nixops/modules/websites/aten/default.nix

   1 { lib, pkgs, config, myconfig, mylibs, ... }:
   2 let
   3     aten = pkgs.callPackage ./aten.nix { inherit (mylibs) fetchedGitPrivate yarn2nixPackage; };
   4     aten_dev  = aten {
   5       config = myconfig.env.websites.aten.integration;
   6     };
   7     aten_prod = aten {
   8       config = myconfig.env.websites.aten.production;
   9     };
  10
  11     cfg = config.services.myWebsites.Aten;
  12 in {
  13   options.services.myWebsites.Aten = {
  14     production = {
  15       enable = lib.mkEnableOption "enable Aten's website in production";
  16     };
  17     integration = {
  18       enable = lib.mkEnableOption "enable Aten's website in integration";
  19     };
  20   };
  21
  22   imports = [
  23     ../commons/stats.nix
  24   ];
  25
  26   config = lib.mkMerge [
  27     (lib.mkIf cfg.production.enable {
  28       secrets.keys = aten_prod.keys;
  29       services.myWebsites.commons.stats.enable = true;
  30       services.myWebsites.commons.stats.sites = [
  31         { name = "aten.pro"; }
  32       ];
  33
  34       security.acme.certs."aten" = config.services.myCertificates.certConfig // {
  35         domain = "aten.pro";
  36         extraDomains = {
  37           "www.aten.pro" = null;
  38         };
  39       };
  40
  41       services.myPhpfpm.preStart.aten_prod = aten_prod.phpFpm.preStart;
  42       services.myPhpfpm.serviceDependencies.aten_prod = aten_prod.phpFpm.serviceDeps;
  43       services.myPhpfpm.poolConfigs.aten_prod = aten_prod.phpFpm.pool;
  44       system.activationScripts.aten_prod = aten_prod.activationScript;
  45       system.extraSystemBuilderCmds = ''
  46         mkdir -p $out/webapps
  47         ln -s ${aten_prod.webRoot} $out/webapps/${aten_prod.apache.webappName}
  48         '';
  49       services.myWebsites.apacheConfig.aten_prod.modules = aten_prod.apache.modules;
  50       services.myWebsites.production.modules = aten_prod.apache.modules;
  51       services.myWebsites.production.vhostConfs.aten = {
  52         certName    = "aten";
  53         hosts       = [ "aten.pro" "www.aten.pro" ];
  54         root        = aten_prod.apache.root;
  55         extraConfig = [ aten_prod.apache.vhostConf ];
  56       };
  57     })
  58     (lib.mkIf cfg.integration.enable {
  59       secrets.keys = aten_dev.keys;
  60       security.acme.certs."eldiron".extraDomains."dev.aten.pro" = null;
  61       services.myPhpfpm.preStart.aten_dev = aten_dev.phpFpm.preStart;
  62       services.myPhpfpm.serviceDependencies.aten_dev = aten_dev.phpFpm.serviceDeps;
  63       services.myPhpfpm.poolConfigs.aten_dev = aten_dev.phpFpm.pool;
  64       system.activationScripts.aten_dev = aten_dev.activationScript;
  65       system.extraSystemBuilderCmds = ''
  66         mkdir -p $out/webapps
  67         ln -s ${aten_dev.webRoot} $out/webapps/${aten_dev.apache.webappName}
  68         '';
  69       services.myWebsites.integration.modules = aten_dev.apache.modules;
  70       services.myWebsites.integration.vhostConfs.aten = {
  71         certName    = "eldiron";
  72         hosts       = [ "dev.aten.pro" ];
  73         root        = aten_dev.apache.root;
  74         extraConfig = [ aten_dev.apache.vhostConf ];
  75       };
  76     })
  77   ];
  78 }
  79