diff options
author | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-04-25 01:37:42 +0200 |
---|---|---|
committer | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-04-25 01:37:42 +0200 |
commit | 1b3154e40a568a296c74759d68827366b5f26da9 (patch) | |
tree | 77fb426f72c73c806c95ced7eeb2cc62ece48287 /nixops/modules/websites/chloe/chloe.nix | |
parent | ca330baa14da56456ec538b232a91e1c443241bb (diff) | |
download | Nix-1b3154e40a568a296c74759d68827366b5f26da9.tar.gz Nix-1b3154e40a568a296c74759d68827366b5f26da9.tar.zst Nix-1b3154e40a568a296c74759d68827366b5f26da9.zip |
Move websites to new secrets
Diffstat (limited to 'nixops/modules/websites/chloe/chloe.nix')
-rw-r--r-- | nixops/modules/websites/chloe/chloe.nix | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/nixops/modules/websites/chloe/chloe.nix b/nixops/modules/websites/chloe/chloe.nix index 0861cdf..e2381d8 100644 --- a/nixops/modules/websites/chloe/chloe.nix +++ b/nixops/modules/websites/chloe/chloe.nix | |||
@@ -3,7 +3,7 @@ let | |||
3 | chloe = { config }: rec { | 3 | chloe = { config }: rec { |
4 | environment = config.environment; | 4 | environment = config.environment; |
5 | phpFpm = rec { | 5 | phpFpm = rec { |
6 | serviceDeps = [ "mysql.service" "${environment}-chloe-key.service" ]; | 6 | serviceDeps = [ "mysql.service" ]; |
7 | socket = "/var/run/phpfpm/chloe-${environment}.sock"; | 7 | socket = "/var/run/phpfpm/chloe-${environment}.sock"; |
8 | pool = '' | 8 | pool = '' |
9 | listen = ${socket} | 9 | listen = ${socket} |
@@ -28,8 +28,8 @@ let | |||
28 | pm.max_spare_servers = 3 | 28 | pm.max_spare_servers = 3 |
29 | ''}''; | 29 | ''}''; |
30 | }; | 30 | }; |
31 | keys."${environment}-chloe" = { | 31 | keys = [{ |
32 | destDir = "/run/keys/webapps"; | 32 | dest = "webapps/${environment}-chloe"; |
33 | user = apache.user; | 33 | user = apache.user; |
34 | group = apache.group; | 34 | group = apache.group; |
35 | permissions = "0400"; | 35 | permissions = "0400"; |
@@ -48,7 +48,7 @@ let | |||
48 | SetEnv SPIP_MYSQL_USER "${config.mysql.user}" | 48 | SetEnv SPIP_MYSQL_USER "${config.mysql.user}" |
49 | SetEnv SPIP_MYSQL_PASSWORD "${config.mysql.password}" | 49 | SetEnv SPIP_MYSQL_PASSWORD "${config.mysql.password}" |
50 | ''; | 50 | ''; |
51 | }; | 51 | }]; |
52 | apache = rec { | 52 | apache = rec { |
53 | user = "wwwrun"; | 53 | user = "wwwrun"; |
54 | group = "wwwrun"; | 54 | group = "wwwrun"; |
@@ -56,7 +56,7 @@ let | |||
56 | webappName = "chloe_${environment}"; | 56 | webappName = "chloe_${environment}"; |
57 | root = "/run/current-system/webapps/${webappName}"; | 57 | root = "/run/current-system/webapps/${webappName}"; |
58 | vhostConf = '' | 58 | vhostConf = '' |
59 | Include /run/keys/webapps/${environment}-chloe | 59 | Include /var/secrets/webapps/${environment}-chloe |
60 | 60 | ||
61 | RewriteEngine On | 61 | RewriteEngine On |
62 | ${if environment == "prod" then '' | 62 | ${if environment == "prod" then '' |