Check environment variables at build time

2 files changed, 6 insertions, 2 deletions

diff --git a/libs.nix b/libs.nix
index da13a03..cef8586 100644
--- a/libs.nix
+++ b/libs.nix
@@ -26,4 +26,6 @@ in
       name = "${json.meta.name}-${version}";
       src = fetchgit json.git;
     };
+
+  checkEnv = var: builtins.stringLength (builtins.getEnv var) > 0;
 }
diff --git a/virtual/eldiron.nix b/virtual/eldiron.nix
index ed41429..fb366b7 100644
--- a/virtual/eldiron.nix
+++ b/virtual/eldiron.nix
@@ -6,6 +6,7 @@
 
   eldiron = { config, pkgs, ... }:
     let mypkgs = import ./packages.nix;
+        mylibs = import ../libs.nix;
     in
   {
     networking = {
@@ -96,7 +97,7 @@
           "ldap"
           "authnz_ldap"
         ]);
-      extraConfig = ''
+      extraConfig = assert mylibs.checkEnv "NIXOPS_HTTP_LDAP_PASSWORD"; ''
         <IfModule ldap_module>
           LDAPSharedCacheSize 500000
           LDAPCacheEntries 1024
@@ -162,7 +163,8 @@
     # FIXME: environment variables ?
     security.pam.services = let
       pam_ldap = pkgs.pam_ldap;
-      pam_ldap_mysql = pkgs.writeText "mysql.conf" ''
+      pam_ldap_mysql = assert mylibs.checkEnv "NIXOPS_MYSQL_PAM_PASSWORD";
+              pkgs.writeText "mysql.conf" ''
         host ldap.immae.eu
         base dc=immae,dc=eu
         binddn cn=mysql,cn=pam,ou=services,dc=immae,dc=eu