commit b3af9ee9ea6e56f5e5af09c7124fee458a5971fe · pyrox.dev/nixpkgs

+11 -8

nixos/modules/services/web-apps/dolibarr.nix

···

       1
        
       { config, pkgs, lib, ... }:

     

       2
        
       let

     

       3
       -
         inherit (lib) any boolToString concatStringsSep isBool isString literalExpression mapAttrsToList mkDefault mkEnableOption mkIf mkOption optionalAttrs types;

     

       4
        
       

     

       5
        
         package = pkgs.dolibarr.override { inherit (cfg) stateDir; };

     

       6
        
       

     

       7
        
         cfg = config.services.dolibarr;

     

       8
       -
         vhostCfg = config.services.nginx.virtualHosts."${cfg.domain}";

     

       9
        
       

     

       10
        
         mkConfigFile = filename: settings:

     

       11
        
           let

     
···

       38
        
           force_install_database = cfg.database.name;

     

       39
        
           force_install_databaselogin = cfg.database.user;

     

       40
        
       

     

       41
       -
           force_install_mainforcehttps = vhostCfg.forceSSL;

     

       42
        
           force_install_createuser = false;

     

       43
        
           force_install_dolibarrlogin = null;

     

       44
        
         } // optionalAttrs (cfg.database.passwordFile != null) {

     
···

       183
        
         };

     

       184
        
       

     

       185
        
         # implementation

     

       186
       -
         config = mkIf cfg.enable {

     

       0
        
       
     

       187
        
       

     

       188
        
           assertions = [

     

       189
        
             { assertion = cfg.database.createLocally -> cfg.database.user == cfg.user;

     
···

       214
        
       

     

       215
        
             # Security settings

     

       216
        
             dolibarr_main_prod = true;

     

       217
       -
             dolibarr_main_force_https = vhostCfg.forceSSL;

     

       218
        
             dolibarr_main_restrict_os_commands = "${pkgs.mariadb}/bin/mysqldump, ${pkgs.mariadb}/bin/mysql";

     

       219
        
             dolibarr_nocsrfcheck = false;

     

       220
        
             dolibarr_main_instance_unique_id = ''

     
···

       314
        
           users.groups = optionalAttrs (cfg.group == "dolibarr") {

     

       315
        
             dolibarr = { };

     

       316
        
           };

     

       317
       -
       

     

       318
       -
           users.users."${config.services.nginx.group}".extraGroups = [ cfg.group ];

     

       319
       -
         };

     

       0
        
       
     

       0
        
       
     

       320
        
       }

···

       1
        
       { config, pkgs, lib, ... }:

     

       2
        
       let

     

       3
       +
         inherit (lib) any boolToString concatStringsSep isBool isString mapAttrsToList mkDefault mkEnableOption mkIf mkMerge mkOption optionalAttrs types;

     

       4
        
       

     

       5
        
         package = pkgs.dolibarr.override { inherit (cfg) stateDir; };

     

       6
        
       

     

       7
        
         cfg = config.services.dolibarr;

     

       8
       +
         vhostCfg = lib.optionalAttr (cfg.nginx != null) config.services.nginx.virtualHosts."${cfg.domain}";

     

       9
        
       

     

       10
        
         mkConfigFile = filename: settings:

     

       11
        
           let

     
···

       38
        
           force_install_database = cfg.database.name;

     

       39
        
           force_install_databaselogin = cfg.database.user;

     

       40
        
       

     

       41
       +
           force_install_mainforcehttps = vhostCfg.forceSSL or false;

     

       42
        
           force_install_createuser = false;

     

       43
        
           force_install_dolibarrlogin = null;

     

       44
        
         } // optionalAttrs (cfg.database.passwordFile != null) {

     
···

       183
        
         };

     

       184
        
       

     

       185
        
         # implementation

     

       186
       +
         config = mkIf cfg.enable (mkMerge [

     

       187
       +
           {

     

       188
        
       

     

       189
        
           assertions = [

     

       190
        
             { assertion = cfg.database.createLocally -> cfg.database.user == cfg.user;

     
···

       215
        
       

     

       216
        
             # Security settings

     

       217
        
             dolibarr_main_prod = true;

     

       218
       +
             dolibarr_main_force_https = vhostCfg.forceSSL or false;

     

       219
        
             dolibarr_main_restrict_os_commands = "${pkgs.mariadb}/bin/mysqldump, ${pkgs.mariadb}/bin/mysql";

     

       220
        
             dolibarr_nocsrfcheck = false;

     

       221
        
             dolibarr_main_instance_unique_id = ''

     
···

       315
        
           users.groups = optionalAttrs (cfg.group == "dolibarr") {

     

       316
        
             dolibarr = { };

     

       317
        
           };

     

       318
       +
         }

     

       319
       +
         (mkIf (cfg.nginx != null) {

     

       320
       +
           users.users."${config.services.nginx.group}".extraGroups = mkIf (cfg.nginx != null) [ cfg.group ];

     

       321
       +
         })

     

       322
       +
       ]);

     

       323
        
       }