8 files changed, 0 insertions, 484 deletions
diff --git a/modules/private/websites/immae/chatons/immae-eu.properties b/modules/private/websites/immae/chatons/immae-eu.properties
deleted file mode 100644
index 32b2d47..0000000
--- a/modules/private/websites/immae/chatons/immae-eu.properties
+++ /dev/null
@@ -1,46 +0,0 @@
-# https://framagit.org/chatons/chatonsinfos/-/blob/master/MODELES/organization.properties
-# [File]
-file.class = organization
-file.protocol = ChatonsInfos-0.1
-file.datetime = 2021-01-11T22:23:00
-file.generator = Immae avec ses doigts
-# [Organisation]
-organization.country.name = France
-organization.country.code = FR
-organization.name = ImmaeEu
-organization.description = ImmaeEu est un CHATONS des Alpes Maritimes
-organization.website = https://www.immae.eu
-organization.logo = https://assets.immae.eu/logo.jpg
-organization.socialnetworks.diaspora = https://diaspora.immae.eu/people/1a185f29cc76cb35
-organization.socialnetworks.facebook = https://www.facebook.com/ismael.bouya
-organization.socialnetworks.mastodon = https://mastodon.immae.eu/@immae
-organization.socialnetworks.peertube = https://peertube.immae.eu/accounts/immae/
-organization.socialnetworks.twitter = https://twitter.com/_immae
-organization.chatrooms.xmpp = ismael@immae.fr
-organization.chatrooms.irc = immae@freenode
-organization.chatrooms.matrix = @immae:matrix.org
-organization.owner.name = Ismaël Bouya
-organization.owner.website = https://www.immae.eu
-organization.owner.logo = https://assets.immae.eu/logo.jpg
-organization.contact.url = https://www.immae.eu/contacts_fr.html
-organization.contact.email = contact@mail.immae.eu
-organization.legal.url = https://www.immae.eu/mentions.html
-organization.guide.technical = https://git.immae.eu/cgit/perso/Immae/Config/Nix.git/
-organization.status.level = ACTIVE
-organization.status.description = En activité
-organization.startdate = 01/01/2019
-organization.memberof.chatons.startdate = 01/07/2019
-organization.memberof.chatons.status.level = ACTIVE
-organization.memberof.chatons.status.description = Participe au collectif
-# [Subs]
-# Un lien vers un fichier properties complémentaire (type URL, optionnel, ex. https://www.chapril.org/.well-known/chapril.properties).
-subs.etherpad = https://www.immae.eu/.well-known/chatonsinfos/service-etherpad.properties
-# [Metrics]
-#metrics.http.total.2020 =
diff --git a/modules/private/websites/immae/chatons/service-etherpad.properties b/modules/private/websites/immae/chatons/service-etherpad.properties
deleted file mode 100644
index cfcab1d..0000000
--- a/modules/private/websites/immae/chatons/service-etherpad.properties
+++ /dev/null
@@ -1,164 +0,0 @@
-# service.properties
-# [File]
-# Classe du fichier (valeur parmi Federation/Organization/Service/Device, obligatoire).
-file.class = service
-# Version de l'ontologie utilisée utilisé (type STRING, recommandé).
-file.protocol = ChatonsInfos-0.1
-# Date et horaire de génération du fichier (type DATETIME, recommandé).
-file.datetime = 2021-01-04T00:01:00
-# Nom du générateur du fichier (type STRING, recommandé). Exemple : Florian avec ses doigts
-file.generator = Immae avec ses doigts
-# [Service]
-# Nom du service (type STRING, obligatoire). Exemple : Pad Exemple
-service.name = Etherpard
-# Description du service (type STRING, recommandé).
-service.description = Éditeur de texte collaboratif en temps réel. on peut y écrire simultanément.
-# Lien du site web du service (type URL, recommandé). Exemple : https://pad.exemple.ext
-service.website = https://ether.immae.eu
-# Lien du logo du service (type URL, recommandé, ex. https://www.chapril.org/.well-known/statoolinfos/chapril-logo-mini.png.
-service.logo = https://ether.immae.eu/favicon.ico
-# Lien de la page web des mentions légales du service (type URL, recommandé). Exemple : https://pad.exemple.ext/cgu.html
-service.legal.url = https://www.immae.eu/mentions.html
-# Lien de la documentation web du service (type URL, recommandé).
-service.guide.technical = https://git.immae.eu/cgit/perso/Immae/Config/Nix.git/
-# Lien des aides web pour le service (type URL, recommandé).
-service.guide.user =  
-# Lien de la page de support du service (type URL, recommandé). Exemple : https://exemple.ext/contact.html
-service.contact.url = https://www.immae.eu/contacts_fr.html
-# Courriel du support du service (type EMAIL, recommandé). Exemple : contact@exemple.ext
-service.contact.email = contact@mail.immae.eu
-# Date d'ouverture du service (type DATE, recommandé). Exemple : 20/03/2020
-service.startdate = 01/01/2019
-# Date de fermeture du service (type DATE, optionnel).
-service.enddate = 
-# Statut du service (un parmi {OK,WARNING,ALERT,ERROR,OVER,VOID}, obligatoire).
-service.status.level = OK
-# Description du statut du service (type STRING, optionnel, exemple : mise à jour en cours)
-service.status.description = OK
-# Inscriptions requises pour utiliser le service (parmi None;Free;Member;Client, obligatoire). 
-service.registration = None
-# [Software]
-# Nom du logiciel (type STRING, obligatoire).
-software.name = Etherpad
-# Lien du site web du logiciel (type URL, recommandé).
-software.website = https://etherpad.org/
-# Lien web vers la licence du logiciel (type URL, obligatoire).
-software.license.url = https://github.com/ether/etherpad-lite/blob/develop/LICENSE
-# Nom de la licence du logiciel (type STRING, obligatoire).
-software.license.name = Apache License Version 2.0
-# Version du logiciel (type STRING, recommandé).
-software.version = 1.8.3
-# Lien web vers les sources du logiciel (type URL, recommandé).
-software.source.url = https://github.com/ether/etherpad-lite
-# Liste de modules optionnels installés (type VALUES, optionnel, ex. Nextcloud-Calendar,Nextcloud-Talk).
-software.modules = ep_align,ep_bookmark,ep_colors,ep_comments_page,ep_cursortrace,ep_delete_empty_pads,ep_embedmedia,ep_font_size,ep_headings2,ep_immae_buttons,ep_ldapauth,ep_line_height,ep_markdown,ep_mypads,ep_page_view,ep_previewimages,ep_ruler,ep_scrollto,ep_set_title_on_pad,ep_subscript_and_superscript,ep_timesliderdiff
-# [Host]
-# Nom de l'hébergeur de la machine qui fait tourner le service, dans le cas d'un auto-hébergement c'est vous ! (type STRING, obligatoire). Exemple : OVH.
-host.name = Hetzner
-# Description de l'hébergeur (type STRING, optionnel).
-host.description = 
-# Type de serveur (un parmi NANO, PHYSICAL, VIRTUAL, SHARED, CLOUD, obligatoire, ex. PHYSICAL).
-#   NANO : nano-ordinateur (Raspberry Pi, Olimex…)
-#   PHYSICAL : machine physique
-#   VIRTUAL : machine virtuelle
-#   SHARED : hébergement mutualisé
-#   CLOUD : infrastructure multi-serveurs
-host.server.type = PHYSICAL
-# Type d'hébergement (un parmi HOME, HOSTEDBAY, HOSTEDSERVER, OUTSOURCED, obligatoire, ex. HOSTEDSERVER).
-#   HOME : hébergement à domicile
-#   HOSTEDBAY : serveur personnel hébergé dans une baie d'un fournisseur
-#   HOSTEDSERVER : serveur d'un fournisseur
-#   OUTSOURCED : infrastructure totalement sous-traitée
-host.provider.type = HOSTEDSERVER
-# Si vous avez du mal à remplir les champs précédents, ce tableau pourra vous aider :
-#                  NANO    PHYSICAL    VIRTUAL    SHARED    CLOUD
-# HOME              pm        pm          vm      shared    cloud
-# HOSTEDBAY         --        pm          vm      shared    cloud
-# HOSTEDSERVER      --        pm          vm      shared    cloud
-# OUTSOURCED        --        --         vps      shared    cloud
-# Légendes : pm : physical machine ; vm : virtual machine ; vps : virtual private server.
-# Pays de l'hébergeur (type STRING, recommandé). Exemple : France
-host.country.name = Allemagne
-# Code pays de l'hébergeur (type STRING, recommandé). Exemple : FR
-host.country.code = DE
-# [Subs]
-# Un lien vers un fichier properties complémentaire (type URL, optionnel). Exemple : https://
-subs.foo = 
-# [Metrics]
-# Nom du métrique (type STRING, recommandé).
-metrics.http.total.name = Nombre total de requêtes HTTP
-# Description du métrique (type STRING, recommandé).
-metrics.http.total.description = Somme des requêtes HTTP ipv4 et ipv6.
-# Métrique à valeur anuelle (type NUMERIC, optionnel).
-metrics.http.total.2020 =
-# Métrique à valeur mensuelle (type MONTHS, optionnel).
-metrics.http.total.2020.months=
-# Métrique à valeur hebdomadaire (type WEEKS, optionnel).
-metrics.http.total.2020.weeks=
-# Métrique à valeur quotidienne (type DAYS, optionnel).
-metrics.http.total.2020.days=
-# Nom du métrique (type STRING, recommandé).
-metrics.visitors.total.name = Nombre total de visiteurs
-# Description du métrique (type STRING, recommandé).
-metrics.visitors.total.description = 
-# Métrique à valeur anuelle (type NUMERIC, optionnel).
-metrics.visitors.total.2020 =
-# Métrique à valeur mensuelle (type MONTHS, optionnel).
-metrics.visitors.total.2020.months=
-# Métrique à valeur hebdomadaire (type WEEKS, optionnel).
-metrics.visitors.total.2020.weeks=
-# Métrique à valeur quotidienne (type DAYS, optionnel).
-metrics.visitors.total.2020.days=
-# [Metrics spécifiques au service]
diff --git a/modules/private/websites/immae/eurl/certificates/2021-certificate.crt b/modules/private/websites/immae/eurl/certificates/2021-certificate.crt
deleted file mode 100644
index 671534c..0000000
--- a/modules/private/websites/immae/eurl/certificates/2021-certificate.crt
+++ /dev/null
@@ -1,23 +0,0 @@
-----BEGIN CERTIFICATE-----
-MIIDyzCCArOgAwIBAgIUXNW7Lmte+fa5YxI7Gdznl7ZaLPIwDQYJKoZIhvcNAQEL
-BQAwdTELMAkGA1UEBhMCRlIxGDAWBgNVBAgMD0FscGVzLU1hcml0aW1lczEPMA0G
-A1UEBwwGR3Jhc3NlMRUwEwYDVQQKDAxJbW1hZUV1IEVVUkwxJDAiBgkqhkiG9w0B
-CQEWFWNvbnRhY3RAbWFpbC5pbW1hZS5ldTAeFw0yMTAxMTkwMDI5MDlaFw0yMjAx
-MTkwMDI5MDlaMHUxCzAJBgNVBAYTAkZSMRgwFgYDVQQIDA9BbHBlcy1NYXJpdGlt
-ZXMxDzANBgNVBAcMBkdyYXNzZTEVMBMGA1UECgwMSW1tYWVFdSBFVVJMMSQwIgYJ
-KoZIhvcNAQkBFhVjb250YWN0QG1haWwuaW1tYWUuZXUwggEiMA0GCSqGSIb3DQEB
-AQUAA4IBDwAwggEKAoIBAQDeyWKvTu2kuJ2HSgRzZZL6yFNHUXGgcl/q8vlRKFI4
-P0yHwcEwDCaCXquqS09WN99H55aNTjHfnu70dZXogyWHGk4vlaUkGiUoCAYK5tFU
-34fzpZuInhBL8nRY0pRV4H2t02jQMyiYowZXTqR86BRocbXZ4TY5EwD/hlrH6iDc
-pIlC7cVnWV4J5qXX9fXALbpXseD9PF0/y2tP5dM658jBL9KdW1PqlPGudvB44Z+a
-pE8XCXF9PGrVBNN7aPmizOb42scx/2XghX1DYCikiUf8m+FGjidxGlXmj4B6Dukp
-b7RxdkY7p97svH91uMQuUvDW5d93ZiatHNeYuAl8yI39AgMBAAGjUzBRMB0GA1Ud
-DgQWBBSgsFwzEybKyLF/Bkuz7FA5SwfwPTAfBgNVHSMEGDAWgBSgsFwzEybKyLF/
-Bkuz7FA5SwfwPTAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQDX
-Wij/gDT+7N/pSSVWImiYoe+/KsAJd0TLs39GJkvW0114RXKINYNU8exNY7rKMVCl
-TKePEevSo5CCartNfLXGIr3uqPlR+V3XF6KmyMSiB6k+GukoUtUg2Bp7ESGlpZXi
-wkHYclk0NIzxWyUrzNdflxu3gPU278qFMbUIlbdWNsHtrLbpHypelPQ+IaEbNoWV
-Q+M8Vg6ifsDmhp7TqFXpIoGa6CIxXuknDOidBpeE9kPjVu0kKrjXQULirNl3eEe6
-H1XUQ7lSdt/l3N1cHTj70x2xIi6fdwPQRqhXILrIuST+C0wpPiqPCv1rfcwh0PvU
-mZVZ/+83y3Zuo9lVqkbB
-----END CERTIFICATE-----
diff --git a/modules/private/websites/immae/matrix/client b/modules/private/websites/immae/matrix/client
deleted file mode 100644
index 2769de5..0000000
--- a/modules/private/websites/immae/matrix/client
+++ /dev/null
@@ -1,8 +0,0 @@
-{
-    "m.homeserver": {
-        "base_url": "https://immae.ems.host"
-    },
-    "m.identity_server": {
-        "base_url": "https://vector.im"
-    }
-}
diff --git a/modules/private/websites/immae/matrix/server b/modules/private/websites/immae/matrix/server
deleted file mode 100644
index 449155a..0000000
--- a/modules/private/websites/immae/matrix/server
+++ /dev/null
@@ -1,3 +0,0 @@
-{
-    "m.server": "immae.ems.host:443"
-}
diff --git a/modules/private/websites/immae/production.nix b/modules/private/websites/immae/production.nix
deleted file mode 100644
index 8b4998f..0000000
--- a/modules/private/websites/immae/production.nix
+++ /dev/null
@@ -1,137 +0,0 @@
-{ lib, pkgs, config,  ... }:
-let
-  cfg = config.myServices.websites.immae.production;
-  varDir = "/var/lib/buildbot/outputs/immae/blog";
-  coursDir = "/var/lib/buildbot/outputs/immae/cours";
-  rechercheDir = "/var/lib/buildbot/outputs/immae/recherche";
-  recettesDir = "/var/lib/buildbot/outputs/immae/recettes";
-  historyDir = "/var/lib/buildbot/outputs/immae/history";
-  docsDir = "/var/lib/buildbot/outputs/immae/docs/";
-  env = config.myEnv.websites.immae;
-in {
-  options.myServices.websites.immae.production.enable = lib.mkEnableOption "enable Immae's website";
-  config = lib.mkIf cfg.enable {
-    services.webstats.sites = [ { name = "www.immae.eu"; } ];
-    services.websites.env.production.vhostConfs.immae_production = {
-      certName     = "immae";
-      addToCerts   = true;
-      certMainHost = "www.immae.eu";
-      hosts        = [ "www.immae.eu" "immae.eu" ];
-      root         = varDir;
-      extraConfig  = [
-        ''
-        Use Stats www.immae.eu
-        Header always set Strict-Transport-Security "max-age=31536000"
-        <LocationMatch /.well-known/(webfinger|host-meta)>
-          Header always set Referrer-Policy "strict-origin-when-cross-origin"
-          RequestHeader set X-Forwarded-Proto "https"
-          RewriteRule ^(.*)$ https://mastodon.immae.eu%{REQUEST_URI} [QSA,L]
-        </LocationMatch>
-        RewriteEngine On
-        RewriteCond "%{REQUEST_URI}" "!^/.well-known/(webfinger|host-meta)"
-        RewriteCond "%{HTTP_HOST}" "!^www\.immae\.eu$" [NC]
-        RewriteRule ^(.+)$ https://www.immae.eu$1 [R=302,L]
-        <Directory ${varDir}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        Alias /.well-known/chatonsinfos ${./chatons}
-        <Directory ${./chatons}>
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride None
-          Require all granted
-        </Directory>
-        Alias /.well-known/matrix ${./matrix}
-        <Directory ${./matrix}>
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride None
-          Require all granted
-          Header always set Access-Control-Allow-Origin "*"
-        </Directory>
-        Alias /cours ${coursDir}
-        <Directory ${coursDir}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        Alias /docs ${docsDir}
-        <Directory ${docsDir}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        Alias /eurl ${./eurl}
-        <Directory ${./eurl}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride None
-          Require all granted
-        </Directory>
-        Alias /recherche ${rechercheDir}
-        <Directory ${rechercheDir}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        Alias /recettes ${recettesDir}
-        <Directory ${recettesDir}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        Alias /history ${historyDir}
-        <Directory ${historyDir}>
-          DirectoryIndex index.html
-          AllowOverride None
-          Require all granted
-        </Directory>
-        ''
-      ];
-    };
-    services.websites.env.production.vhostConfs.immae_fr = {
-      certName    = "immae";
-      addToCerts  = true;
-      hosts       = [ "www.immae.fr" "immae.fr" ];
-      root        = null;
-      extraConfig = [ ''
-        RedirectMatch 301 ^/((?!\.well-known.*$).*)$ https://www.immae.eu/chapeaux/
-        '' ];
-    };
-    services.websites.env.production.vhostConfs.immae_bouya = {
-      certName    = "immae";
-      addToCerts  = true;
-      hosts       = [ "bouya.org" "www.bouya.org" ];
-      root        = rechercheDir;
-      extraConfig = [ ''
-        <Directory ${rechercheDir}>
-          DirectoryIndex index.htm index.html
-          Options Indexes FollowSymLinks MultiViews Includes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        '' ];
-    };
-  };
-}
diff --git a/modules/private/websites/immae/release.nix b/modules/private/websites/immae/release.nix
deleted file mode 100644
index d06af87..0000000
--- a/modules/private/websites/immae/release.nix
+++ /dev/null
@@ -1,39 +0,0 @@
-{ lib, pkgs, config,  ... }:
-let
-  cfg = config.myServices.websites.immae.release;
-  varDir = "/var/lib/ftp/release.immae.eu";
-  env = config.myEnv.websites.release;
-in {
-  options.myServices.websites.immae.release.enable = lib.mkEnableOption "enable Release' website";
-  config = lib.mkIf cfg.enable {
-    services.webstats.sites = [ { name = "release.immae.eu"; } ];
-    services.websites.env.production.vhostConfs.immae_release = {
-      certName    = "immae";
-      addToCerts  = true;
-      hosts       = [ "release.immae.eu" ];
-      root        = varDir;
-      extraConfig = [
-        ''
-        Use Stats release.immae.eu
-        Use Apaxy "${varDir}" "title .duplicity-ignore"
-        <Directory "${varDir}">
-          Use LDAPConnect
-          Options Indexes
-          AllowOverride All
-          Require all granted
-        </Directory>
-        <Directory "${varDir}/packages">
-          Use LDAPConnect
-          Options Indexes FollowSymlinks
-          AllowOverride None
-          Require all granted
-        </Directory>
-        ''
-      ];
-    };
-  };
-}
diff --git a/modules/private/websites/immae/temp.nix b/modules/private/websites/immae/temp.nix
deleted file mode 100644
index 19aef1a..0000000
--- a/modules/private/websites/immae/temp.nix
+++ /dev/null
@@ -1,64 +0,0 @@
-{ lib, pkgs, config,  ... }:
-let
-  cfg = config.myServices.websites.immae.temp;
-  varDir = "/var/lib/immae_temp";
-  env = config.myEnv.websites.immae.temp;
-in {
-  options.myServices.websites.immae.temp.enable = lib.mkEnableOption "enable Temp' website";
-  config = lib.mkIf cfg.enable {
-    services.websites.env.production.vhostConfs.immae_temp = {
-      certName    = "immae";
-      addToCerts  = true;
-      hosts       = [ "temp.immae.eu" ];
-      root        = null;
-      extraConfig = [ ''
-        ProxyVia On
-        ProxyRequests Off
-        ProxyPreserveHost On
-        ProxyPass         / unix:///run/surfer/listen.sock|http://temp.immae.eu/
-        ProxyPassReverse  / unix:///run/surfer/listen.sock|http://temp.immae.eu/
-        <Proxy *>
-          Options FollowSymLinks MultiViews
-          AllowOverride None
-          Require all granted
-        </Proxy>
-      '' ];
-    };
-    secrets.keys."webapps/surfer" = {
-      permissions = "0400";
-      user = "wwwrun";
-      group = "wwwrun";
-      text = ''
-        CLOUDRON_LDAP_URL=ldaps://${env.ldap.host}
-        CLOUDRON_LDAP_USERS_BASE_DN=${env.ldap.base}
-        TOKENSTORE_FILE=/var/lib/surfer/tokens.json
-        CLOUDRON_LDAP_BIND_DN=${env.ldap.dn}
-        CLOUDRON_LDAP_BIND_PASSWORD=${env.ldap.password}
-        CLOUDRON_LDAP_USERS_BASE_DN=${env.ldap.base}
-        CLOUDRON_LDAP_FILTER="${env.ldap.filter}"
-        LISTEN=/run/surfer/listen.sock
-      '';
-    };
-    systemd.services.surfer = {
-      description = "Surfer";
-      wantedBy = [ "multi-user.target" ];
-      after = [ "network.target" ];
-      script = ''
-        exec ${pkgs.webapps.surfer}/bin/surfer-server ${varDir}
-      '';
-      serviceConfig = {
-        EnvironmentFile = config.secrets.fullPaths."webapps/surfer";
-        User = "wwwrun";
-        Group = "wwwrun";
-        StateDirectory = "surfer";
-        RuntimeDirectory = "surfer";
-        Type = "simple";
-      };
-    };
-  };
-}

diff --git a/modules/private/websites/immae/chatons/immae-eu.properties b/modules/private/websites/immae/chatons/immae-eu.properties deleted file mode 100644 index 32b2d47..0000000 --- a/modules/private/websites/immae/chatons/immae-eu.properties +++ /dev/null
@@ -1,46 +0,0 @@
1	# https://framagit.org/chatons/chatonsinfos/-/blob/master/MODELES/organization.properties
2
3	# [File]
4	file.class = organization
5	file.protocol = ChatonsInfos-0.1
6	file.datetime = 2021-01-11T22:23:00
7	file.generator = Immae avec ses doigts
8
9	# [Organisation]
10	organization.country.name = France
11	organization.country.code = FR
12	organization.name = ImmaeEu
13	organization.description = ImmaeEu est un CHATONS des Alpes Maritimes
14	organization.website = https://www.immae.eu
15	organization.logo = https://assets.immae.eu/logo.jpg
16	organization.socialnetworks.diaspora = https://diaspora.immae.eu/people/1a185f29cc76cb35
17	organization.socialnetworks.facebook = https://www.facebook.com/ismael.bouya
18	organization.socialnetworks.mastodon = https://mastodon.immae.eu/@immae
19	organization.socialnetworks.peertube = https://peertube.immae.eu/accounts/immae/
20	organization.socialnetworks.twitter = https://twitter.com/_immae
21	organization.chatrooms.xmpp = ismael@immae.fr
22	organization.chatrooms.irc = immae@freenode
23	organization.chatrooms.matrix = @immae:matrix.org
24	organization.owner.name = Ismaël Bouya
25	organization.owner.website = https://www.immae.eu
26	organization.owner.logo = https://assets.immae.eu/logo.jpg
27	organization.contact.url = https://www.immae.eu/contacts_fr.html
28	organization.contact.email = contact@mail.immae.eu
29	organization.legal.url = https://www.immae.eu/mentions.html
30	organization.guide.technical = https://git.immae.eu/cgit/perso/Immae/Config/Nix.git/
31	organization.status.level = ACTIVE
32	organization.status.description = En activité
33	organization.startdate = 01/01/2019
34
35	organization.memberof.chatons.startdate = 01/07/2019
36	organization.memberof.chatons.status.level = ACTIVE
37	organization.memberof.chatons.status.description = Participe au collectif
38
39	# [Subs]
40	# Un lien vers un fichier properties complémentaire (type URL, optionnel, ex. https://www.chapril.org/.well-known/chapril.properties).
41	subs.etherpad = https://www.immae.eu/.well-known/chatonsinfos/service-etherpad.properties
42
43
44	# [Metrics]
45	#metrics.http.total.2020 =
46


diff --git a/modules/private/websites/immae/chatons/service-etherpad.properties b/modules/private/websites/immae/chatons/service-etherpad.properties deleted file mode 100644 index cfcab1d..0000000 --- a/modules/private/websites/immae/chatons/service-etherpad.properties +++ /dev/null
@@ -1,164 +0,0 @@
1	# service.properties
2
3	# [File]
4	# Classe du fichier (valeur parmi Federation/Organization/Service/Device, obligatoire).
5	file.class = service
6
7	# Version de l'ontologie utilisée utilisé (type STRING, recommandé).
8	file.protocol = ChatonsInfos-0.1
9
10	# Date et horaire de génération du fichier (type DATETIME, recommandé).
11	file.datetime = 2021-01-04T00:01:00
12
13	# Nom du générateur du fichier (type STRING, recommandé). Exemple : Florian avec ses doigts
14	file.generator = Immae avec ses doigts
15
16
17	# [Service]
18	# Nom du service (type STRING, obligatoire). Exemple : Pad Exemple
19	service.name = Etherpard
20
21	# Description du service (type STRING, recommandé).
22	service.description = Éditeur de texte collaboratif en temps réel. on peut y écrire simultanément.
23
24	# Lien du site web du service (type URL, recommandé). Exemple : https://pad.exemple.ext
25	service.website = https://ether.immae.eu
26
27	# Lien du logo du service (type URL, recommandé, ex. https://www.chapril.org/.well-known/statoolinfos/chapril-logo-mini.png.
28	service.logo = https://ether.immae.eu/favicon.ico
29
30	# Lien de la page web des mentions légales du service (type URL, recommandé). Exemple : https://pad.exemple.ext/cgu.html
31	service.legal.url = https://www.immae.eu/mentions.html
32
33	# Lien de la documentation web du service (type URL, recommandé).
34	service.guide.technical = https://git.immae.eu/cgit/perso/Immae/Config/Nix.git/
35
36	# Lien des aides web pour le service (type URL, recommandé).
37	service.guide.user =
38
39	# Lien de la page de support du service (type URL, recommandé). Exemple : https://exemple.ext/contact.html
40	service.contact.url = https://www.immae.eu/contacts_fr.html
41
42	# Courriel du support du service (type EMAIL, recommandé). Exemple : contact@exemple.ext
43	service.contact.email = contact@mail.immae.eu
44
45	# Date d'ouverture du service (type DATE, recommandé). Exemple : 20/03/2020
46	service.startdate = 01/01/2019
47
48	# Date de fermeture du service (type DATE, optionnel).
49	service.enddate =
50
51	# Statut du service (un parmi {OK,WARNING,ALERT,ERROR,OVER,VOID}, obligatoire).
52	service.status.level = OK
53
54	# Description du statut du service (type STRING, optionnel, exemple : mise à jour en cours)
55	service.status.description = OK
56
57	# Inscriptions requises pour utiliser le service (parmi None;Free;Member;Client, obligatoire).
58	service.registration = None
59
60	# [Software]
61	# Nom du logiciel (type STRING, obligatoire).
62	software.name = Etherpad
63
64	# Lien du site web du logiciel (type URL, recommandé).
65	software.website = https://etherpad.org/
66
67	# Lien web vers la licence du logiciel (type URL, obligatoire).
68	software.license.url = https://github.com/ether/etherpad-lite/blob/develop/LICENSE
69
70	# Nom de la licence du logiciel (type STRING, obligatoire).
71	software.license.name = Apache License Version 2.0
72
73	# Version du logiciel (type STRING, recommandé).
74	software.version = 1.8.3
75
76	# Lien web vers les sources du logiciel (type URL, recommandé).
77	software.source.url = https://github.com/ether/etherpad-lite
78
79	# Liste de modules optionnels installés (type VALUES, optionnel, ex. Nextcloud-Calendar,Nextcloud-Talk).
80	software.modules = ep_align,ep_bookmark,ep_colors,ep_comments_page,ep_cursortrace,ep_delete_empty_pads,ep_embedmedia,ep_font_size,ep_headings2,ep_immae_buttons,ep_ldapauth,ep_line_height,ep_markdown,ep_mypads,ep_page_view,ep_previewimages,ep_ruler,ep_scrollto,ep_set_title_on_pad,ep_subscript_and_superscript,ep_timesliderdiff
81
82
83	# [Host]
84	# Nom de l'hébergeur de la machine qui fait tourner le service, dans le cas d'un auto-hébergement c'est vous ! (type STRING, obligatoire). Exemple : OVH.
85	host.name = Hetzner
86
87	# Description de l'hébergeur (type STRING, optionnel).
88	host.description =
89
90	# Type de serveur (un parmi NANO, PHYSICAL, VIRTUAL, SHARED, CLOUD, obligatoire, ex. PHYSICAL).
91	# NANO : nano-ordinateur (Raspberry Pi, Olimex…)
92	# PHYSICAL : machine physique
93	# VIRTUAL : machine virtuelle
94	# SHARED : hébergement mutualisé
95	# CLOUD : infrastructure multi-serveurs
96	host.server.type = PHYSICAL
97
98	# Type d'hébergement (un parmi HOME, HOSTEDBAY, HOSTEDSERVER, OUTSOURCED, obligatoire, ex. HOSTEDSERVER).
99	# HOME : hébergement à domicile
100	# HOSTEDBAY : serveur personnel hébergé dans une baie d'un fournisseur
101	# HOSTEDSERVER : serveur d'un fournisseur
102	# OUTSOURCED : infrastructure totalement sous-traitée
103	host.provider.type = HOSTEDSERVER
104
105	# Si vous avez du mal à remplir les champs précédents, ce tableau pourra vous aider :
106	# NANO PHYSICAL VIRTUAL SHARED CLOUD
107	# HOME pm pm vm shared cloud
108	# HOSTEDBAY -- pm vm shared cloud
109	# HOSTEDSERVER -- pm vm shared cloud
110	# OUTSOURCED -- -- vps shared cloud
111	# Légendes : pm : physical machine ; vm : virtual machine ; vps : virtual private server.
112
113	# Pays de l'hébergeur (type STRING, recommandé). Exemple : France
114	host.country.name = Allemagne
115
116	# Code pays de l'hébergeur (type STRING, recommandé). Exemple : FR
117	host.country.code = DE
118
119
120
121	# [Subs]
122	# Un lien vers un fichier properties complémentaire (type URL, optionnel). Exemple : https://
123	subs.foo =
124
125	# [Metrics]
126	# Nom du métrique (type STRING, recommandé).
127	metrics.http.total.name = Nombre total de requêtes HTTP
128
129	# Description du métrique (type STRING, recommandé).
130	metrics.http.total.description = Somme des requêtes HTTP ipv4 et ipv6.
131
132	# Métrique à valeur anuelle (type NUMERIC, optionnel).
133	metrics.http.total.2020 =
134
135	# Métrique à valeur mensuelle (type MONTHS, optionnel).
136	metrics.http.total.2020.months=
137
138	# Métrique à valeur hebdomadaire (type WEEKS, optionnel).
139	metrics.http.total.2020.weeks=
140
141	# Métrique à valeur quotidienne (type DAYS, optionnel).
142	metrics.http.total.2020.days=
143
144
145	# Nom du métrique (type STRING, recommandé).
146	metrics.visitors.total.name = Nombre total de visiteurs
147
148	# Description du métrique (type STRING, recommandé).
149	metrics.visitors.total.description =
150
151	# Métrique à valeur anuelle (type NUMERIC, optionnel).
152	metrics.visitors.total.2020 =
153
154	# Métrique à valeur mensuelle (type MONTHS, optionnel).
155	metrics.visitors.total.2020.months=
156
157	# Métrique à valeur hebdomadaire (type WEEKS, optionnel).
158	metrics.visitors.total.2020.weeks=
159
160	# Métrique à valeur quotidienne (type DAYS, optionnel).
161	metrics.visitors.total.2020.days=
162
163
164	# [Metrics spécifiques au service]


diff --git a/modules/private/websites/immae/eurl/certificates/2021-certificate.crt b/modules/private/websites/immae/eurl/certificates/2021-certificate.crt deleted file mode 100644 index 671534c..0000000 --- a/modules/private/websites/immae/eurl/certificates/2021-certificate.crt +++ /dev/null
@@ -1,23 +0,0 @@
1	-----BEGIN CERTIFICATE-----
2	MIIDyzCCArOgAwIBAgIUXNW7Lmte+fa5YxI7Gdznl7ZaLPIwDQYJKoZIhvcNAQEL
3	BQAwdTELMAkGA1UEBhMCRlIxGDAWBgNVBAgMD0FscGVzLU1hcml0aW1lczEPMA0G
4	A1UEBwwGR3Jhc3NlMRUwEwYDVQQKDAxJbW1hZUV1IEVVUkwxJDAiBgkqhkiG9w0B
5	CQEWFWNvbnRhY3RAbWFpbC5pbW1hZS5ldTAeFw0yMTAxMTkwMDI5MDlaFw0yMjAx
6	MTkwMDI5MDlaMHUxCzAJBgNVBAYTAkZSMRgwFgYDVQQIDA9BbHBlcy1NYXJpdGlt
7	ZXMxDzANBgNVBAcMBkdyYXNzZTEVMBMGA1UECgwMSW1tYWVFdSBFVVJMMSQwIgYJ
8	KoZIhvcNAQkBFhVjb250YWN0QG1haWwuaW1tYWUuZXUwggEiMA0GCSqGSIb3DQEB
9	AQUAA4IBDwAwggEKAoIBAQDeyWKvTu2kuJ2HSgRzZZL6yFNHUXGgcl/q8vlRKFI4
10	P0yHwcEwDCaCXquqS09WN99H55aNTjHfnu70dZXogyWHGk4vlaUkGiUoCAYK5tFU
11	34fzpZuInhBL8nRY0pRV4H2t02jQMyiYowZXTqR86BRocbXZ4TY5EwD/hlrH6iDc
12	pIlC7cVnWV4J5qXX9fXALbpXseD9PF0/y2tP5dM658jBL9KdW1PqlPGudvB44Z+a
13	pE8XCXF9PGrVBNN7aPmizOb42scx/2XghX1DYCikiUf8m+FGjidxGlXmj4B6Dukp
14	b7RxdkY7p97svH91uMQuUvDW5d93ZiatHNeYuAl8yI39AgMBAAGjUzBRMB0GA1Ud
15	DgQWBBSgsFwzEybKyLF/Bkuz7FA5SwfwPTAfBgNVHSMEGDAWgBSgsFwzEybKyLF/
16	Bkuz7FA5SwfwPTAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQDX
17	Wij/gDT+7N/pSSVWImiYoe+/KsAJd0TLs39GJkvW0114RXKINYNU8exNY7rKMVCl
18	TKePEevSo5CCartNfLXGIr3uqPlR+V3XF6KmyMSiB6k+GukoUtUg2Bp7ESGlpZXi
19	wkHYclk0NIzxWyUrzNdflxu3gPU278qFMbUIlbdWNsHtrLbpHypelPQ+IaEbNoWV
20	Q+M8Vg6ifsDmhp7TqFXpIoGa6CIxXuknDOidBpeE9kPjVu0kKrjXQULirNl3eEe6
21	H1XUQ7lSdt/l3N1cHTj70x2xIi6fdwPQRqhXILrIuST+C0wpPiqPCv1rfcwh0PvU
22	mZVZ/+83y3Zuo9lVqkbB
23	-----END CERTIFICATE-----


diff --git a/modules/private/websites/immae/matrix/client b/modules/private/websites/immae/matrix/client deleted file mode 100644 index 2769de5..0000000 --- a/modules/private/websites/immae/matrix/client +++ /dev/null
@@ -1,8 +0,0 @@
1	{
2	"m.homeserver": {
3	"base_url": "https://immae.ems.host"
4	},
5	"m.identity_server": {
6	"base_url": "https://vector.im"
7	}
8	}


diff --git a/modules/private/websites/immae/matrix/server b/modules/private/websites/immae/matrix/server deleted file mode 100644 index 449155a..0000000 --- a/modules/private/websites/immae/matrix/server +++ /dev/null
@@ -1,3 +0,0 @@
1	{
2	"m.server": "immae.ems.host:443"
3	}


diff --git a/modules/private/websites/immae/production.nix b/modules/private/websites/immae/production.nix deleted file mode 100644 index 8b4998f..0000000 --- a/modules/private/websites/immae/production.nix +++ /dev/null
@@ -1,137 +0,0 @@
1	{ lib, pkgs, config, ... }:
2	let
3	cfg = config.myServices.websites.immae.production;
4	varDir = "/var/lib/buildbot/outputs/immae/blog";
5	coursDir = "/var/lib/buildbot/outputs/immae/cours";
6	rechercheDir = "/var/lib/buildbot/outputs/immae/recherche";
7	recettesDir = "/var/lib/buildbot/outputs/immae/recettes";
8	historyDir = "/var/lib/buildbot/outputs/immae/history";
9	docsDir = "/var/lib/buildbot/outputs/immae/docs/";
10	env = config.myEnv.websites.immae;
11	in {
12	options.myServices.websites.immae.production.enable = lib.mkEnableOption "enable Immae's website";
13
14	config = lib.mkIf cfg.enable {
15	services.webstats.sites = [ { name = "www.immae.eu"; } ];
16
17	services.websites.env.production.vhostConfs.immae_production = {
18	certName = "immae";
19	addToCerts = true;
20	certMainHost = "www.immae.eu";
21	hosts = [ "www.immae.eu" "immae.eu" ];
22	root = varDir;
23	extraConfig = [
24	''
25	Use Stats www.immae.eu
26	Header always set Strict-Transport-Security "max-age=31536000"
27
28	<LocationMatch /.well-known/(webfinger\|host-meta)>
29	Header always set Referrer-Policy "strict-origin-when-cross-origin"
30	RequestHeader set X-Forwarded-Proto "https"
31
32	RewriteRule ^(.*)$ https://mastodon.immae.eu%{REQUEST_URI} [QSA,L]
33	</LocationMatch>
34
35	RewriteEngine On
36	RewriteCond "%{REQUEST_URI}" "!^/.well-known/(webfinger\|host-meta)"
37	RewriteCond "%{HTTP_HOST}" "!^www\.immae\.eu$" [NC]
38	RewriteRule ^(.+)$ https://www.immae.eu$1 [R=302,L]
39
40	<Directory ${varDir}>
41	DirectoryIndex index.htm index.html
42	Options Indexes FollowSymLinks MultiViews Includes
43	AllowOverride All
44	Require all granted
45	</Directory>
46
47	Alias /.well-known/chatonsinfos ${./chatons}
48	<Directory ${./chatons}>
49	Options Indexes FollowSymLinks MultiViews Includes
50	AllowOverride None
51	Require all granted
52	</Directory>
53
54	Alias /.well-known/matrix ${./matrix}
55	<Directory ${./matrix}>
56	Options Indexes FollowSymLinks MultiViews Includes
57	AllowOverride None
58	Require all granted
59	Header always set Access-Control-Allow-Origin "*"
60	</Directory>
61
62	Alias /cours ${coursDir}
63	<Directory ${coursDir}>
64	DirectoryIndex index.htm index.html
65	Options Indexes FollowSymLinks MultiViews Includes
66	AllowOverride All
67	Require all granted
68	</Directory>
69
70	Alias /docs ${docsDir}
71	<Directory ${docsDir}>
72	DirectoryIndex index.htm index.html
73	Options Indexes FollowSymLinks MultiViews Includes
74	AllowOverride All
75	Require all granted
76	</Directory>
77
78	Alias /eurl ${./eurl}
79	<Directory ${./eurl}>
80	DirectoryIndex index.htm index.html
81	Options Indexes FollowSymLinks MultiViews Includes
82	AllowOverride None
83	Require all granted
84	</Directory>
85
86	Alias /recherche ${rechercheDir}
87	<Directory ${rechercheDir}>
88	DirectoryIndex index.htm index.html
89	Options Indexes FollowSymLinks MultiViews Includes
90	AllowOverride All
91	Require all granted
92	</Directory>
93
94	Alias /recettes ${recettesDir}
95	<Directory ${recettesDir}>
96	DirectoryIndex index.htm index.html
97	Options Indexes FollowSymLinks MultiViews Includes
98	AllowOverride All
99	Require all granted
100	</Directory>
101
102	Alias /history ${historyDir}
103	<Directory ${historyDir}>
104	DirectoryIndex index.html
105	AllowOverride None
106	Require all granted
107	</Directory>
108	''
109	];
110	};
111
112	services.websites.env.production.vhostConfs.immae_fr = {
113	certName = "immae";
114	addToCerts = true;
115	hosts = [ "www.immae.fr" "immae.fr" ];
116	root = null;
117	extraConfig = [ ''
118	RedirectMatch 301 ^/((?!\.well-known.$).)$ https://www.immae.eu/chapeaux/
119	'' ];
120	};
121
122	services.websites.env.production.vhostConfs.immae_bouya = {
123	certName = "immae";
124	addToCerts = true;
125	hosts = [ "bouya.org" "www.bouya.org" ];
126	root = rechercheDir;
127	extraConfig = [ ''
128	<Directory ${rechercheDir}>
129	DirectoryIndex index.htm index.html
130	Options Indexes FollowSymLinks MultiViews Includes
131	AllowOverride All
132	Require all granted
133	</Directory>
134	'' ];
135	};
136	};
137	}


diff --git a/modules/private/websites/immae/release.nix b/modules/private/websites/immae/release.nix deleted file mode 100644 index d06af87..0000000 --- a/modules/private/websites/immae/release.nix +++ /dev/null
@@ -1,39 +0,0 @@
1	{ lib, pkgs, config, ... }:
2	let
3	cfg = config.myServices.websites.immae.release;
4	varDir = "/var/lib/ftp/release.immae.eu";
5	env = config.myEnv.websites.release;
6	in {
7	options.myServices.websites.immae.release.enable = lib.mkEnableOption "enable Release' website";
8
9	config = lib.mkIf cfg.enable {
10	services.webstats.sites = [ { name = "release.immae.eu"; } ];
11
12	services.websites.env.production.vhostConfs.immae_release = {
13	certName = "immae";
14	addToCerts = true;
15	hosts = [ "release.immae.eu" ];
16	root = varDir;
17	extraConfig = [
18	''
19	Use Stats release.immae.eu
20
21	Use Apaxy "${varDir}" "title .duplicity-ignore"
22	<Directory "${varDir}">
23	Use LDAPConnect
24	Options Indexes
25	AllowOverride All
26	Require all granted
27	</Directory>
28
29	<Directory "${varDir}/packages">
30	Use LDAPConnect
31	Options Indexes FollowSymlinks
32	AllowOverride None
33	Require all granted
34	</Directory>
35	''
36	];
37	};
38	};
39	}


diff --git a/modules/private/websites/immae/temp.nix b/modules/private/websites/immae/temp.nix deleted file mode 100644 index 19aef1a..0000000 --- a/modules/private/websites/immae/temp.nix +++ /dev/null
@@ -1,64 +0,0 @@
1	{ lib, pkgs, config, ... }:
2	let
3	cfg = config.myServices.websites.immae.temp;
4	varDir = "/var/lib/immae_temp";
5	env = config.myEnv.websites.immae.temp;
6	in {
7	options.myServices.websites.immae.temp.enable = lib.mkEnableOption "enable Temp' website";
8
9	config = lib.mkIf cfg.enable {
10	services.websites.env.production.vhostConfs.immae_temp = {
11	certName = "immae";
12	addToCerts = true;
13	hosts = [ "temp.immae.eu" ];
14	root = null;
15	extraConfig = [ ''
16	ProxyVia On
17	ProxyRequests Off
18	ProxyPreserveHost On
19	ProxyPass / unix:///run/surfer/listen.sock\|http://temp.immae.eu/
20	ProxyPassReverse / unix:///run/surfer/listen.sock\|http://temp.immae.eu/
21	<Proxy *>
22	Options FollowSymLinks MultiViews
23	AllowOverride None
24	Require all granted
25	</Proxy>
26	'' ];
27	};
28
29	secrets.keys."webapps/surfer" = {
30	permissions = "0400";
31	user = "wwwrun";
32	group = "wwwrun";
33	text = ''
34	CLOUDRON_LDAP_URL=ldaps://${env.ldap.host}
35	CLOUDRON_LDAP_USERS_BASE_DN=${env.ldap.base}
36	TOKENSTORE_FILE=/var/lib/surfer/tokens.json
37	CLOUDRON_LDAP_BIND_DN=${env.ldap.dn}
38	CLOUDRON_LDAP_BIND_PASSWORD=${env.ldap.password}
39	CLOUDRON_LDAP_USERS_BASE_DN=${env.ldap.base}
40	CLOUDRON_LDAP_FILTER="${env.ldap.filter}"
41	LISTEN=/run/surfer/listen.sock
42	'';
43	};
44
45	systemd.services.surfer = {
46	description = "Surfer";
47	wantedBy = [ "multi-user.target" ];
48	after = [ "network.target" ];
49
50	script = ''
51	exec ${pkgs.webapps.surfer}/bin/surfer-server ${varDir}
52	'';
53	serviceConfig = {
54	EnvironmentFile = config.secrets.fullPaths."webapps/surfer";
55	User = "wwwrun";
56	Group = "wwwrun";
57	StateDirectory = "surfer";
58	RuntimeDirectory = "surfer";
59	Type = "simple";
60	};
61	};
62	};
63	}
64