1 { lib, pkgs, config, myconfig, ... }:
3 cfg = config.services.myWebsites.Immae;
4 varDir = "/var/lib/ftp/immae";
5 env = myconfig.env.websites.immae;
7 options.services.myWebsites.Immae = {
9 enable = lib.mkEnableOption "enable Immae's website";
13 config = lib.mkIf cfg.production.enable {
14 services.webstats.sites = [ { name = "www.immae.eu"; } ];
16 security.acme.certs."eldiron".extraDomains."www.immae.eu" = null;
18 services.myPhpfpm.poolConfigs.immae = ''
19 listen = /run/phpfpm/immae.sock
27 pm.process_idle_timeout = 60
29 php_admin_value[open_basedir] = "${varDir}:/tmp"
31 services.websites.production.modules = [ "proxy_fcgi" ];
32 services.websites.production.vhostConfs.immae = {
34 hosts = [ "www.immae.eu" ];
38 Use Stats www.immae.eu
41 SetHandler "proxy:unix:/run/phpfpm/immae.sock|fcgi://localhost"
45 DirectoryIndex index.php index.htm index.html
46 Options Indexes FollowSymLinks MultiViews Includes
53 Require ldap-group cn=blog,cn=immae.eu,ou=services,dc=immae,dc=eu
59 security.acme.certs."eldiron".extraDomains."bouya.org" = null;
60 security.acme.certs."eldiron".extraDomains."www.bouya.org" = null;
61 services.websites.production.vhostConfs.bouya = {
63 hosts = [ "bouya.org" "www.bouya.org" ];
66 RedirectMatch 301 ^/((?!\.well-known.*$).*)$ https://www.normalesup.org/~bouya/