description = "Host FQDN";
type = str;
};
+ users = mkOption {
+ type = unspecified;
+ default = pkgs: [];
+ description = ''
+ Sublist of users from realUsers. Function that takes pkgs as
+ argument and gives an array as a result
+ '';
+ };
emails = mkOption {
default = [];
description = "List of e-mails that the server can be a sender of";
'';
type = submodule {
options = {
- password = mkOption { type = string; description = "Password for the LDAP connection"; };
- dn = mkOption { type = string; description = "DN for the LDAP connection"; };
+ password = mkOption { type = str; description = "Password for the LDAP connection"; };
+ dn = mkOption { type = str; description = "DN for the LDAP connection"; };
};
};
};
type = attrsOf (submodule {
options = {
ip4 = mkOption {
- type = string;
+ type = str;
description = ''
ip4 address of the host
'';
};
ip6 = mkOption {
- type = listOf string;
+ type = listOf str;
default = [];
description = ''
ip6 addresses of the host
};
};
};
+ realUsers = mkOption {
+ description = ''
+ Attrset of function taking pkgs as argument.
+ Real users settings, should provide a subattr of users.users.<name>
+ with at least: name, (hashed)Password, shell
+ '';
+ type = attrsOf unspecified;
+ };
users = mkOption {
description = "System and regular users uid/gid";
type = attrsOf (submodule {
'';
type = submodule {
options = {
- mailto = mkOption { type = str; description = "Where to e-mail on error"; };
ssh_key = mkOption {
description = "SSH key information";
type = submodule {
imap_login = mkOption { type = str; description = "IMAP login"; };
imap_password = mkOption { type = str; description = "IMAP password"; };
eriomem_keys = mkOption { type = listOf (listOf str); description = "Eriomem keys"; default = []; };
+ ovh_sms = mkOption {
+ description = "OVH credentials for sms script";
+ type = submodule {
+ options = {
+ endpoint = mkOption { type = str; default = "ovh-eu"; description = "OVH endpoint"; };
+ application_key = mkOption { type = str; description = "Application key"; };
+ application_secret = mkOption { type = str; description = "Application secret"; };
+ consumer_key = mkOption { type = str; description = "Consumer key"; };
+ account = mkOption { type = str; description = "Account"; };
+ };
+ };
+ };
nrdp_tokens = mkOption { type = listOf str; description = "Tokens allowed to push status update"; };
slack_url = mkOption { type = str; description = "Slack webhook url to push status update"; };
slack_channel = mkOption { type = str; description = "Slack channel to push status update"; };
contacts = mkOption { type = attrsOf unspecified; description = "Contact dicts to fill naemon objects"; };
+ email_check = mkOption {
+ description = "Emails services to check";
+ type = attrsOf (submodule {
+ options = {
+ local = mkOption { type = bool; default = false; description = "Use local configuration"; };
+ port = mkOption { type = nullOr str; default = null; description = "Port to connect to ssh"; };
+ login = mkOption { type = nullOr str; default = null; description = "Login to connect to ssh"; };
+ targets = mkOption { type = listOf str; description = "Hosts to send E-mails to"; };
+ mail_address = mkOption { type = nullOr str; default = null; description = "E-mail recipient part to send e-mail to"; };
+ mail_domain = mkOption { type = nullOr str; default = null; description = "E-mail domain part to send e-mail to"; };
+ };
+ });
+ };
};
};
};
};
};
};
+ vpn = mkOption {
+ description = "VPN configuration";
+ type = attrsOf (submodule {
+ options = {
+ prefix = mkOption { type = str; description = "ipv6 prefix for the vpn subnet"; };
+ privateKey = mkOption { type = str; description = "Private key for the host"; };
+ publicKey = mkOption { type = str; description = "Public key for the host"; };
+ };
+ });
+ };
mail = mkOption {
description = "Mail configuration";
type = submodule {
user_attrs = mkOption { type = str; description = "User attribute mapping in LDAP"; };
iterate_attrs = mkOption { type = str; description = "User attribute mapping for listing in LDAP"; };
iterate_filter = mkOption { type = str; description = "User attribute filter for listing in LDAP"; };
+ postfix_mailbox_filter = mkOption { type = str; description = "Postfix filter to get mailboxes"; };
};
};
};
};
});
};
+ sympa = mkOption {
+ description = "Sympa configuration";
+ type = submodule {
+ options = {
+ listmasters = mkOption {
+ type = listOf str;
+ description = "Listmasters";
+ };
+ postgresql = mkPsqlOptions "Sympa";
+ data_sources = mkOption {
+ type = attrsOf str;
+ default = {};
+ description = "Data sources to make available to sympa";
+ };
+ scenari = mkOption {
+ type = attrsOf str;
+ default = {};
+ description = "Scenari to make available to sympa";
+ };
+ };
+ };
+ };
};
};
};
description = "Tools configurations";
type = submodule {
options = {
+ contact = mkOption { type = str; description = "Contact e-mail address"; };
davical = mkOption {
description = "Davical configuration";
type = submodule {
};
};
};
+ dmarc_reports = mkOption {
+ description = "DMARC reports configuration";
+ type = submodule {
+ options = {
+ mysql = mkMysqlOptions "DMARC" {};
+ anonymous_key = mkOption { type = str; description = "Anonymous hashing key"; };
+ };
+ };
+ };
etherpad-lite = mkOption {
description = "Etherpad configuration";
type = submodule {
ldap = mkLdapOptions "Etherpad" {
group_filter = mkOption { type = str; description = "Filter for groups"; };
};
+ adminPassword = mkOption { type = str; description = "Admin password for mypads / admin"; };
session_key = mkOption { type = str; description = "Session key"; };
api_key = mkOption { type = str; description = "API key"; };
redirects = mkOption { type = str; description = "Redirects for apache"; };
};
};
};
+ syden_peertube = mkOption {
+ description = "Peertube Syden configuration";
+ type = submodule {
+ options = {
+ listenPort = mkOption { type = port; description = "Port to listen to"; };
+ postgresql = mkPsqlOptions "Peertube";
+ redis = mkRedisOptions "Peertube";
+ };
+ };
+ };
phpldapadmin = mkOption {
description = "phpLdapAdmin configuration";
type = submodule {
};
};
};
+ webhooks = mkOption {
+ type = attrsOf str;
+ description = "Mapping 'name'.php => script for webhooks";
+ };
ympd = mkOption {
description = "Ympd configuration";
type = submodule {
description = "Websites configurations";
type = submodule {
options = {
+ immae = mkOption {
+ description = "Immae configuration by environment";
+ type = submodule {
+ options = {
+ temp = mkOption {
+ description = "Temp configuration";
+ type = submodule {
+ options = {
+ ldap = mkLdapOptions "Immae temp" {
+ filter = mkOption { type = str; description = "Filter for user access"; };
+ };
+ };
+ };
+ };
+ };
+ };
+ };
isabelle = mkOption {
description = "Isabelle configurations by environment";
type =
};
};
};
- telioTortay = mkOption {
+ telio_tortay = mkOption {
description = "Telio Tortay configuration";
type = submodule {
options = {
};
};
};
- ludivinecassal = mkOption {
+ ludivine = mkOption {
description = "Ludivinecassal configurations by environment";
type =
let
projects / perso / Immae / Config / Nix.git / blobdiff