diff options
Diffstat (limited to 'virtual/eldiron.nix')
-rw-r--r-- | virtual/eldiron.nix | 110 |
1 files changed, 21 insertions, 89 deletions
diff --git a/virtual/eldiron.nix b/virtual/eldiron.nix index acd2cbd..5dafe6e 100644 --- a/virtual/eldiron.nix +++ b/virtual/eldiron.nix | |||
@@ -17,13 +17,29 @@ | |||
17 | }; | 17 | }; |
18 | 18 | ||
19 | imports = [ | 19 | imports = [ |
20 | ./modules/certificates.nix | ||
20 | ./modules/gitolite.nix | 21 | ./modules/gitolite.nix |
21 | ./modules/gitweb.nix | 22 | ./modules/gitweb.nix |
22 | ./modules/databases.nix | 23 | ./modules/databases.nix |
24 | ./modules/websites/chloe.nix | ||
25 | ./modules/websites/ludivine.nix | ||
26 | ./modules/websites/aten.nix | ||
27 | ./modules/websites/piedsjaloux.nix | ||
28 | ./modules/websites/connexionswing.nix | ||
23 | ]; | 29 | ]; |
24 | services.myGitolite.enable = true; | 30 | services.myGitolite.enable = true; |
25 | services.myGitweb.enable = true; | 31 | services.myGitweb.enable = true; |
26 | services.myDatabases.enable = true; | 32 | services.myDatabases.enable = true; |
33 | services.myWebsites.Chloe.production.enable = true; | ||
34 | services.myWebsites.Chloe.integration.enable = true; | ||
35 | services.myWebsites.Ludivine.production.enable = true; | ||
36 | services.myWebsites.Ludivine.integration.enable = true; | ||
37 | services.myWebsites.Aten.production.enable = true; | ||
38 | services.myWebsites.Aten.integration.enable = true; | ||
39 | services.myWebsites.PiedsJaloux.production.enable = true; | ||
40 | services.myWebsites.PiedsJaloux.integration.enable = true; | ||
41 | services.myWebsites.Connexionswing.production.enable = true; | ||
42 | services.myWebsites.Connexionswing.integration.enable = true; | ||
27 | 43 | ||
28 | nixpkgs.config.packageOverrides = oldpkgs: rec { | 44 | nixpkgs.config.packageOverrides = oldpkgs: rec { |
29 | goaccess = oldpkgs.goaccess.overrideAttrs(old: rec { | 45 | goaccess = oldpkgs.goaccess.overrideAttrs(old: rec { |
@@ -84,95 +100,11 @@ | |||
84 | occ | 100 | occ |
85 | ]; | 101 | ]; |
86 | 102 | ||
87 | # FIXME: doesn't work with httpd? | 103 | security.acme.certs."eldiron".extraDomains = { |
88 | security.acme.preliminarySelfsigned = true; | 104 | "db-1.immae.eu" = null; |
89 | security.acme.certs = { | 105 | "tools.immae.eu" = null; |
90 | # FIXME: /!\ To create a new certificate, create it before using | 106 | "cloud.immae.eu" = null; |
91 | # it in httpd | 107 | "dav.immae.eu" = null; |
92 | "eldiron" = { | ||
93 | webroot = "/var/lib/acme/acme-challenge"; | ||
94 | email = "ismael@bouya.org"; | ||
95 | domain = "eldiron.immae.eu"; | ||
96 | plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ]; | ||
97 | postRun = '' | ||
98 | systemctl reload httpd.service | ||
99 | ''; | ||
100 | allowKeysForGroup = true; | ||
101 | extraDomains = { | ||
102 | "db-1.immae.eu" = null; | ||
103 | "tools.immae.eu" = null; | ||
104 | "connexionswing.immae.eu" = null; | ||
105 | "sandetludo.immae.eu" = null; | ||
106 | "cloud.immae.eu" = null; | ||
107 | "ludivine.immae.eu" = null; | ||
108 | "dev.aten.pro" = null; | ||
109 | "piedsjaloux.immae.eu" = null; | ||
110 | "chloe.immae.eu" = null; | ||
111 | "dav.immae.eu" = null; | ||
112 | }; | ||
113 | }; | ||
114 | "ludivinecassal" = { | ||
115 | webroot = "/var/lib/acme/acme-challenge"; | ||
116 | email = "ismael@bouya.org"; | ||
117 | domain = "ludivinecassal.com"; | ||
118 | plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ]; | ||
119 | postRun = '' | ||
120 | systemctl reload httpd.service | ||
121 | ''; | ||
122 | extraDomains = { | ||
123 | "www.ludivinecassal.com" = null; | ||
124 | }; | ||
125 | }; | ||
126 | "aten" = { | ||
127 | webroot = "/var/lib/acme/acme-challenge"; | ||
128 | email = "ismael@bouya.org"; | ||
129 | domain = "aten.pro"; | ||
130 | plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ]; | ||
131 | postRun = '' | ||
132 | systemctl reload httpd.service | ||
133 | ''; | ||
134 | extraDomains = { | ||
135 | "www.aten.pro" = null; | ||
136 | }; | ||
137 | }; | ||
138 | "piedsjaloux" = { | ||
139 | webroot = "/var/lib/acme/acme-challenge"; | ||
140 | email = "ismael@bouya.org"; | ||
141 | domain = "piedsjaloux.fr"; | ||
142 | plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ]; | ||
143 | postRun = '' | ||
144 | systemctl reload httpd.service | ||
145 | ''; | ||
146 | extraDomains = { | ||
147 | "www.piedsjaloux.fr" = null; | ||
148 | }; | ||
149 | }; | ||
150 | "chloe" = { | ||
151 | webroot = "/var/lib/acme/acme-challenge"; | ||
152 | email = "ismael@bouya.org"; | ||
153 | domain = "osteopathe-cc.fr"; | ||
154 | plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ]; | ||
155 | postRun = '' | ||
156 | systemctl reload httpd.service | ||
157 | ''; | ||
158 | extraDomains = { | ||
159 | "www.osteopathe-cc.fr" = null; | ||
160 | }; | ||
161 | }; | ||
162 | "connexionswing" = { | ||
163 | webroot = "/var/lib/acme/acme-challenge"; | ||
164 | email = "ismael@bouya.org"; | ||
165 | domain = "connexionswing.com"; | ||
166 | plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ]; | ||
167 | postRun = '' | ||
168 | systemctl reload httpd.service | ||
169 | ''; | ||
170 | extraDomains = { | ||
171 | "www.connexionswing.com" = null; | ||
172 | "sandetludo.com" = null; | ||
173 | "www.sandetludo.com" = null; | ||
174 | }; | ||
175 | }; | ||
176 | }; | 108 | }; |
177 | 109 | ||
178 | services.openssh.extraConfig = '' | 110 | services.openssh.extraConfig = '' |