let
cfg = config.myServices.websites.leila.production;
varDir = "/var/lib/ftp/leila";
+ apacheUser = config.services.httpd.Prod.user;
+ apacheGroup = config.services.httpd.Prod.group;
in {
- options.myServices.websites.leila.production.enable = lib.mkEnableOption "enable Leila's website in production";
+ options.myServices.websites.leila.production.enable = lib.mkEnableOption "enable Leila's websites in production";
config = lib.mkIf cfg.enable {
- services.myPhpfpm.poolConfigs.leila = ''
- listen = /run/phpfpm/leila.sock
- user = wwwrun
- group = wwwrun
- listen.owner = wwwrun
- listen.group = wwwrun
+ services.phpfpm.pools.leila = {
+ user = apacheUser;
+ group = apacheGroup;
+ settings = {
+ "listen.owner" = apacheUser;
+ "listen.group" = apacheGroup;
- pm = ondemand
- pm.max_children = 5
- pm.process_idle_timeout = 60
+ "pm" = "ondemand";
+ "pm.max_children" = "5";
+ "pm.process_idle_timeout" = "60";
- php_admin_value[open_basedir] = "${varDir}:/tmp"
- '';
+ "php_admin_value[open_basedir]" = "${varDir}:/tmp";
+ };
+ phpPackage = pkgs.php72;
+ };
services.webstats.sites = [
{ name = "leila.bouya.org"; }
{ name = "chorale.leila.bouya.org"; }
+ { name = "syrwennecreation.bouya.org"; }
];
- services.websites.production.modules = [ "proxy_fcgi" ];
- services.websites.production.vhostConfs.leila_chorale = {
+ services.websites.env.production.modules = [ "proxy_fcgi" ];
+ services.websites.env.production.vhostConfs.leila_chorale = {
certName = "leila";
addToCerts = true;
hosts = [ "chorale.leila.bouya.org" "chorale-vocanta.fr.nf" "www.chorale-vocanta.fr.nf" ];
Require ldap-group cn=chorale.leila.bouya.org,cn=httpd,ou=services,dc=immae,dc=eu
<FilesMatch "\.php$">
- SetHandler "proxy:unix:/run/phpfpm/leila.sock|fcgi://localhost"
+ SetHandler "proxy:unix:${config.services.phpfpm.pools.leila.socket}|fcgi://localhost"
+ </FilesMatch>
+ </Directory>
+ ''
+ ];
+ };
+ services.websites.env.production.vhostConfs.leila_syrwenne = {
+ certName = "leila";
+ addToCerts = true;
+ hosts = [ "syrwennecreation.bouya.org" ];
+ root = "${varDir}/Syrwennecreation";
+ extraConfig = [
+ ''
+ Use Stats syrwennecreation.bouya.org
+ <Directory ${varDir}/Syrwennecreation>
+ DirectoryIndex index.php index.htm index.html
+ Options Indexes FollowSymLinks MultiViews Includes
+ AllowOverride None
+
+ <FilesMatch "\.php$">
+ SetHandler "proxy:unix:${config.services.phpfpm.pools.leila.socket}|fcgi://localhost"
</FilesMatch>
</Directory>
''
];
};
- services.websites.production.vhostConfs.leila = {
+ services.websites.env.production.vhostConfs.leila = {
certName = "leila";
certMainHost = "leila.bouya.org";
hosts = [ "leila.bouya.org" ];
Require ldap-group cn=chorale.leila.bouya.org,cn=httpd,ou=services,dc=immae,dc=eu
<FilesMatch "\.php$">
- SetHandler "proxy:unix:/run/phpfpm/leila.sock|fcgi://localhost"
+ SetHandler "proxy:unix:${config.services.phpfpm.pools.leila.socket}|fcgi://localhost"
</FilesMatch>
</Directory>
<Directory ${varDir}>
projects / perso / Immae / Config / Nix.git / blobdiff