{ lib, pkgs, config, ... }:
let
+ flakeCompat = import ../../../../../lib/flake-compat.nix;
+
adminer = pkgs.callPackage ./adminer.nix {
inherit (pkgs.webapps) adminer;
};
env = config.myEnv.tools.kanboard;
};
wallabag = pkgs.callPackage ./wallabag.nix {
- wallabag = pkgs.webapps.wallabag.override { composerEnv = pkgs.composerEnv.override { php = pkgs.php72; }; };
+ wallabag = pkgs.webapps.wallabag.override {
+ composerEnv = pkgs.composerEnv.override {
+ php = pkgs.php73.withExtensions({ enabled, all }: enabled ++ [all.tidy]);
+ };
+ };
env = config.myEnv.tools.wallabag;
};
yourls = pkgs.callPackage ./yourls.nix {
dmarc-reports = pkgs.callPackage ./dmarc_reports.nix {
env = config.myEnv.tools.dmarc_reports;
};
+ csp-reports = pkgs.callPackage ./csp_reports.nix {
+ env = config.myEnv.tools.csp_reports;
+ };
landing = pkgs.callPackage ./landing.nix {};
cfg = config.myServices.websites.tools.tools;
pcfg = config.services.phpfpm.pools;
in {
+ imports =
+ builtins.attrValues (flakeCompat ../../../../../flakes/private/paste).nixosModules;
+
options.myServices.websites.tools.tools = {
enable = lib.mkEnableOption "enable tools website";
};
++ wallabag.keys
++ yourls.keys
++ dmarc-reports.keys
+ ++ csp-reports.keys
++ webhooks.keys;
services.duplyBackup.profiles = {
root = "/var/lib/ftp/devtools.immae.eu";
extraConfig = [
''
+ Use Apaxy "/var/lib/ftp/devtools.immae.eu" "title"
Timeout 600
ProxyTimeout 600
+ Header always set Content-Security-Policy-Report-Only "${config.myEnv.tools.csp_reports.policies.inline}"
<Directory "/var/lib/ftp/devtools.immae.eu">
DirectoryIndex index.php index.htm index.html
AllowOverride all
(phpbb.apache.vhostConf pcfg.phpbb.socket)
(dmarc-reports.apache.vhostConf pcfg.dmarc-reports.socket)
''
- Alias /paste /var/lib/fiche
- <Directory "/var/lib/fiche">
- DirectoryIndex index.txt index.html
- AllowOverride None
- Require all granted
- Options -Indexes
- </Directory>
+ <Location "/paste/">
+ ProxyPass unix://${config.services.paste.sockets.gunicorn}|http://tools.immae.eu/paste/
+ ProxyPassReverse unix://${config.services.paste.sockets.gunicorn}|http://tools.immae.eu/paste/
+ ProxyPreserveHost on
+ </Location>
+ <Location "/paste">
+ ProxyPass unix://${config.services.paste.sockets.gunicorn}|http://tools.immae.eu/paste/
+ ProxyPassReverse unix://${config.services.paste.sockets.gunicorn}|http://tools.immae.eu/paste/
+ ProxyPreserveHost on
+ </Location>
- Alias /BIP39 /var/lib/buildbot/outputs/bip39
- <Directory "/var/lib/buildbot/outputs/bip39">
+ Alias /BIP39 /var/lib/buildbot/outputs/immae/bip39
+ <Directory "/var/lib/buildbot/outputs/immae/bip39">
DirectoryIndex index.html
AllowOverride None
Require all granted
"/run/wrappers/bin/sendmail" landing "/tmp"
"${config.secrets.location}/webapps/webhooks"
];
+ "include" = "${config.secrets.location}/webapps/tools-csp-reports.conf";
};
phpEnv = {
CONTACT_EMAIL = config.myEnv.tools.contact;
"php_admin_value[open_basedir]" = "/run/wrappers/bin/sendmail:/var/lib/ftp/devtools.immae.eu:/tmp";
};
- phpPackage = pkgs.php72.withExtensions(e: pkgs.php72.enabledExtensions ++ [e.mysqli e.redis e.apcu e.opcache ]);
+ phpPackage = pkgs.php72.withExtensions({ enabled, all }: enabled ++ [all.mysqli all.redis all.apcu all.opcache ]);
};
adminer = adminer.phpFpm;
ttrss = {
user = "wwwrun";
group = "wwwrun";
settings = wallabag.phpFpm.pool;
- phpPackage = pkgs.php72;
+ phpPackage = pkgs.php73.withExtensions({ enabled, all }: enabled ++ [all.tidy]);
};
yourls = {
user = "wwwrun";
paths = [ "/var/secrets/webapps/tools-wallabag" ];
};
- services.fiche = {
- enable = true;
- port = config.myEnv.ports.fiche;
- domain = "tools.immae.eu/paste";
- https = true;
- };
};
}
projects / perso / Immae / Config / Nix.git / blobdiff