'';
};
- secrets.keys = [
- {
- dest = "webapps/tools-taskwarrior-web";
+ secrets.keys = {
+ "webapps/tools-taskwarrior-web" = {
user = "wwwrun";
group = "wwwrun";
permissions = "0400";
SetEnv TASKD_LDAP_BASE "${env.ldap.base}"
SetEnv TASKD_LDAP_FILTER "${env.ldap.filter}"
'';
- }
- ] ++ (lib.mapAttrsToList (name: userConfig: {
- dest = "webapps/tools-taskwarrior/${name}-taskrc";
+ };
+ } // (lib.mapAttrs' (name: userConfig: lib.nameValuePair "webapps/tools-taskwarrior/${name}-taskrc" {
inherit user group;
permissions = "0400";
text = let
dateformat=${dateFormat}
'';
}) env.taskwarrior-web);
- services.websites.env.tools.watchPaths = [ "/var/secrets/webapps/tools-taskwarrior-web" ];
+ services.websites.env.tools.watchPaths = [ config.secrets.fullPaths."webapps/tools-taskwarrior-web" ];
services.websites.env.tools.modules = [ "proxy_fcgi" "sed" ];
services.websites.env.tools.vhostConfs.task = {
certName = "eldiron";
<FilesMatch "\.php$">
SetHandler "proxy:unix:${config.services.phpfpm.pools.tasks.socket}|fcgi://localhost"
</FilesMatch>
- Include /var/secrets/webapps/tools-taskwarrior-web
+ Include ${config.secrets.fullPaths."webapps/tools-taskwarrior-web"}
</Directory>
''
''
after = [ "network.target" ];
path = [ pkgs.taskwarrior ];
- environment.TASKRC = "/var/secrets/webapps/tools-taskwarrior/${name}-taskrc";
+ environment.TASKRC = config.secrets.fullPaths."webapps/tools-taskwarrior/${name}-taskrc";
environment.BUNDLE_PATH = "${taskwarrior-web.gems}/${taskwarrior-web.gems.ruby.gemPath}";
environment.BUNDLE_GEMFILE = "${taskwarrior-web.gems.confFiles}/Gemfile";
environment.LC_ALL = "fr_FR.UTF-8";
projects / perso / Immae / Config / Nix.git / blobdiff