Squash changes containing private information

There were a lot of changes since the previous commit, but a lot of them
contained personnal information about users. All thos changes got
stashed into a single commit (history is kept in a different place) and
private information was moved in a separate private repository

1 files changed, 32 insertions, 0 deletions

diff --git a/systems/eldiron/websites/db/default.nix b/systems/eldiron/websites/db/default.nix
new file mode 100644
index 0000000..339948f
--- /dev/null
+++ b/systems/eldiron/websites/db/default.nix
@@ -0,0 +1,32 @@
+{ lib, pkgs, config,  ... }:
+let
+    cfg = config.myServices.websites.tools.db;
+in {
+  options.myServices.websites.tools.db = {
+    enable = lib.mkEnableOption "enable database's website";
+  };
+
+  config = lib.mkIf cfg.enable {
+    services.websites.env.tools.modules = [ "proxy_fcgi" ];
+    security.acme.certs.eldiron.extraDomainNames = [ "db-1.immae.eu" ];
+    services.websites.env.tools.vhostConfs.db-1 = {
+      certName    = "eldiron";
+      hosts       = ["db-1.immae.eu" ];
+      root        = null;
+      extraConfig = [ ''
+        Alias /adminer ${pkgs.webapps-adminer}
+        <Directory ${pkgs.webapps-adminer}>
+          DirectoryIndex index.php
+          <FilesMatch "\.php$">
+            SetHandler "proxy:unix:${config.services.phpfpm.pools.adminer.socket}|fcgi://localhost"
+          </FilesMatch>
+
+          Use LDAPConnect
+          Require ldap-group cn=users,cn=mysql,cn=pam,ou=services,dc=immae,dc=eu
+          Require ldap-group cn=users,cn=postgresql,cn=pam,ou=services,dc=immae,dc=eu
+        </Directory>
+        ''
+      ];
+    };
+  };
+}