-{ lib, pkgs, config, ... }:
+{ lib, config, ... }:
let
- cfg = config.myServices.websites.evariste.production;
- nsiVarDir = "/var/lib/ftp/nsievariste";
- stmgVarDir = "/var/lib/ftp/stmgevariste";
+ cfg = config.myServices.websites.denise.evariste;
+ nsiVarDir = "/var/lib/ftp/denise/nsievariste";
+ stmgVarDir = "/var/lib/ftp/denise/stmgevariste";
+ apacheUser = config.services.httpd.Prod.user;
+ apacheGroup = config.services.httpd.Prod.group;
in {
- options.myServices.websites.evariste.production.enable = lib.mkEnableOption "enable NSI/STMG Evariste website";
+ options.myServices.websites.denise.evariste.enable = lib.mkEnableOption "enable NSI/STMG Evariste website";
config = lib.mkIf cfg.enable {
services.webstats.sites = [
];
services.websites.env.production.modules = [ "proxy_fcgi" ];
- system.activationScripts.evariste = {
+ system.activationScripts.denise_evariste = {
deps = [ "httpd" ];
text = ''
- install -m 0755 -o wwwrun -g wwwrun -d /var/lib/php/sessions/nsievariste
- install -m 0755 -o wwwrun -g wwwrun -d /var/lib/php/sessions/stmgevariste
+ install -m 0755 -o ${apacheUser} -g ${apacheGroup} -d /var/lib/php/sessions/denise_nsievariste
+ install -m 0755 -o ${apacheUser} -g ${apacheGroup} -d /var/lib/php/sessions/denise_stmgevariste
'';
};
- services.phpfpm.pools.nsievariste = {
- user = "wwwrun";
- group = "wwwrun";
+ services.phpfpm.pools.denise_nsievariste = {
+ user = apacheUser;
+ group = apacheGroup;
settings = {
- "listen.owner" = "wwwrun";
- "listen.group" = "wwwrun";
+ "listen.owner" = apacheUser;
+ "listen.group" = apacheGroup;
"pm" = "ondemand";
"pm.max_children" = "5";
"pm.process_idle_timeout" = "60";
- "php_admin_value[open_basedir]" = "/var/lib/php/sessions/nsievariste:${nsiVarDir}:/tmp";
- "php_admin_value[session.save_path]" = "/var/lib/php/sessions/nsievariste";
+ "php_admin_value[open_basedir]" = "/var/lib/php/sessions/denise_nsievariste:${nsiVarDir}:/tmp";
+ "php_admin_value[session.save_path]" = "/var/lib/php/sessions/denise_nsievariste";
};
};
- services.websites.env.production.vhostConfs.nsievariste = {
- certName = "eldiron";
+ services.websites.env.production.vhostConfs.denise_nsievariste = {
+ certName = "denise_evariste";
addToCerts = true;
+ certMainHost = "nsievariste.immae.eu";
hosts = ["nsievariste.immae.eu" ];
root = nsiVarDir;
extraConfig = [
Use Stats nsievariste.immae.eu
<FilesMatch "\.php$">
- SetHandler "proxy:unix:${config.services.phpfpm.pools.nsievariste.socket}|fcgi://localhost"
+ SetHandler "proxy:unix:${config.services.phpfpm.pools.denise_nsievariste.socket}|fcgi://localhost"
</FilesMatch>
<Directory ${nsiVarDir}>
];
};
- services.phpfpm.pools.stmgevariste = {
- user = "wwwrun";
- group = "wwwrun";
+ services.phpfpm.pools.denise_stmgevariste = {
+ user = apacheUser;
+ group = apacheGroup;
settings = {
- "listen.owner" = "wwwrun";
- "listen.group" = "wwwrun";
+ "listen.owner" = apacheUser;
+ "listen.group" = apacheGroup;
"pm" = "ondemand";
"pm.max_children" = "5";
"pm.process_idle_timeout" = "60";
- "php_admin_value[open_basedir]" = "/var/lib/php/sessions/stmgevariste:${stmgVarDir}:/tmp";
- "php_admin_value[session.save_path]" = "/var/lib/php/sessions/stmgevariste";
+ "php_admin_value[open_basedir]" = "/var/lib/php/sessions/denise_stmgevariste:${stmgVarDir}:/tmp";
+ "php_admin_value[session.save_path]" = "/var/lib/php/sessions/denise_stmgevariste";
};
};
- services.websites.env.production.vhostConfs.stmgevariste = {
- certName = "eldiron";
+ services.websites.env.production.vhostConfs.denise_stmgevariste = {
+ certName = "denise_evariste";
addToCerts = true;
hosts = ["stmgevariste.immae.eu" ];
root = stmgVarDir;
Use Stats stmgevariste.immae.eu
<FilesMatch "\.php$">
- SetHandler "proxy:unix:${config.services.phpfpm.pools.stmgevariste.socket}|fcgi://localhost"
+ SetHandler "proxy:unix:${config.services.phpfpm.pools.denise_stmgevariste.socket}|fcgi://localhost"
</FilesMatch>
<Directory ${stmgVarDir}>
projects / perso / Immae / Config / Nix.git / blobdiff