]> git.immae.eu Git - perso/Immae/Config/Nix.git/blame - nixops/modules/websites/ludivine/default.nix
projects / perso / Immae / Config / Nix.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Move secrets module outside of nixops
[perso/Immae/Config/Nix.git] / nixops / modules / websites / ludivine / default.nix
CommitLineData
9d90e7e2 1{ lib, pkgs, config, myconfig, mylibs, ... }:
3013caf1 2let
9d90e7e2
IB		 3 ludivinecassal = pkgs.callPackage ./ludivinecassal.nix { inherit (mylibs) fetchedGitPrivate; };
4 ludivinecassal_dev = ludivinecassal {
5 config = myconfig.env.websites.ludivinecassal.integration;
6 };
7 ludivinecassal_prod = ludivinecassal {
8 config = myconfig.env.websites.ludivinecassal.production;
9 };
86f6924f 10
3013caf1
IB		 11 cfg = config.services.myWebsites.Ludivine;
12in {
13 options.services.myWebsites.Ludivine = {
14 production = {
15 enable = lib.mkEnableOption "enable Ludivine's website in production";
16 };
17 integration = {
18 enable = lib.mkEnableOption "enable Ludivine's website in integration";
19 };
20 };
21
22 config = lib.mkMerge [
23 (lib.mkIf cfg.production.enable {
1a718805 24 secrets.keys = ludivinecassal_prod.keys;
e4a945cd
IB		 25 services.myWebsites.commons.stats.enable = true;
26 services.myWebsites.commons.stats.sites = [
27 {
28 name = "ludivinecassal.com";
091ae734 29 conf = ./goaccess.conf;
e4a945cd
IB		 30 }
31 ];
32
3013caf1
IB		 33 security.acme.certs."ludivinecassal" = config.services.myCertificates.certConfig // {
34 domain = "ludivinecassal.com";
35 extraDomains = {
36 "www.ludivinecassal.com" = null;
37 };
38 };
86f6924f 39
8eded9ec 40 services.myPhpfpm.preStart.ludivinecassal_prod = ludivinecassal_prod.phpFpm.preStart;
a0c845b4 41 services.myPhpfpm.serviceDependencies.ludivinecassal_prod = ludivinecassal_prod.phpFpm.serviceDeps;
98584540 42 services.myPhpfpm.poolConfigs.ludivinecassal_prod = ludivinecassal_prod.phpFpm.pool;
86f6924f 43 system.activationScripts.ludivinecassal_prod = ludivinecassal_prod.activationScript;
e5073add
IB		 44 system.extraSystemBuilderCmds = ''
45 mkdir -p $out/webapps
46 ln -s ${ludivinecassal_prod.webRoot} $out/webapps/${ludivinecassal_prod.apache.webappName}
47 '';
f8bde3d6
IB		 48 services.myWebsites.production.modules = ludivinecassal_prod.apache.modules;
49 services.myWebsites.production.vhostConfs.ludivine = {
50 certName = "ludivinecassal";
51 hosts = ["ludivinecassal.com" "www.ludivinecassal.com" ];
7da3ceec 52 root = ludivinecassal_prod.apache.root;
f8bde3d6
IB		 53 extraConfig = [ ludivinecassal_prod.apache.vhostConf ];
54 };
3013caf1
IB		 55 })
56 (lib.mkIf cfg.integration.enable {
1a718805 57 secrets.keys = ludivinecassal_dev.keys;
3013caf1 58 security.acme.certs."eldiron".extraDomains."ludivine.immae.eu" = null;
86f6924f 59
8eded9ec 60 services.myPhpfpm.preStart.ludivinecassal_dev = ludivinecassal_dev.phpFpm.preStart;
a0c845b4 61 services.myPhpfpm.serviceDependencies.ludivinecassal_dev = ludivinecassal_dev.phpFpm.serviceDeps;
98584540 62 services.myPhpfpm.poolConfigs.ludivinecassal_dev = ludivinecassal_dev.phpFpm.pool;
86f6924f 63 system.activationScripts.ludivinecassal_dev = ludivinecassal_dev.activationScript;
e5073add
IB		 64 system.extraSystemBuilderCmds = ''
65 mkdir -p $out/webapps
66 ln -s ${ludivinecassal_dev.webRoot} $out/webapps/${ludivinecassal_dev.apache.webappName}
67 '';
42429ef0 68 services.myWebsites.apacheConfig.ludivinecassal_dev.modules = ludivinecassal_dev.apache.modules;
f8bde3d6
IB		 69 services.myWebsites.integration.modules = ludivinecassal_dev.apache.modules;
70 services.myWebsites.integration.vhostConfs.ludivine = {
71 certName = "eldiron";
72 hosts = [ "ludivine.immae.eu" ];
e5073add 73 root = ludivinecassal_dev.apache.root;
f8bde3d6
IB		 74 extraConfig = [ ludivinecassal_dev.apache.vhostConf ];
75 };
3013caf1
IB		 76 })
77 ];
78}
My infrastructure configuration