Configuration des domaines générique

2018-05-17 15:43:35 +02:00 · 2018-05-17 15:43:35 +02:00 · 69c58eb73e
commit 69c58eb73e
parent bfb50ff90c
4 changed files with 33 additions and 19 deletions
--- a/services/haproxy-acme.nix
+++ b/services/haproxy-acme.nix
@ -71,7 +71,7 @@ in

      ${concatStrings (
        mapAttrsToList (name: value:
-          "  acl ${name}-acl hdr(host) -i ${name}.${cfg.domaine}\n"
+          "  acl ${name}-acl hdr(host) -i ${name}\n"
        + "  use_backend ${name}-backend if ${name}-acl\n"
        ) cfg.services)}

@ -111,9 +111,9 @@ in
    security.acme.certs = {
      ${cfg.domaine} = {
        extraDomains = mapAttrs' (name: value:
-          nameValuePair ("${name}.${cfg.domaine}") (null)
+          nameValuePair ("${name}") (null)
        ) cfg.services;
-        webroot = "/var/www/challenges/";
+        webroot = "/var/www/challenges";
        email = "paul@nyanlout.re";
        user = "haproxy";
        group = "haproxy";
--- a/services/site-max.nix
+++ b/services/site-max.nix
@ -14,12 +14,18 @@ in
      example = 54321;
      description = "Local listening port";
    };
+
+    domaine = mkOption {
+      type = types.str;
+      example = "example.com";
+      description = "Domaine à utiliser";
+    };
  };

  config = mkIf cfg.enable {

    services.haproxy-acme.services = {
-      max = { ip = "127.0.0.1"; port = cfg.port; auth = false; };
+      ${cfg.domaine} = { ip = "127.0.0.1"; port = cfg.port; auth = false; };
    };

    services.nginx.virtualHosts = {
--- a/services/site-musique.nix
+++ b/services/site-musique.nix
@ -14,12 +14,18 @@ in
      example = 54321;
      description = "Local listening port";
    };
+
+    domaine = mkOption {
+      type = types.str;
+      example = "example.com";
+      description = "Domaine à utiliser";
+    };
  };

  config = mkIf cfg.enable {

    services.haproxy-acme.services = {
-      musique = { ip = "127.0.0.1"; port = cfg.port; auth = false; };
+      ${cfg.domaine} = { ip = "127.0.0.1"; port = cfg.port; auth = false; };
    };

    services.nginx.virtualHosts = {