1 files changed, 21 insertions, 89 deletions
diff --git a/virtual/eldiron.nix b/virtual/eldiron.nix
index acd2cbd..5dafe6e 100644
--- a/virtual/eldiron.nix
+++ b/virtual/eldiron.nix
@@ -17,13 +17,29 @@
    };
    imports = [
+      ./modules/certificates.nix
      ./modules/gitolite.nix
      ./modules/gitweb.nix
      ./modules/databases.nix
+      ./modules/websites/chloe.nix
+      ./modules/websites/ludivine.nix
+      ./modules/websites/aten.nix
+      ./modules/websites/piedsjaloux.nix
+      ./modules/websites/connexionswing.nix
    ];
    services.myGitolite.enable = true;
    services.myGitweb.enable = true;
    services.myDatabases.enable = true;
+    services.myWebsites.Chloe.production.enable = true;
+    services.myWebsites.Chloe.integration.enable = true;
+    services.myWebsites.Ludivine.production.enable = true;
+    services.myWebsites.Ludivine.integration.enable = true;
+    services.myWebsites.Aten.production.enable = true;
+    services.myWebsites.Aten.integration.enable = true;
+    services.myWebsites.PiedsJaloux.production.enable = true;
+    services.myWebsites.PiedsJaloux.integration.enable = true;
+    services.myWebsites.Connexionswing.production.enable = true;
+    services.myWebsites.Connexionswing.integration.enable = true;
    nixpkgs.config.packageOverrides = oldpkgs: rec {
      goaccess = oldpkgs.goaccess.overrideAttrs(old: rec {
@@ -84,95 +100,11 @@
      occ
    ];
-    # FIXME: doesn't work with httpd?
+    security.acme.certs."eldiron".extraDomains = {
-    security.acme.preliminarySelfsigned = true;
+      "db-1.immae.eu" = null;
-    security.acme.certs = {
+      "tools.immae.eu" = null;
-      # FIXME: /!\ To create a new certificate, create it before using
+      "cloud.immae.eu" = null;
-      # it in httpd
+      "dav.immae.eu" = null;
-      "eldiron" = {
-        webroot = "/var/lib/acme/acme-challenge";
-        email = "ismael@bouya.org";
-        domain = "eldiron.immae.eu";
-        plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
-        postRun = ''
-          systemctl reload httpd.service
-        '';
-        allowKeysForGroup = true;
-        extraDomains = {
-          "db-1.immae.eu" = null;
-          "tools.immae.eu" = null;
-          "connexionswing.immae.eu" = null;
-          "sandetludo.immae.eu" = null;
-          "cloud.immae.eu" = null;
-          "ludivine.immae.eu" = null;
-          "dev.aten.pro" = null;
-          "piedsjaloux.immae.eu" = null;
-          "chloe.immae.eu" = null;
-          "dav.immae.eu" = null;
-        };
-      };
-      "ludivinecassal" = {
-        webroot = "/var/lib/acme/acme-challenge";
-        email = "ismael@bouya.org";
-        domain = "ludivinecassal.com";
-        plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
-        postRun = ''
-          systemctl reload httpd.service
-        '';
-        extraDomains = {
-          "www.ludivinecassal.com" = null;
-        };
-      };
-      "aten" = {
-        webroot = "/var/lib/acme/acme-challenge";
-        email = "ismael@bouya.org";
-        domain = "aten.pro";
-        plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
-        postRun = ''
-          systemctl reload httpd.service
-        '';
-        extraDomains = {
-          "www.aten.pro" = null;
-        };
-      };
-      "piedsjaloux" = {
-        webroot = "/var/lib/acme/acme-challenge";
-        email = "ismael@bouya.org";
-        domain = "piedsjaloux.fr";
-        plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
-        postRun = ''
-          systemctl reload httpd.service
-        '';
-        extraDomains = {
-          "www.piedsjaloux.fr" = null;
-        };
-      };
-      "chloe" = {
-        webroot = "/var/lib/acme/acme-challenge";
-        email = "ismael@bouya.org";
-        domain = "osteopathe-cc.fr";
-        plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
-        postRun = ''
-          systemctl reload httpd.service
-        '';
-        extraDomains = {
-          "www.osteopathe-cc.fr" = null;
-        };
-      };
-      "connexionswing" = {
-        webroot = "/var/lib/acme/acme-challenge";
-        email = "ismael@bouya.org";
-        domain = "connexionswing.com";
-        plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
-        postRun = ''
-          systemctl reload httpd.service
-        '';
-        extraDomains = {
-          "www.connexionswing.com" = null;
-          "sandetludo.com" = null;
-          "www.sandetludo.com" = null;
-        };
-      };
    };
    services.openssh.extraConfig = ''

diff --git a/virtual/eldiron.nix b/virtual/eldiron.nix index acd2cbd..5dafe6e 100644 --- a/virtual/eldiron.nix +++ b/virtual/eldiron.nix
@@ -17,13 +17,29 @@
17	};	17	};
18		18
19	imports = [	19	imports = [
		20	./modules/certificates.nix
20	./modules/gitolite.nix	21	./modules/gitolite.nix
21	./modules/gitweb.nix	22	./modules/gitweb.nix
22	./modules/databases.nix	23	./modules/databases.nix
		24	./modules/websites/chloe.nix
		25	./modules/websites/ludivine.nix
		26	./modules/websites/aten.nix
		27	./modules/websites/piedsjaloux.nix
		28	./modules/websites/connexionswing.nix
23	];	29	];
24	services.myGitolite.enable = true;	30	services.myGitolite.enable = true;
25	services.myGitweb.enable = true;	31	services.myGitweb.enable = true;
26	services.myDatabases.enable = true;	32	services.myDatabases.enable = true;
		33	services.myWebsites.Chloe.production.enable = true;
		34	services.myWebsites.Chloe.integration.enable = true;
		35	services.myWebsites.Ludivine.production.enable = true;
		36	services.myWebsites.Ludivine.integration.enable = true;
		37	services.myWebsites.Aten.production.enable = true;
		38	services.myWebsites.Aten.integration.enable = true;
		39	services.myWebsites.PiedsJaloux.production.enable = true;
		40	services.myWebsites.PiedsJaloux.integration.enable = true;
		41	services.myWebsites.Connexionswing.production.enable = true;
		42	services.myWebsites.Connexionswing.integration.enable = true;
27		43
28	nixpkgs.config.packageOverrides = oldpkgs: rec {	44	nixpkgs.config.packageOverrides = oldpkgs: rec {
29	goaccess = oldpkgs.goaccess.overrideAttrs(old: rec {	45	goaccess = oldpkgs.goaccess.overrideAttrs(old: rec {
@@ -84,95 +100,11 @@
84	occ	100	occ
85	];	101	];
86		102
87	# FIXME: doesn't work with httpd?	103	security.acme.certs."eldiron".extraDomains = {
88	security.acme.preliminarySelfsigned = true;	104	"db-1.immae.eu" = null;
89	security.acme.certs = {	105	"tools.immae.eu" = null;
90	# FIXME: /!\ To create a new certificate, create it before using	106	"cloud.immae.eu" = null;
91	# it in httpd	107	"dav.immae.eu" = null;
92	"eldiron" = {
93	webroot = "/var/lib/acme/acme-challenge";
94	email = "ismael@bouya.org";
95	domain = "eldiron.immae.eu";
96	plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
97	postRun = ''
98	systemctl reload httpd.service
99	'';
100	allowKeysForGroup = true;
101	extraDomains = {
102	"db-1.immae.eu" = null;
103	"tools.immae.eu" = null;
104	"connexionswing.immae.eu" = null;
105	"sandetludo.immae.eu" = null;
106	"cloud.immae.eu" = null;
107	"ludivine.immae.eu" = null;
108	"dev.aten.pro" = null;
109	"piedsjaloux.immae.eu" = null;
110	"chloe.immae.eu" = null;
111	"dav.immae.eu" = null;
112	};
113	};
114	"ludivinecassal" = {
115	webroot = "/var/lib/acme/acme-challenge";
116	email = "ismael@bouya.org";
117	domain = "ludivinecassal.com";
118	plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
119	postRun = ''
120	systemctl reload httpd.service
121	'';
122	extraDomains = {
123	"www.ludivinecassal.com" = null;
124	};
125	};
126	"aten" = {
127	webroot = "/var/lib/acme/acme-challenge";
128	email = "ismael@bouya.org";
129	domain = "aten.pro";
130	plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
131	postRun = ''
132	systemctl reload httpd.service
133	'';
134	extraDomains = {
135	"www.aten.pro" = null;
136	};
137	};
138	"piedsjaloux" = {
139	webroot = "/var/lib/acme/acme-challenge";
140	email = "ismael@bouya.org";
141	domain = "piedsjaloux.fr";
142	plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
143	postRun = ''
144	systemctl reload httpd.service
145	'';
146	extraDomains = {
147	"www.piedsjaloux.fr" = null;
148	};
149	};
150	"chloe" = {
151	webroot = "/var/lib/acme/acme-challenge";
152	email = "ismael@bouya.org";
153	domain = "osteopathe-cc.fr";
154	plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
155	postRun = ''
156	systemctl reload httpd.service
157	'';
158	extraDomains = {
159	"www.osteopathe-cc.fr" = null;
160	};
161	};
162	"connexionswing" = {
163	webroot = "/var/lib/acme/acme-challenge";
164	email = "ismael@bouya.org";
165	domain = "connexionswing.com";
166	plugins = [ "cert.pem" "chain.pem" "fullchain.pem" "full.pem" "key.pem" "account_key.json" ];
167	postRun = ''
168	systemctl reload httpd.service
169	'';
170	extraDomains = {
171	"www.connexionswing.com" = null;
172	"sandetludo.com" = null;
173	"www.sandetludo.com" = null;
174	};
175	};
176	};	108	};
177		109
178	services.openssh.extraConfig = ''	110	services.openssh.extraConfig = ''