2016-04-09 12:21:39 +00:00
|
|
|
{ config, pkgs, lib, ... }:
|
2015-12-12 17:21:50 +00:00
|
|
|
|
2016-03-23 12:45:06 +00:00
|
|
|
let
|
2016-05-12 22:22:22 +00:00
|
|
|
inherit (config.krebs.lib)
|
|
|
|
|
genid
|
|
|
|
|
readFile
|
|
|
|
|
;
|
2016-04-09 12:21:39 +00:00
|
|
|
inherit (import ../../4lib { inherit lib pkgs; })
|
|
|
|
|
manageCert
|
2016-04-11 14:50:22 +00:00
|
|
|
manageCerts
|
2016-04-09 12:21:39 +00:00
|
|
|
activateACME
|
|
|
|
|
ssl
|
|
|
|
|
servePage
|
2016-04-11 14:50:22 +00:00
|
|
|
serveOwncloud
|
|
|
|
|
serveWordpress;
|
2016-04-09 12:21:39 +00:00
|
|
|
|
2016-05-12 22:22:22 +00:00
|
|
|
msmtprc = pkgs.writeText "msmtprc" ''
|
|
|
|
|
account prism
|
|
|
|
|
host localhost
|
|
|
|
|
account default: prism
|
|
|
|
|
'';
|
|
|
|
|
|
|
|
|
|
sendmail = pkgs.writeDash "msmtp" ''
|
|
|
|
|
exec ${pkgs.msmtp}/bin/msmtp --read-envelope-from -C ${msmtprc} "$@"
|
|
|
|
|
'';
|
|
|
|
|
|
2016-03-23 12:45:06 +00:00
|
|
|
in {
|
2015-12-12 17:21:50 +00:00
|
|
|
imports = [
|
2016-04-13 14:32:04 +00:00
|
|
|
( ssl [ "reich-gebaeudereinigung.de" ])
|
|
|
|
|
( servePage [ "reich-gebaeudereinigung.de" ])
|
2015-12-12 17:21:50 +00:00
|
|
|
|
2016-04-13 14:32:04 +00:00
|
|
|
( manageCerts [ "karlaskop.de" ])
|
|
|
|
|
( servePage [ "karlaskop.de" ])
|
2015-12-12 17:21:50 +00:00
|
|
|
|
2016-04-13 14:32:04 +00:00
|
|
|
( ssl [ "makeup.apanowicz.de" ])
|
|
|
|
|
( servePage [ "makeup.apanowicz.de" ])
|
2016-04-09 12:21:39 +00:00
|
|
|
|
2016-04-13 14:32:04 +00:00
|
|
|
( manageCerts [ "pixelpocket.de" ])
|
|
|
|
|
( servePage [ "pixelpocket.de" ])
|
2016-04-09 12:21:39 +00:00
|
|
|
|
2016-04-13 14:32:04 +00:00
|
|
|
( ssl [ "o.ubikmedia.de" ])
|
|
|
|
|
( serveOwncloud [ "o.ubikmedia.de" ])
|
2016-04-09 12:21:39 +00:00
|
|
|
|
2016-04-13 14:32:04 +00:00
|
|
|
( ssl [ "ubikmedia.de" "aldona.ubikmedia.de" "apanowicz.de" "nirwanabluete.de" "aldonasiech.com" "360gradvideo.tv" "ubikmedia.eu" ] )
|
2016-04-11 14:50:22 +00:00
|
|
|
( serveWordpress [ "ubikmedia.de" "*.ubikmedia.de" "apanowicz.de" "nirwanabluete.de" "aldonasiech.com" "360gradvideo.tv" "ubikmedia.eu" ] )
|
2016-04-09 12:21:39 +00:00
|
|
|
];
|
2015-12-12 17:21:50 +00:00
|
|
|
|
|
|
|
|
services.mysql = {
|
|
|
|
|
enable = true;
|
|
|
|
|
package = pkgs.mariadb;
|
|
|
|
|
rootPassword = toString (<secrets/mysql_rootPassword>);
|
|
|
|
|
};
|
|
|
|
|
|
2016-04-20 11:59:49 +00:00
|
|
|
lass.mysqlBackup = {
|
|
|
|
|
enable = true;
|
|
|
|
|
config.domsen = {
|
|
|
|
|
password = toString (<secrets/mysql_rootPassword>);
|
|
|
|
|
databases = [
|
|
|
|
|
"ubikmedia_de"
|
|
|
|
|
"o_ubikmedia_de"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
};
|
2016-04-11 14:50:49 +00:00
|
|
|
services.mysqlBackup = {
|
|
|
|
|
enable = true;
|
|
|
|
|
databases = [
|
|
|
|
|
"ubikmedia_de"
|
|
|
|
|
"o_ubikmedia_de"
|
|
|
|
|
];
|
|
|
|
|
location = "/bku/sql_dumps";
|
|
|
|
|
};
|
|
|
|
|
|
2016-03-23 12:45:06 +00:00
|
|
|
users.users.domsen = {
|
|
|
|
|
uid = genid "domsen";
|
|
|
|
|
description = "maintenance acc for domsen";
|
|
|
|
|
home = "/home/domsen";
|
|
|
|
|
useDefaultShell = true;
|
|
|
|
|
extraGroups = [ "nginx" ];
|
|
|
|
|
createHome = true;
|
|
|
|
|
};
|
|
|
|
|
|
2016-05-19 22:06:11 +00:00
|
|
|
services.phpfpm.phpOptions = ''
|
2016-05-12 22:22:22 +00:00
|
|
|
extension=${pkgs.phpPackages.apcu}/lib/php/extensions/apcu.so
|
|
|
|
|
sendmail_path = ${sendmail} -t
|
2016-04-11 14:51:12 +00:00
|
|
|
'';
|
2015-12-12 17:21:50 +00:00
|
|
|
}
|
|
|
|
|
|
