aboutsummaryrefslogtreecommitdiff
path: root/virtual/eldiron.nix
diff options
context:
space:
mode:
Diffstat (limited to 'virtual/eldiron.nix')
-rw-r--r--virtual/eldiron.nix6
1 files changed, 4 insertions, 2 deletions
diff --git a/virtual/eldiron.nix b/virtual/eldiron.nix
index ed41429..fb366b7 100644
--- a/virtual/eldiron.nix
+++ b/virtual/eldiron.nix
@@ -6,6 +6,7 @@
6 6
7 eldiron = { config, pkgs, ... }: 7 eldiron = { config, pkgs, ... }:
8 let mypkgs = import ./packages.nix; 8 let mypkgs = import ./packages.nix;
9 mylibs = import ../libs.nix;
9 in 10 in
10 { 11 {
11 networking = { 12 networking = {
@@ -96,7 +97,7 @@
96 "ldap" 97 "ldap"
97 "authnz_ldap" 98 "authnz_ldap"
98 ]); 99 ]);
99 extraConfig = '' 100 extraConfig = assert mylibs.checkEnv "NIXOPS_HTTP_LDAP_PASSWORD"; ''
100 <IfModule ldap_module> 101 <IfModule ldap_module>
101 LDAPSharedCacheSize 500000 102 LDAPSharedCacheSize 500000
102 LDAPCacheEntries 1024 103 LDAPCacheEntries 1024
@@ -162,7 +163,8 @@
162 # FIXME: environment variables ? 163 # FIXME: environment variables ?
163 security.pam.services = let 164 security.pam.services = let
164 pam_ldap = pkgs.pam_ldap; 165 pam_ldap = pkgs.pam_ldap;
165 pam_ldap_mysql = pkgs.writeText "mysql.conf" '' 166 pam_ldap_mysql = assert mylibs.checkEnv "NIXOPS_MYSQL_PAM_PASSWORD";
167 pkgs.writeText "mysql.conf" ''
166 host ldap.immae.eu 168 host ldap.immae.eu
167 base dc=immae,dc=eu 169 base dc=immae,dc=eu
168 binddn cn=mysql,cn=pam,ou=services,dc=immae,dc=eu 170 binddn cn=mysql,cn=pam,ou=services,dc=immae,dc=eu