Add openldap replication

[perso/Immae/Config/Nix.git] / modules / private / monitoring / objects_backup-2.nix

diff --git a/modules/private/monitoring/objects_backup-2.nix b/modules/private/monitoring/objects_backup-2.nix
index c302e453f08663f74fa26514beb688074e9bc914..2b80eee96f4643fbe836ccdc6aa7b48f917acb91 100644 (file)
--- a/modules/private/monitoring/objects_backup-2.nix
+++ b/modules/private/monitoring/objects_backup-2.nix
@@ -1,4 +1,4 @@
-{ ... }:
+{ config, pkgs, ... }:
 {
   service = [
     {
@@ -46,5 +46,36 @@
       use = "local-service";
       check_command = ["check_last_file_date" "/backup2/eldiron/mysql_backup" "7" "mysql"];
     }
+    {
+      service_description = "Openldap replication for eldiron is up to date";
+      use = "local-service";
+      check_command = let
+        name = "eldiron";
+        hcfg = config.myServices.databasesReplication.openldap.hosts.eldiron;
+        base = config.myServices.databasesReplication.openldap.base;
+        eldiron_schemas = pkgs.callPackage ../databases/openldap/eldiron_schemas.nix {};
+        ldapConfig = pkgs.writeText "slapd.conf" ''
+          ${eldiron_schemas}
+          moduleload  back_hdb
+          backend     hdb
+          database    hdb
+
+          suffix    "${hcfg.base}"
+          directory ${base}/${name}/openldap
+          '';
+      in [
+        "check_openldap_replication"
+        hcfg.url
+        hcfg.dn
+        "${config.secrets.location}/openldap_replication/eldiron/replication_password"
+        hcfg.base
+        ldapConfig
+      ];
+    }
+    {
+      service_description = "Last openldap dump in /backup2/eldiron/openldap_backup is not too old";
+      use = "local-service";
+      check_command = ["check_last_file_date" "/backup2/eldiron/openldap_backup" "7" "openldap"];
+    }
   ];
 }