1 { lib, pkgs, config, myconfig, mylibs, ... }:
3 diaspora = pkgs.callPackage ./diaspora.nix {
4 inherit (mylibs) fetchedGithub;
5 env = myconfig.env.tools.diaspora;
8 root = "/run/current-system/webapps/tools_diaspora";
9 cfg = config.services.myWebsites.tools.diaspora;
11 options.services.myWebsites.tools.diaspora = {
12 enable = lib.mkEnableOption "enable diaspora's website";
15 config = lib.mkIf cfg.enable {
16 ids.uids.diaspora = myconfig.env.tools.diaspora.user.uid;
17 ids.gids.diaspora = myconfig.env.tools.diaspora.user.gid;
19 users.users.diaspora = {
21 uid = config.ids.uids.diaspora;
23 description = "Diaspora user";
24 home = diaspora.varDir;
25 useDefaultShell = true;
26 packages = [ diaspora.gems pkgs.nodejs diaspora.gems.ruby ];
27 extraGroups = [ "keys" ];
30 users.groups.diaspora.gid = config.ids.gids.diaspora;
32 mySecrets.keys = diaspora.keys;
33 systemd.services.diaspora = {
34 description = "Diaspora";
35 wantedBy = [ "multi-user.target" ];
37 "network.target" "redis.service" "postgresql.service"
40 "redis.service" "postgresql.service"
43 environment.RAILS_ENV = "production";
44 environment.BUNDLE_PATH = "${diaspora.gems}/${diaspora.gems.ruby.gemPath}";
45 environment.BUNDLE_GEMFILE = "${diaspora.gems.confFiles}/Gemfile";
46 environment.EYE_SOCK = "${diaspora.socketsDir}/eye.sock";
47 environment.EYE_PID = "${diaspora.socketsDir}/eye.pid";
49 path = [ diaspora.gems pkgs.nodejs diaspora.gems.ruby pkgs.curl pkgs.which pkgs.gawk ];
52 ./bin/bundle exec rails db:migrate
56 exec ${diaspora.railsRoot}/script/server
64 WorkingDirectory = diaspora.railsRoot;
65 StandardInput = "null";
66 KillMode = "control-group";
69 unitConfig.RequiresMountsFor = diaspora.varDir;
72 system.activationScripts.diaspora = {
75 install -m 0755 -o diaspora -g diaspora -d ${diaspora.socketsDir}
76 install -m 0755 -o diaspora -g diaspora -d ${diaspora.varDir} \
77 ${diaspora.varDir}/uploads ${diaspora.varDir}/tmp \
78 ${diaspora.varDir}/log
79 install -m 0700 -o diaspora -g diaspora -d ${diaspora.varDir}/tmp/pids
80 if [ ! -f ${diaspora.varDir}/schedule.yml ]; then
81 echo "{}" | $wrapperDir/sudo -u diaspora tee ${diaspora.varDir}/schedule.yml
86 services.myWebsites.tools.modules = [
87 "headers" "proxy" "proxy_http"
89 security.acme.certs."eldiron".extraDomains."diaspora.immae.eu" = null;
90 system.extraSystemBuilderCmds = ''
92 ln -s ${diaspora.railsRoot}/public/ $out/webapps/tools_diaspora
94 services.myWebsites.tools.vhostConfs.diaspora = {
96 hosts = [ "diaspora.immae.eu" ];
100 RewriteCond %{DOCUMENT_ROOT}/%{REQUEST_FILENAME} !-f
101 RewriteRule ^/(.*)$ unix://${diaspora.railsSocket}|http://diaspora.immae.eu/%{REQUEST_URI} [P,NE,QSA,L]
106 RequestHeader set X_FORWARDED_PROTO https