3 files changed, 162 insertions, 0 deletions
diff --git a/modules/default.nix b/modules/default.nix
index 7db0cc2..20386af 100644
--- a/modules/default.nix
+++ b/modules/default.nix
@@ -2,6 +2,7 @@
  myids = ./myids.nix;
  secrets = ./secrets.nix;
+  diaspora = ./webapps/diaspora.nix;
  mastodon = ./webapps/mastodon.nix;
  mediagoblin = ./webapps/mediagoblin.nix;
  peertube = ./webapps/peertube.nix;
diff --git a/modules/myids.nix b/modules/myids.nix
index 24d853b..17270af 100644
--- a/modules/myids.nix
+++ b/modules/myids.nix
@@ -6,12 +6,14 @@
      peertube = 394;
      nullmailer = 396;
      mediagoblin = 397;
+      diaspora = 398;
      mastodon = 399;
    };
    ids.gids = {
      peertube = 394;
      nullmailer = 396;
      mediagoblin = 397;
+      diaspora = 398;
      mastodon = 399;
    };
  };
diff --git a/modules/webapps/diaspora.nix b/modules/webapps/diaspora.nix
new file mode 100644
index 0000000..8451c6d
--- /dev/null
+++ b/modules/webapps/diaspora.nix
@@ -0,0 +1,159 @@
+{ lib, pkgs, config, ... }:
+let
+  name = "diaspora";
+  cfg = config.services.diaspora;
+  uid = config.ids.uids.diaspora;
+  gid = config.ids.gids.diaspora;
+in
+{
+  options.services.diaspora = {
+    enable = lib.mkEnableOption "Enable Diaspora’s service";
+    user = lib.mkOption {
+      type = lib.types.str;
+      default = name;
+      description = "User account under which Diaspora runs";
+    };
+    group = lib.mkOption {
+      type = lib.types.str;
+      default = name;
+      description = "Group under which Diaspora runs";
+    };
+    adminEmail = lib.mkOption {
+      type = lib.types.str;
+      example = "admin@example.com";
+      description = "Admin e-mail for Diaspora";
+    };
+    dataDir = lib.mkOption {
+      type = lib.types.path;
+      default = "/var/lib/${name}";
+      description = ''
+        The directory where Diaspora stores its data.
+      '';
+    };
+    socketsDir = lib.mkOption {
+      type = lib.types.path;
+      default = "/run/${name}";
+      description = ''
+        The directory where Diaspora puts runtime files and sockets.
+        '';
+    };
+    configDir = lib.mkOption {
+      type = lib.types.path;
+      description = ''
+        The configuration path for Diaspora.
+        '';
+    };
+    package = lib.mkOption {
+      type = lib.types.package;
+      default = pkgs.webapps.diaspora;
+      description = ''
+        Diaspora package to use.
+        '';
+    };
+    # Output variables
+    workdir = lib.mkOption {
+      type = lib.types.package;
+      default = cfg.package.override {
+        varDir = cfg.dataDir;
+        podmin_email = cfg.adminEmail;
+        config_dir = cfg.configDir;
+      };
+      description = ''
+        Adjusted diaspora package with overriden values
+        '';
+      readOnly = true;
+    };
+    sockets = lib.mkOption {
+      type = lib.types.attrsOf lib.types.path;
+      default = {
+        rails = "${cfg.socketsDir}/diaspora.sock";
+        eye   = "${cfg.socketsDir}/eye.sock";
+      };
+      readOnly = true;
+      description = ''
+        Diaspora sockets
+        '';
+    };
+    pids = lib.mkOption {
+      type = lib.types.attrsOf lib.types.path;
+      default = {
+        eye   = "${cfg.socketsDir}/eye.pid";
+      };
+      readOnly = true;
+      description = ''
+        Diaspora pids
+        '';
+    };
+  };
+  config = lib.mkIf cfg.enable {
+    users.users = lib.optionalAttrs (cfg.user == name) (lib.singleton {
+      inherit name;
+      inherit uid;
+      group = cfg.group;
+      description = "Diaspora user";
+      home = cfg.dataDir;
+      packages = [ cfg.workdir.gems pkgs.nodejs cfg.workdir.gems.ruby ];
+      useDefaultShell = true;
+    });
+    users.groups = lib.optionalAttrs (cfg.group == name) (lib.singleton {
+      inherit name;
+      inherit gid;
+    });
+    systemd.services.diaspora = {
+      description = "Diaspora";
+      wantedBy = [ "multi-user.target" ];
+      after = [
+        "network.target" "redis.service" "postgresql.service"
+      ];
+      wants = [
+        "redis.service" "postgresql.service"
+      ];
+      environment.RAILS_ENV = "production";
+      environment.BUNDLE_PATH = "${cfg.workdir.gems}/${cfg.workdir.gems.ruby.gemPath}";
+      environment.BUNDLE_GEMFILE = "${cfg.workdir.gems.confFiles}/Gemfile";
+      environment.EYE_SOCK = cfg.sockets.eye;
+      environment.EYE_PID = cfg.pids.eye;
+      path = [ cfg.workdir.gems pkgs.nodejs cfg.workdir.gems.ruby pkgs.curl pkgs.which pkgs.gawk ];
+      preStart = ''
+        ./bin/bundle exec rails db:migrate
+      '';
+      script = ''
+        exec ${cfg.workdir}/script/server
+      '';
+      serviceConfig = {
+        User = cfg.user;
+        PrivateTmp = true;
+        Restart = "always";
+        Type = "simple";
+        WorkingDirectory = cfg.workdir;
+        StandardInput = "null";
+        KillMode = "control-group";
+      };
+      unitConfig.RequiresMountsFor = cfg.dataDir;
+    };
+    system.activationScripts.diaspora = {
+      deps = [ "users" ];
+      text = ''
+      install -m 0755 -o ${cfg.user} -g ${cfg.group} -d ${cfg.socketsDir}
+      install -m 0755 -o ${cfg.user} -g ${cfg.group} -d ${cfg.dataDir} \
+        ${cfg.dataDir}/uploads ${cfg.dataDir}/tmp \
+        ${cfg.dataDir}/log
+      install -m 0700 -o ${cfg.user} -g ${cfg.group} -d ${cfg.dataDir}/tmp/pids
+      if [ ! -f ${cfg.dataDir}/schedule.yml ]; then
+        echo "{}" | $wrapperDir/sudo -u ${cfg.user} tee ${cfg.dataDir}/schedule.yml
+      fi
+      '';
+    };
+  };
+}

diff --git a/modules/default.nix b/modules/default.nix index 7db0cc2..20386af 100644 --- a/modules/default.nix +++ b/modules/default.nix
@@ -2,6 +2,7 @@
2	myids = ./myids.nix;	2	myids = ./myids.nix;
3	secrets = ./secrets.nix;	3	secrets = ./secrets.nix;
4		4
		5	diaspora = ./webapps/diaspora.nix;
5	mastodon = ./webapps/mastodon.nix;	6	mastodon = ./webapps/mastodon.nix;
6	mediagoblin = ./webapps/mediagoblin.nix;	7	mediagoblin = ./webapps/mediagoblin.nix;
7	peertube = ./webapps/peertube.nix;	8	peertube = ./webapps/peertube.nix;


diff --git a/modules/myids.nix b/modules/myids.nix index 24d853b..17270af 100644 --- a/modules/myids.nix +++ b/modules/myids.nix
@@ -6,12 +6,14 @@
6	peertube = 394;	6	peertube = 394;
7	nullmailer = 396;	7	nullmailer = 396;
8	mediagoblin = 397;	8	mediagoblin = 397;
		9	diaspora = 398;
9	mastodon = 399;	10	mastodon = 399;
10	};	11	};
11	ids.gids = {	12	ids.gids = {
12	peertube = 394;	13	peertube = 394;
13	nullmailer = 396;	14	nullmailer = 396;
14	mediagoblin = 397;	15	mediagoblin = 397;
		16	diaspora = 398;
15	mastodon = 399;	17	mastodon = 399;
16	};	18	};
17	};	19	};


diff --git a/modules/webapps/diaspora.nix b/modules/webapps/diaspora.nix new file mode 100644 index 0000000..8451c6d --- /dev/null +++ b/modules/webapps/diaspora.nix
@@ -0,0 +1,159 @@
		1	{ lib, pkgs, config, ... }:
		2	let
		3	name = "diaspora";
		4	cfg = config.services.diaspora;
		5
		6	uid = config.ids.uids.diaspora;
		7	gid = config.ids.gids.diaspora;
		8	in
		9	{
		10	options.services.diaspora = {
		11	enable = lib.mkEnableOption "Enable Diaspora’s service";
		12	user = lib.mkOption {
		13	type = lib.types.str;
		14	default = name;
		15	description = "User account under which Diaspora runs";
		16	};
		17	group = lib.mkOption {
		18	type = lib.types.str;
		19	default = name;
		20	description = "Group under which Diaspora runs";
		21	};
		22	adminEmail = lib.mkOption {
		23	type = lib.types.str;
		24	example = "admin@example.com";
		25	description = "Admin e-mail for Diaspora";
		26	};
		27	dataDir = lib.mkOption {
		28	type = lib.types.path;
		29	default = "/var/lib/${name}";
		30	description = ''
		31	The directory where Diaspora stores its data.
		32	'';
		33	};
		34	socketsDir = lib.mkOption {
		35	type = lib.types.path;
		36	default = "/run/${name}";
		37	description = ''
		38	The directory where Diaspora puts runtime files and sockets.
		39	'';
		40	};
		41	configDir = lib.mkOption {
		42	type = lib.types.path;
		43	description = ''
		44	The configuration path for Diaspora.
		45	'';
		46	};
		47	package = lib.mkOption {
		48	type = lib.types.package;
		49	default = pkgs.webapps.diaspora;
		50	description = ''
		51	Diaspora package to use.
		52	'';
		53	};
		54	# Output variables
		55	workdir = lib.mkOption {
		56	type = lib.types.package;
		57	default = cfg.package.override {
		58	varDir = cfg.dataDir;
		59	podmin_email = cfg.adminEmail;
		60	config_dir = cfg.configDir;
		61	};
		62	description = ''
		63	Adjusted diaspora package with overriden values
		64	'';
		65	readOnly = true;
		66	};
		67	sockets = lib.mkOption {
		68	type = lib.types.attrsOf lib.types.path;
		69	default = {
		70	rails = "${cfg.socketsDir}/diaspora.sock";
		71	eye = "${cfg.socketsDir}/eye.sock";
		72	};
		73	readOnly = true;
		74	description = ''
		75	Diaspora sockets
		76	'';
		77	};
		78	pids = lib.mkOption {
		79	type = lib.types.attrsOf lib.types.path;
		80	default = {
		81	eye = "${cfg.socketsDir}/eye.pid";
		82	};
		83	readOnly = true;
		84	description = ''
		85	Diaspora pids
		86	'';
		87	};
		88	};
		89
		90	config = lib.mkIf cfg.enable {
		91	users.users = lib.optionalAttrs (cfg.user == name) (lib.singleton {
		92	inherit name;
		93	inherit uid;
		94	group = cfg.group;
		95	description = "Diaspora user";
		96	home = cfg.dataDir;
		97	packages = [ cfg.workdir.gems pkgs.nodejs cfg.workdir.gems.ruby ];
		98	useDefaultShell = true;
		99	});
		100	users.groups = lib.optionalAttrs (cfg.group == name) (lib.singleton {
		101	inherit name;
		102	inherit gid;
		103	});
		104
		105	systemd.services.diaspora = {
		106	description = "Diaspora";
		107	wantedBy = [ "multi-user.target" ];
		108	after = [
		109	"network.target" "redis.service" "postgresql.service"
		110	];
		111	wants = [
		112	"redis.service" "postgresql.service"
		113	];
		114
		115	environment.RAILS_ENV = "production";
		116	environment.BUNDLE_PATH = "${cfg.workdir.gems}/${cfg.workdir.gems.ruby.gemPath}";
		117	environment.BUNDLE_GEMFILE = "${cfg.workdir.gems.confFiles}/Gemfile";
		118	environment.EYE_SOCK = cfg.sockets.eye;
		119	environment.EYE_PID = cfg.pids.eye;
		120
		121	path = [ cfg.workdir.gems pkgs.nodejs cfg.workdir.gems.ruby pkgs.curl pkgs.which pkgs.gawk ];
		122
		123	preStart = ''
		124	./bin/bundle exec rails db:migrate
		125	'';
		126
		127	script = ''
		128	exec ${cfg.workdir}/script/server
		129	'';
		130
		131	serviceConfig = {
		132	User = cfg.user;
		133	PrivateTmp = true;
		134	Restart = "always";
		135	Type = "simple";
		136	WorkingDirectory = cfg.workdir;
		137	StandardInput = "null";
		138	KillMode = "control-group";
		139	};
		140
		141	unitConfig.RequiresMountsFor = cfg.dataDir;
		142	};
		143
		144	system.activationScripts.diaspora = {
		145	deps = [ "users" ];
		146	text = ''
		147	install -m 0755 -o ${cfg.user} -g ${cfg.group} -d ${cfg.socketsDir}
		148	install -m 0755 -o ${cfg.user} -g ${cfg.group} -d ${cfg.dataDir} \
		149	${cfg.dataDir}/uploads ${cfg.dataDir}/tmp \
		150	${cfg.dataDir}/log
		151	install -m 0700 -o ${cfg.user} -g ${cfg.group} -d ${cfg.dataDir}/tmp/pids
		152	if [ ! -f ${cfg.dataDir}/schedule.yml ]; then
		153	echo "{}" \| $wrapperDir/sudo -u ${cfg.user} tee ${cfg.dataDir}/schedule.yml
		154	fi
		155	'';
		156	};
		157
		158	};
		159	}