/attilax:${varDir}:/tmp";
+ "php_admin_value[session.save_path]" = "/var/lib/php/sessions/attilax";
+ };
+ phpOptions = config.services.phpfpm.phpOptions + ''
+ disable_functions = "mail"
+ '';
+ phpPackage = pkgs.php74;
+ };
+ services.websites.env.production.modules = [ "proxy_fcgi" ];
+ services.websites.env.production.vhostConfs.attilax_dolibarr = {
+ certName = "attilax";
+ addToCerts = true;
+ certMainHost = "doli.attilax.fr";
+ hosts = ["doli.attilax.fr"];
+ root = "${varDir}/dolibarr/htdocs";
+ extraConfig = [
+ ''
+ <FilesMatch "\.php$">
+ SetHandler "proxy:unix:${config.services.phpfpm.pools.attilax_dolibarr.socket}|fcgi://localhost"
+ </FilesMatch>
+
+ <Directory ${varDir}/dolibarr/htdocs>
+ DirectoryIndex index.php index.htm index.html
+ Options Indexes FollowSymLinks MultiViews Includes
+ AllowOverride All
+ Require all granted
+ </Directory>
+ ''
+ ];
+ };
+ };
+}
+
+