commit b40caf8c8a7e30fa0befedd3e0139c59c3141af1 · pyrox.dev/nixpkgs

+143 -147

nixos/modules/services/web-apps/peertube.nix

···

       61
       61
        
           eval -- "\$@"

     

       62
       62
        
         '';

     

       63
       63
        
       

     

       64
       64
       -
         peertubeCli = pkgs.writeShellScriptBin "peertube" ''

     

       65
       65
       -
           node ~/dist/server/tools/peertube.js $@

     

       64
       64
       +
         nginxCommonHeaders = lib.optionalString config.services.nginx.virtualHosts.${cfg.localDomain}.forceSSL ''

     

       65
       65
       +
           add_header Strict-Transport-Security 'max-age=31536000';

     

       66
       66
       +
         '' + lib.optionalString (config.services.nginx.virtualHosts.${cfg.localDomain}.quic && config.services.nginx.virtualHosts.${cfg.localDomain}.http3) ''

     

       67
       67
       +
           add_header Alt-Svc 'h3=":$server_port"; ma=604800';

     

       66
       68
        
         '';

     

       67
       69
        
       

     

       68
       68
       -
         nginxCommonHeaders = lib.optionalString cfg.enableWebHttps ''

     

       69
       69
       -
           add_header Strict-Transport-Security      'max-age=63072000; includeSubDomains';

     

       70
       70
       -
         '' + lib.optionalString config.services.nginx.virtualHosts.${cfg.localDomain}.http3 ''

     

       71
       71
       -
           add_header Alt-Svc                        'h3=":443"; ma=86400';

     

       72
       72
       -
         '' + ''

     

       73
       73
       -
           add_header Access-Control-Allow-Origin    '*';

     

       74
       74
       -
           add_header Access-Control-Allow-Methods   'GET, OPTIONS';

     

       75
       75
       -
           add_header Access-Control-Allow-Headers   'Range,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';

     

       70
       70
       +
         nginxCommonHeadersExtra = ''

     

       71
       71
       +
           add_header Access-Control-Allow-Origin '*';

     

       72
       72
       +
           add_header Access-Control-Allow-Methods 'GET, OPTIONS';

     

       73
       73
       +
           add_header Access-Control-Allow-Headers 'Range,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';

     

       76
       74
        
         '';

     

       77
       75
        
       

     

       78
       76
        
       in {

     
···

       330
       328
        
             }

     

       331
       329
        
           ];

     

       332
       330
        
       

     

       331
       331
       +
           environment.systemPackages = [ cfg.package.cli ];

     

       332
       332
       +
       

     

       333
       333
        
           services.peertube.settings = lib.mkMerge [

     

       334
       334
        
             {

     

       335
       335
        
               listen = {

     
···

       355
       355
        
                 tmp_persistent = lib.mkDefault "/var/lib/peertube/storage/tmp_persistent/";

     

       356
       356
        
                 bin = lib.mkDefault "/var/lib/peertube/storage/bin/";

     

       357
       357
        
                 avatars = lib.mkDefault "/var/lib/peertube/storage/avatars/";

     

       358
       358
       -
                 videos = lib.mkDefault "/var/lib/peertube/storage/videos/";

     

       358
       358
       +
                 web_videos = lib.mkDefault "/var/lib/peertube/storage/web-videos/";

     

       359
       359
        
                 streaming_playlists = lib.mkDefault "/var/lib/peertube/storage/streaming-playlists/";

     

       360
       360
        
                 redundancy = lib.mkDefault "/var/lib/peertube/storage/redundancy/";

     

       361
       361
        
                 logs = lib.mkDefault "/var/lib/peertube/storage/logs/";

     

       362
       362
        
                 previews = lib.mkDefault "/var/lib/peertube/storage/previews/";

     

       363
       363
        
                 thumbnails = lib.mkDefault "/var/lib/peertube/storage/thumbnails/";

     

       364
       364
       +
                 storyboards = lib.mkDefault "/var/lib/peertube/storage/storyboards/";

     

       364
       365
        
                 torrents = lib.mkDefault "/var/lib/peertube/storage/torrents/";

     

       365
       366
        
                 captions = lib.mkDefault "/var/lib/peertube/storage/captions/";

     

       366
       367
        
                 cache = lib.mkDefault "/var/lib/peertube/storage/cache/";

     
···

       428
       429
        
       

     

       429
       430
        
             environment = env;

     

       430
       431
        
       

     

       431
       431
       -
             path = with pkgs; [ bashInteractive ffmpeg nodejs_18 openssl yarn python3 ];

     

       432
       432
       +
             path = with pkgs; [ nodejs_18 yarn ffmpeg-headless openssl ];

     

       432
       433
        
       

     

       433
       434
        
             script = ''

     

       434
       435
        
               #!/bin/sh

     
···

       456
       457
        
               ln -sf ${cfg.package}/config/default.yaml /var/lib/peertube/config/default.yaml

     

       457
       458
        
               ln -sf ${cfg.package}/client/dist -T /var/lib/peertube/www/client

     

       458
       459
        
               ln -sf ${cfg.settings.storage.client_overrides} -T /var/lib/peertube/www/client-overrides

     

       459
       459
       -
               npm start

     

       460
       460
       +
               node dist/server

     

       460
       461
        
             '';

     

       461
       462
        
             serviceConfig = {

     

       462
       463
        
               Type = "simple";

     
···

       488
       489
        
       

     

       489
       490
        
           services.nginx = lib.mkIf cfg.configureNginx {

     

       490
       491
        
             enable = true;

     

       492
       492
       +
             upstreams."peertube".servers = {

     

       493
       493
       +
               "127.0.0.1:${toString cfg.listenHttp}".fail_timeout = "0";

     

       494
       494
       +
             };

     

       491
       495
        
             virtualHosts."${cfg.localDomain}" = {

     

       492
       496
        
               root = "/var/lib/peertube/www";

     

       493
       497
        
       

     
···

       497
       501
        
                 priority = 1110;

     

       498
       502
        
               };

     

       499
       503
        
       

     

       500
       500
       -
               locations."= /api/v1/videos/upload-resumable" = {

     

       504
       504
       +
               locations."~ ^/api/v1/videos/(upload-resumable|([^/]+/source/replace-resumable))$" = {

     

       501
       505
        
                 tryFiles = "/dev/null @api";

     

       502
       506
        
                 priority = 1120;

     

       503
       507
        
       

     

       504
       508
        
                 extraConfig = ''

     

       505
       505
       -
                   client_max_body_size                        0;

     

       506
       506
       -
                   proxy_request_buffering                     off;

     

       507
       507
       -
                 '';

     

       509
       509
       +
                   client_max_body_size 0;

     

       510
       510
       +
                   proxy_request_buffering off;

     

       511
       511
       +
                 '' + nginxCommonHeaders;

     

       508
       512
        
               };

     

       509
       513
        
       

     

       510
       514
        
               locations."~ ^/api/v1/videos/(upload|([^/]+/studio/edit))$" = {

     
···

       513
       517
        
                 priority = 1130;

     

       514
       518
        
       

     

       515
       519
        
                 extraConfig = ''

     

       516
       516
       -
                   client_max_body_size                        12G;

     

       517
       517
       -
                   add_header X-File-Maximum-Size              8G always;

     

       518
       518
       -
                 '' + lib.optionalString cfg.enableWebHttps ''

     

       519
       519
       -
                   add_header Strict-Transport-Security        'max-age=63072000; includeSubDomains';

     

       520
       520
       -
                 '' + lib.optionalString config.services.nginx.virtualHosts.${cfg.localDomain}.http3 ''

     

       521
       521
       -
                   add_header Alt-Svc                          'h3=":443"; ma=86400';

     

       522
       522
       -
                 '';

     

       520
       520
       +
                   limit_except POST HEAD { deny all; }

     

       521
       521
       +
       

     

       522
       522
       +
                   client_max_body_size 12G;

     

       523
       523
       +
                   add_header X-File-Maximum-Size 8G always;

     

       524
       524
       +
                 '' + nginxCommonHeaders;

     

       523
       525
        
               };

     

       524
       526
        
       

     

       525
       527
        
               locations."~ ^/api/v1/runners/jobs/[^/]+/(update|success)$" = {

     
···

       528
       530
        
                 priority = 1135;

     

       529
       531
        
       

     

       530
       532
        
                 extraConfig = ''

     

       531
       531
       -
                   client_max_body_size                        12G;

     

       532
       532
       -
                   add_header X-File-Maximum-Size              8G always;

     

       533
       533
       -
                 '' + lib.optionalString cfg.enableWebHttps ''

     

       534
       534
       -
                   add_header Strict-Transport-Security        'max-age=63072000; includeSubDomains';

     

       535
       535
       -
                 '' + lib.optionalString config.services.nginx.virtualHosts.${cfg.localDomain}.http3 ''

     

       536
       536
       -
                   add_header Alt-Svc                          'h3=":443"; ma=86400';

     

       537
       537
       -
                 '';

     

       533
       533
       +
                   client_max_body_size 12G;

     

       534
       534
       +
                   add_header X-File-Maximum-Size 8G always;

     

       535
       535
       +
                 '' + nginxCommonHeaders;

     

       538
       536
        
               };

     

       539
       537
        
       

     

       540
       538
        
               locations."~ ^/api/v1/(videos|video-playlists|video-channels|users/me)" = {

     
···

       542
       540
        
                 priority = 1140;

     

       543
       541
        
       

     

       544
       542
        
                 extraConfig = ''

     

       545
       545
       -
                   client_max_body_size                        6M;

     

       546
       546
       -
                   add_header X-File-Maximum-Size              4M always;

     

       547
       547
       -
                 '' + lib.optionalString cfg.enableWebHttps ''

     

       548
       548
       -
                   add_header Strict-Transport-Security        'max-age=63072000; includeSubDomains';

     

       549
       549
       -
                 '' + lib.optionalString config.services.nginx.virtualHosts.${cfg.localDomain}.http3 ''

     

       550
       550
       -
                   add_header Alt-Svc                          'h3=":443"; ma=86400';

     

       551
       551
       -
                 '';

     

       543
       543
       +
                   client_max_body_size 6M;

     

       544
       544
       +
                   add_header X-File-Maximum-Size 4M always;

     

       545
       545
       +
                 '' + nginxCommonHeaders;

     

       552
       546
        
               };

     

       553
       547
        
       

     

       554
       548
        
               locations."@api" = {

     

       555
       555
       -
                 proxyPass = "http://127.0.0.1:${toString cfg.listenHttp}";

     

       549
       549
       +
                 proxyPass = "http://peertube";

     

       556
       550
        
                 priority = 1150;

     

       557
       551
        
       

     

       558
       552
        
                 extraConfig = ''

     

       559
       559
       -
                   proxy_set_header X-Forwarded-For            $proxy_add_x_forwarded_for;

     

       560
       560
       -
                   proxy_set_header Host                       $host;

     

       561
       561
       -
                   proxy_set_header X-Real-IP                  $remote_addr;

     

       553
       553
       +
                   proxy_set_header Host $host;

     

       554
       554
       +
                   proxy_set_header X-Real-IP $remote_addr;

     

       555
       555
       +
                   proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       562
       556
        
       

     

       563
       563
       -
                   proxy_connect_timeout                       10m;

     

       557
       557
       +
                   proxy_connect_timeout 10m;

     

       564
       558
        
       

     

       565
       565
       -
                   proxy_send_timeout                          10m;

     

       566
       566
       -
                   proxy_read_timeout                          10m;

     

       559
       559
       +
                   proxy_send_timeout 10m;

     

       560
       560
       +
                   proxy_read_timeout 10m;

     

       567
       561
        
       

     

       568
       568
       -
                   client_max_body_size                        100k;

     

       569
       569
       -
                   send_timeout                                10m;

     

       570
       570
       -
                 '';

     

       562
       562
       +
                   client_max_body_size 100k;

     

       563
       563
       +
                   send_timeout 10m;

     

       564
       564
       +
                 ''+ nginxCommonHeaders;

     

       571
       565
        
               };

     

       572
       566
        
       

     

       573
       567
        
               # Websocket

     
···

       581
       575
        
                 priority = 1220;

     

       582
       576
        
       

     

       583
       577
        
                 extraConfig = ''

     

       584
       584
       -
                   proxy_read_timeout                          15m;

     

       578
       578
       +
                   proxy_read_timeout 15m;

     

       585
       579
        
                 '';

     

       586
       580
        
               };

     

       587
       581
        
       

     
···

       591
       585
        
               };

     

       592
       586
        
       

     

       593
       587
        
               locations."@api_websocket" = {

     

       594
       594
       -
                 proxyPass = "http://127.0.0.1:${toString cfg.listenHttp}";

     

       588
       588
       +
                 proxyPass = "http://peertube";

     

       595
       589
        
                 priority = 1240;

     

       596
       590
        
       

     

       597
       591
        
                 extraConfig = ''

     

       598
       598
       -
                   proxy_set_header X-Forwarded-For            $proxy_add_x_forwarded_for;

     

       599
       599
       -
                   proxy_set_header Host                       $host;

     

       600
       600
       -
                   proxy_set_header X-Real-IP                  $remote_addr;

     

       601
       601
       -
                   proxy_set_header Upgrade                    $http_upgrade;

     

       602
       602
       -
                   proxy_set_header Connection                 'upgrade';

     

       592
       592
       +
                   proxy_http_version 1.1;

     

       593
       593
       +
                   proxy_set_header Upgrade $http_upgrade;

     

       594
       594
       +
                   proxy_set_header Connection 'upgrade';

     

       595
       595
       +
                   proxy_set_header Host $host;

     

       596
       596
       +
                   proxy_set_header X-Real-IP $remote_addr;

     

       597
       597
       +
                   proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       603
       598
        
       

     

       604
       604
       -
                   proxy_http_version                          1.1;

     

       605
       605
       -
                 '';

     

       599
       599
       +
                 '' + nginxCommonHeaders;

     

       606
       600
        
               };

     

       607
       601
        
       

     

       608
       602
        
               # Bypass PeerTube for performance reasons.

     

       609
       603
        
               locations."~ ^/client/(assets/images/(icons/icon-36x36\.png|icons/icon-48x48\.png|icons/icon-72x72\.png|icons/icon-96x96\.png|icons/icon-144x144\.png|icons/icon-192x192\.png|icons/icon-512x512\.png|logo\.svg|favicon\.png|default-playlist\.jpg|default-avatar-account\.png|default-avatar-account-48x48\.png|default-avatar-video-channel\.png|default-avatar-video-channel-48x48\.png))$" = {

     

       610
       604
        
                 tryFiles = "/client-overrides/$1 /client/$1 $1";

     

       611
       605
        
                 priority = 1310;

     

       606
       606
       +
       

     

       607
       607
       +
                 extraConfig = nginxCommonHeaders;

     

       612
       608
        
               };

     

       613
       609
        
       

     

       614
       610
        
               locations."~ ^/client/(.*\.(js|css|png|svg|woff2|otf|ttf|woff|eot))$" = {

     

       615
       611
        
                 alias = "${cfg.package}/client/dist/$1";

     

       616
       612
        
                 priority = 1320;

     

       617
       613
        
                 extraConfig = ''

     

       618
       618
       -
                   add_header Cache-Control                    'public, max-age=604800, immutable';

     

       619
       619
       -
                 '' + lib.optionalString cfg.enableWebHttps ''

     

       620
       620
       -
                   add_header Strict-Transport-Security        'max-age=63072000; includeSubDomains';

     

       621
       621
       -
                 '' + lib.optionalString config.services.nginx.virtualHosts.${cfg.localDomain}.http3 ''

     

       622
       622
       -
                   add_header Alt-Svc                          'h3=":443"; ma=86400';

     

       623
       623
       -
                 '';

     

       614
       614
       +
                   add_header Cache-Control 'public, max-age=604800, immutable';

     

       615
       615
       +
                 '' + nginxCommonHeaders;

     

       624
       616
        
               };

     

       625
       617
        
       

     

       626
       618
        
               locations."^~ /download/" = {

     

       627
       627
       -
                 proxyPass = "http://127.0.0.1:${toString cfg.listenHttp}";

     

       619
       619
       +
                 proxyPass = "http://peertube";

     

       628
       620
        
                 priority = 1410;

     

       629
       621
        
                 extraConfig = ''

     

       630
       630
       -
                   proxy_set_header X-Forwarded-For            $proxy_add_x_forwarded_for;

     

       631
       631
       -
                   proxy_set_header Host                       $host;

     

       632
       632
       -
                   proxy_set_header X-Real-IP                  $remote_addr;

     

       622
       622
       +
                   proxy_set_header Host $host;

     

       623
       623
       +
                   proxy_set_header X-Real-IP $remote_addr;

     

       624
       624
       +
                   proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       633
       625
        
       

     

       634
       634
       -
                   proxy_limit_rate                            5M;

     

       635
       635
       -
                 '';

     

       626
       626
       +
                   proxy_limit_rate 5M;

     

       627
       627
       +
                 '' + nginxCommonHeaders;

     

       636
       628
        
               };

     

       637
       629
        
       

     

       638
       638
       -
               locations."^~ /static/streaming-playlists/private/" = {

     

       639
       639
       -
                 proxyPass = "http://127.0.0.1:${toString cfg.listenHttp}";

     

       630
       630
       +
               locations."^~ /static/streaming-playlists/hls/private/" = {

     

       631
       631
       +
                 proxyPass = "http://peertube";

     

       640
       632
        
                 priority = 1420;

     

       641
       633
        
                 extraConfig = ''

     

       642
       642
       -
                   proxy_set_header X-Forwarded-For            $proxy_add_x_forwarded_for;

     

       643
       643
       -
                   proxy_set_header Host                       $host;

     

       644
       644
       -
                   proxy_set_header X-Real-IP                  $remote_addr;

     

       634
       634
       +
                   proxy_set_header Host $host;

     

       635
       635
       +
                   proxy_set_header X-Real-IP $remote_addr;

     

       636
       636
       +
                   proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       645
       637
        
       

     

       646
       646
       -
                   proxy_limit_rate                            5M;

     

       647
       647
       -
                 '';

     

       638
       638
       +
                   proxy_limit_rate 5M;

     

       639
       639
       +
                 '' + nginxCommonHeaders;

     

       648
       640
        
               };

     

       649
       641
        
       

     

       650
       642
        
               locations."^~ /static/web-videos/private/" = {

     

       651
       651
       -
                 proxyPass = "http://127.0.0.1:${toString cfg.listenHttp}";

     

       643
       643
       +
                 proxyPass = "http://peertube";

     

       652
       644
        
                 priority = 1430;

     

       653
       645
        
                 extraConfig = ''

     

       654
       654
       -
                   proxy_set_header X-Forwarded-For            $proxy_add_x_forwarded_for;

     

       655
       655
       -
                   proxy_set_header Host                       $host;

     

       656
       656
       -
                   proxy_set_header X-Real-IP                  $remote_addr;

     

       646
       646
       +
                   proxy_set_header Host $host;

     

       647
       647
       +
                   proxy_set_header X-Real-IP $remote_addr;

     

       648
       648
       +
                   proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       657
       649
        
       

     

       658
       658
       -
                   proxy_limit_rate                            5M;

     

       659
       659
       -
                 '';

     

       650
       650
       +
                   proxy_limit_rate 5M;

     

       651
       651
       +
                 '' + nginxCommonHeaders;

     

       660
       652
        
               };

     

       661
       653
        
       

     

       662
       654
        
               locations."^~ /static/webseed/private/" = {

     

       663
       663
       -
                 proxyPass = "http://127.0.0.1:${toString cfg.listenHttp}";

     

       655
       655
       +
                 proxyPass = "http://peertube";

     

       664
       656
        
                 priority = 1440;

     

       665
       657
        
                 extraConfig = ''

     

       666
       666
       -
                   proxy_set_header X-Forwarded-For            $proxy_add_x_forwarded_for;

     

       667
       667
       -
                   proxy_set_header Host                       $host;

     

       668
       668
       -
                   proxy_set_header X-Real-IP                  $remote_addr;

     

       658
       658
       +
                   proxy_set_header Host $host;

     

       659
       659
       +
                   proxy_set_header X-Real-IP $remote_addr;

     

       660
       660
       +
                   proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       669
       661
        
       

     

       670
       670
       -
                   proxy_limit_rate                            5M;

     

       671
       671
       -
                 '';

     

       662
       662
       +
                   proxy_limit_rate 5M;

     

       663
       663
       +
                 '' + nginxCommonHeaders;

     

       672
       664
        
               };

     

       673
       665
        
       

     

       674
       666
        
               locations."^~ /static/redundancy/" = {

     
···

       676
       668
        
                 root = cfg.settings.storage.redundancy;

     

       677
       669
        
                 priority = 1450;

     

       678
       670
        
                 extraConfig = ''

     

       679
       679
       -
                   set $peertube_limit_rate                    800k;

     

       671
       671
       +
                   set $peertube_limit_rate 800k;

     

       680
       672
        
       

     

       681
       673
        
                   if ($request_uri ~ -fragmented.mp4$) {

     

       682
       682
       -
                     set $peertube_limit_rate                  5M;

     

       674
       674
       +
                     set $peertube_limit_rate 5M;

     

       683
       675
        
                   }

     

       684
       676
        
       

     

       685
       677
        
                   if ($request_method = 'OPTIONS') {

     

       686
       678
        
                     ${nginxCommonHeaders}

     

       687
       687
       -
                     add_header Access-Control-Max-Age         1728000;

     

       688
       688
       -
                     add_header Content-Type                   'text/plain charset=UTF-8';

     

       689
       689
       -
                     add_header Content-Length                 0;

     

       690
       690
       -
                     return                                    204;

     

       679
       679
       +
                     ${nginxCommonHeadersExtra}

     

       680
       680
       +
                     add_header Access-Control-Max-Age 1728000;

     

       681
       681
       +
                     add_header Content-Type 'text/plain charset=UTF-8';

     

       682
       682
       +
                     add_header Content-Length 0;

     

       683
       683
       +
                     return 204;

     

       691
       684
        
                   }

     

       692
       685
        
                   if ($request_method = 'GET') {

     

       693
       686
        
                     ${nginxCommonHeaders}

     

       687
       687
       +
                     ${nginxCommonHeadersExtra}

     

       694
       688
        
       

     

       695
       695
       -
                     access_log                                off;

     

       689
       689
       +
                     access_log off;

     

       696
       690
        
                   }

     

       697
       691
        
       

     

       698
       698
       -
                   aio                                         threads;

     

       699
       699
       -
                   sendfile                                    on;

     

       700
       700
       -
                   sendfile_max_chunk                          1M;

     

       692
       692
       +
                   aio threads;

     

       693
       693
       +
                   sendfile on;

     

       694
       694
       +
                   sendfile_max_chunk 1M;

     

       701
       695
        
       

     

       702
       702
       -
                   limit_rate                                  $peertube_limit_rate;

     

       703
       703
       -
                   limit_rate_after                            5M;

     

       696
       696
       +
                   limit_rate $peertube_limit_rate;

     

       697
       697
       +
                   limit_rate_after 5M;

     

       704
       698
        
       

     

       705
       705
       -
                   rewrite ^/static/redundancy/(.*)$           /$1 break;

     

       699
       699
       +
                   rewrite ^/static/redundancy/(.*)$ /$1 break;

     

       706
       700
        
                 '';

     

       707
       701
        
               };

     

       708
       702
        
       

     
···

       711
       705
        
                 root = cfg.settings.storage.streaming_playlists;

     

       712
       706
        
                 priority = 1460;

     

       713
       707
        
                 extraConfig = ''

     

       714
       714
       -
                   set $peertube_limit_rate                    800k;

     

       708
       708
       +
                   set $peertube_limit_rate 800k;

     

       715
       709
        
       

     

       716
       710
        
                   if ($request_uri ~ -fragmented.mp4$) {

     

       717
       717
       -
                     set $peertube_limit_rate                  5M;

     

       711
       711
       +
                     set $peertube_limit_rate 5M;

     

       718
       712
        
                   }

     

       719
       713
        
       

     

       720
       714
        
                   if ($request_method = 'OPTIONS') {

     

       721
       715
        
                     ${nginxCommonHeaders}

     

       722
       722
       -
                     add_header Access-Control-Max-Age         1728000;

     

       723
       723
       -
                     add_header Content-Type                   'text/plain charset=UTF-8';

     

       724
       724
       -
                     add_header Content-Length                 0;

     

       725
       725
       -
                     return                                    204;

     

       716
       716
       +
                     ${nginxCommonHeadersExtra}

     

       717
       717
       +
                     add_header Access-Control-Max-Age 1728000;

     

       718
       718
       +
                     add_header Content-Type 'text/plain charset=UTF-8';

     

       719
       719
       +
                     add_header Content-Length 0;

     

       720
       720
       +
                     return 204;

     

       726
       721
        
                   }

     

       727
       722
        
                   if ($request_method = 'GET') {

     

       728
       723
        
                     ${nginxCommonHeaders}

     

       724
       724
       +
                     ${nginxCommonHeadersExtra}

     

       729
       725
        
       

     

       730
       730
       -
                     access_log                                off;

     

       726
       726
       +
                     access_log off;

     

       731
       727
        
                   }

     

       732
       728
        
       

     

       733
       733
       -
                   aio                                         threads;

     

       734
       734
       -
                   sendfile                                    on;

     

       735
       735
       -
                   sendfile_max_chunk                          1M;

     

       729
       729
       +
                   aio threads;

     

       730
       730
       +
                   sendfile on;

     

       731
       731
       +
                   sendfile_max_chunk 1M;

     

       736
       732
        
       

     

       737
       737
       -
                   limit_rate                                  $peertube_limit_rate;

     

       738
       738
       -
                   limit_rate_after                            5M;

     

       733
       733
       +
                   limit_rate $peertube_limit_rate;

     

       734
       734
       +
                   limit_rate_after 5M;

     

       739
       735
        
       

     

       740
       740
       -
                   rewrite ^/static/streaming-playlists/(.*)$  /$1 break;

     

       736
       736
       +
                   rewrite ^/static/streaming-playlists/(.*)$ /$1 break;

     

       741
       737
        
                 '';

     

       742
       738
        
               };

     

       743
       739
        
       

     

       744
       740
        
               locations."^~ /static/web-videos/" = {

     

       745
       741
        
                 tryFiles = "$uri @api";

     

       746
       746
       -
                 root = cfg.settings.storage.streaming_playlists;

     

       742
       742
       +
                 root = cfg.settings.storage.web_videos;

     

       747
       743
        
                 priority = 1470;

     

       748
       744
        
                 extraConfig = ''

     

       749
       749
       -
                   set $peertube_limit_rate                    800k;

     

       745
       745
       +
                   set $peertube_limit_rate 800k;

     

       750
       746
        
       

     

       751
       747
        
                   if ($request_uri ~ -fragmented.mp4$) {

     

       752
       752
       -
                     set $peertube_limit_rate                  5M;

     

       748
       748
       +
                     set $peertube_limit_rate 5M;

     

       753
       749
        
                   }

     

       754
       750
        
       

     

       755
       751
        
                   if ($request_method = 'OPTIONS') {

     

       756
       752
        
                     ${nginxCommonHeaders}

     

       757
       757
       -
                     add_header Access-Control-Max-Age         1728000;

     

       758
       758
       -
                     add_header Content-Type                   'text/plain charset=UTF-8';

     

       759
       759
       -
                     add_header Content-Length                 0;

     

       760
       760
       -
                     return                                    204;

     

       753
       753
       +
                     ${nginxCommonHeadersExtra}

     

       754
       754
       +
                     add_header Access-Control-Max-Age 1728000;

     

       755
       755
       +
                     add_header Content-Type 'text/plain charset=UTF-8';

     

       756
       756
       +
                     add_header Content-Length 0;

     

       757
       757
       +
                     return 204;

     

       761
       758
        
                   }

     

       762
       759
        
                   if ($request_method = 'GET') {

     

       763
       760
        
                     ${nginxCommonHeaders}

     

       761
       761
       +
                     ${nginxCommonHeadersExtra}

     

       764
       762
        
       

     

       765
       765
       -
                     access_log                                off;

     

       763
       763
       +
                     access_log off;

     

       766
       764
        
                   }

     

       767
       765
        
       

     

       768
       768
       -
                   aio                                         threads;

     

       769
       769
       -
                   sendfile                                    on;

     

       770
       770
       -
                   sendfile_max_chunk                          1M;

     

       766
       766
       +
                   aio threads;

     

       767
       767
       +
                   sendfile on;

     

       768
       768
       +
                   sendfile_max_chunk 1M;

     

       771
       769
        
       

     

       772
       772
       -
                   limit_rate                                  $peertube_limit_rate;

     

       773
       773
       -
                   limit_rate_after                            5M;

     

       770
       770
       +
                   limit_rate $peertube_limit_rate;

     

       771
       771
       +
                   limit_rate_after 5M;

     

       774
       772
        
       

     

       775
       775
       -
                   rewrite ^/static/streaming-playlists/(.*)$  /$1 break;

     

       773
       773
       +
                   rewrite ^/static/web-videos/(.*)$ /$1 break;

     

       776
       774
        
                 '';

     

       777
       775
        
               };

     

       778
       776
        
       

     

       779
       777
        
               locations."^~ /static/webseed/" = {

     

       780
       778
        
                 tryFiles = "$uri @api";

     

       781
       781
       -
                 root = cfg.settings.storage.videos;

     

       779
       779
       +
                 root = cfg.settings.storage.web_videos;

     

       782
       780
        
                 priority = 1480;

     

       783
       781
        
                 extraConfig = ''

     

       784
       784
       -
                   set $peertube_limit_rate                    800k;

     

       782
       782
       +
                   set $peertube_limit_rate 800k;

     

       785
       783
        
       

     

       786
       784
        
                   if ($request_uri ~ -fragmented.mp4$) {

     

       787
       787
       -
                     set $peertube_limit_rate                  5M;

     

       785
       785
       +
                     set $peertube_limit_rate 5M;

     

       788
       786
        
                   }

     

       789
       787
        
       

     

       790
       788
        
                   if ($request_method = 'OPTIONS') {

     

       791
       789
        
                     ${nginxCommonHeaders}

     

       792
       792
       -
                     add_header Access-Control-Max-Age         1728000;

     

       793
       793
       -
                     add_header Content-Type                   'text/plain charset=UTF-8';

     

       794
       794
       -
                     add_header Content-Length                 0;

     

       795
       795
       -
                     return                                    204;

     

       790
       790
       +
                     ${nginxCommonHeadersExtra}

     

       791
       791
       +
                     add_header Access-Control-Max-Age 1728000;

     

       792
       792
       +
                     add_header Content-Type 'text/plain charset=UTF-8';

     

       793
       793
       +
                     add_header Content-Length 0;

     

       794
       794
       +
                     return 204;

     

       796
       795
        
                   }

     

       797
       796
        
                   if ($request_method = 'GET') {

     

       798
       797
        
                     ${nginxCommonHeaders}

     

       798
       798
       +
                     ${nginxCommonHeadersExtra}

     

       799
       799
        
       

     

       800
       800
       -
                     access_log                                off;

     

       800
       800
       +
                     access_log off;

     

       801
       801
        
                   }

     

       802
       802
        
       

     

       803
       803
       -
                   aio                                         threads;

     

       804
       804
       -
                   sendfile                                    on;

     

       805
       805
       -
                   sendfile_max_chunk                          1M;

     

       803
       803
       +
                   aio threads;

     

       804
       804
       +
                   sendfile on;

     

       805
       805
       +
                   sendfile_max_chunk 1M;

     

       806
       806
        
       

     

       807
       807
       -
                   limit_rate                                  $peertube_limit_rate;

     

       808
       808
       -
                   limit_rate_after                            5M;

     

       807
       807
       +
                   limit_rate $peertube_limit_rate;

     

       808
       808
       +
                   limit_rate_after 5M;

     

       809
       809
        
       

     

       810
       810
       -
                   rewrite ^/static/webseed/(.*)$              /$1 break;

     

       810
       810
       +
                   rewrite ^/static/webseed/(.*)$ /web-videos/$1 break;

     

       811
       811
        
                 '';

     

       812
       812
        
               };

     

       813
       813
       -
       

     

       814
       814
       -
               extraConfig = lib.optionalString cfg.enableWebHttps ''

     

       815
       815
       -
                 add_header Strict-Transport-Security          'max-age=63072000; includeSubDomains';

     

       816
       816
       -
               '';

     

       817
       813
        
             };

     

       818
       814
        
           };

     

       819
       815
        
       

     
···

       848
       844
        
                 home = cfg.package;

     

       849
       845
        
               };

     

       850
       846
        
             })

     

       851
       851
       -
             (lib.attrsets.setAttrByPath [ cfg.user "packages" ] [ cfg.package peertubeEnv peertubeCli pkgs.ffmpeg pkgs.nodejs_18 pkgs.yarn ])

     

       847
       847
       +
             (lib.attrsets.setAttrByPath [ cfg.user "packages" ] [ peertubeEnv pkgs.nodejs_18 pkgs.yarn pkgs.ffmpeg-headless ])

     

       852
       848
        
             (lib.mkIf cfg.redis.enableUnixSocket {${config.services.peertube.user}.extraGroups = [ "redis-peertube" ];})

     

       853
       849
        
           ];

     

       854
       850

+19 -9

nixos/tests/web-apps/peertube.nix

···

       17
       17
        
             services.postgresql = {

     

       18
       18
        
               enable = true;

     

       19
       19
        
               enableTCPIP = true;

     

       20
       20
       +
               ensureDatabases = [ "peertube_test" ];

     

       21
       21
       +
               ensureUsers = [

     

       22
       22
       +
                 {

     

       23
       23
       +
                   name = "peertube_test";

     

       24
       24
       +
                   ensureDBOwnership = true;

     

       25
       25
       +
                 }

     

       26
       26
       +
               ];

     

       20
       27
        
               authentication = ''

     

       21
       21
       -
                 hostnossl peertube_local peertube_test 192.168.2.11/32 md5

     

       28
       28
       +
                 hostnossl peertube_test peertube_test 192.168.2.11/32 md5

     

       22
       29
        
               '';

     

       23
       30
        
               initialScript = pkgs.writeText "postgresql_init.sql" ''

     

       24
       31
        
                 CREATE ROLE peertube_test LOGIN PASSWORD '0gUN0C1mgST6czvjZ8T9';

     

       25
       25
       -
                 CREATE DATABASE peertube_local TEMPLATE template0 ENCODING UTF8;

     

       26
       26
       -
                 GRANT ALL PRIVILEGES ON DATABASE peertube_local TO peertube_test;

     

       27
       27
       -
                 \connect peertube_local

     

       28
       28
       -
                 CREATE EXTENSION IF NOT EXISTS pg_trgm;

     

       29
       29
       -
                 CREATE EXTENSION IF NOT EXISTS unaccent;

     

       30
       32
        
               '';

     

       31
       33
        
             };

     

       32
       34
        
       

     
···

       41
       43
        
           server = { pkgs, ... }: {

     

       42
       44
        
             environment = {

     

       43
       45
        
               etc = {

     

       46
       46
       +
                 "peertube/password-init-root".text = ''

     

       47
       47
       +
                   PT_INITIAL_ROOT_PASSWORD=zw4SqYVdcsXUfRX8aaFX

     

       48
       48
       +
                 '';

     

       44
       49
        
                 "peertube/secrets-peertube".text = ''

     

       45
       50
        
                   063d9c60d519597acef26003d5ecc32729083965d09181ef3949200cbe5f09ee

     

       46
       51
        
                 '';

     
···

       70
       75
        
               localDomain = "peertube.local";

     

       71
       76
        
               enableWebHttps = false;

     

       72
       77
        
       

     

       78
       78
       +
               serviceEnvironmentFile = "/etc/peertube/password-init-root";

     

       79
       79
       +
       

     

       73
       80
        
               secrets = {

     

       74
       81
        
                 secretsFile = "/etc/peertube/secrets-peertube";

     

       75
       82
        
               };

     

       76
       83
        
       

     

       77
       84
        
               database = {

     

       78
       85
        
                 host = "192.168.2.10";

     

       79
       79
       -
                 name = "peertube_local";

     

       86
       86
       +
                 name = "peertube_test";

     

       80
       87
        
                 user = "peertube_test";

     

       81
       88
        
                 passwordFile = "/etc/peertube/password-posgressql-db";

     

       82
       89
        
               };

     
···

       99
       106
        
           };

     

       100
       107
        
       

     

       101
       108
        
           client = {

     

       102
       102
       -
             environment.systemPackages = [ pkgs.jq ];

     

       109
       109
       +
             environment.systemPackages = [ pkgs.jq pkgs.peertube.cli ];

     

       103
       110
        
             networking = {

     

       104
       111
        
              interfaces.eth1 = {

     

       105
       112
        
                 ipv4.addresses = [

     
···

       130
       137
        
           client.succeed("curl --fail http://peertube.local:9000/api/v1/config/about | jq -r '.instance.name' | grep 'PeerTube\ Test\ Server'")

     

       131
       138
        
       

     

       132
       139
        
           # Check PeerTube CLI version

     

       133
       133
       -
           assert "${pkgs.peertube.version}" in server.succeed('su - peertube -s /bin/sh -c "peertube --version"')

     

       140
       140
       +
           client.succeed('peertube-cli auth add -u "http://peertube.local:9000" -U "root" --password "zw4SqYVdcsXUfRX8aaFX"')

     

       141
       141
       +
           client.succeed('peertube-cli auth list | grep "http://peertube.local:9000"')

     

       142
       142
       +
           client.succeed('peertube-cli auth del "http://peertube.local:9000"')

     

       143
       143
       +
           client.fail('peertube-cli auth list | grep "http://peertube.local:9000"')

     

       134
       144
        
       

     

       135
       145
        
           client.shutdown()

     

       136
       146
        
           server.shutdown()

+68 -34

pkgs/servers/peertube/default.nix

···

       17
       17
        
           x86_64-linux = {

     

       18
       18
        
             arch = "linux-x64";

     

       19
       19
        
             libc = "glibc";

     

       20
       20
       -
             hash = "sha256-I1ceMi7h6flvKBmMIU1qjAU1S6z5MzguHDul3g1zMKw=";

     

       20
       20
       +
             hash = "sha256-C5N6VgFtXPLLjZt0ZdRTX095njRIT+12ONuUaBBj7fQ=";

     

       21
       21
        
           };

     

       22
       22
        
           aarch64-linux = {

     

       23
       23
        
             arch = "linux-arm64";

     

       24
       24
        
             libc = "glibc";

     

       25
       25
       -
             hash = "sha256-q8BR7kILYV8i8ozDkpcuKarf4s1TgRqOrUeLqjdWEQ0=";

     

       25
       25
       +
             hash = "sha256-TerDujO+IkSRnHYlSbAKSP9IS7AT7XnQJsZ8D8pCoGc=";

     

       26
       26
        
           };

     

       27
       27
        
           x86_64-darwin = {

     

       28
       28
        
             arch = "darwin-x64";

     

       29
       29
        
             libc = "unknown";

     

       30
       30
       -
             hash = "sha256-ONnXtRxcYFuFz+rmVTg+yEKe6J/vfKahX2i6k8dQStg=";

     

       30
       30
       +
             hash = "sha256-gphOONWujbeCCr6dkmMRJP94Dhp1Jvp2yt+g7n1HTv0=";

     

       31
       31
        
           };

     

       32
       32
        
           aarch64-darwin = {

     

       33
       33
        
             arch = "darwin-arm64";

     

       34
       34
        
             libc = "unknown";

     

       35
       35
       -
             hash = "sha256-VesAcT/IF2cvJVncJoqZcAvFxw32SN70C60GLU2kmVI=";

     

       35
       35
       +
             hash = "sha256-JMnELVUxoU1C57Tzue3Sg6OfDFAjfCnzgDit0BWzmlo=";

     

       36
       36
        
           };

     

       37
       37
        
         };

     

       38
       38
        
         bcryptAttrs = bcryptHostPlatformAttrs."${stdenv.hostPlatform.system}" or

     

       39
       39
        
           (throw "Unsupported architecture: ${stdenv.hostPlatform.system}");

     

       40
       40
       -
         bcryptVersion = "5.1.0";

     

       40
       40
       +
         bcryptVersion = "5.1.1";

     

       41
       41
        
         bcryptLib = fetchurl {

     

       42
       42
        
           url = "https://github.com/kelektiv/node.bcrypt.js/releases/download/v${bcryptVersion}/bcrypt_lib-v${bcryptVersion}-napi-v3-${bcryptAttrs.arch}-${bcryptAttrs.libc}.tar.gz";

     

       43
       43
        
           inherit (bcryptAttrs) hash;

     
···

       45
       45
        
       in

     

       46
       46
        
       stdenv.mkDerivation rec {

     

       47
       47
        
         pname = "peertube";

     

       48
       48
       -
         version = "5.2.1";

     

       48
       48
       +
         version = "6.0.3";

     

       49
       49
        
       

     

       50
       50
        
         src = fetchFromGitHub {

     

       51
       51
        
           owner = "Chocobozzz";

     

       52
       52
        
           repo = "PeerTube";

     

       53
       53
        
           rev = "v${version}";

     

       54
       54
       -
           hash = "sha256-8JzU0JVb+JQCNiro8hPHBwkofNTUy90YkSCzTOoB+/A=";

     

       54
       54
       +
           hash = "sha256-Pskxfi+qqVk75hu22niLNFsToCJks1k8w8mTnXjr6jg=";

     

       55
       55
        
         };

     

       56
       56
        
       

     

       57
       57
        
         yarnOfflineCacheServer = fetchYarnDeps {

     

       58
       58
        
           yarnLock = "${src}/yarn.lock";

     

       59
       59
       -
           hash = "sha256-pzXH6hdDf8O6Kr12Xw0jRcnPRD2TrDGdiEfxVr3KmwY=";

     

       59
       59
       +
           hash = "sha256-RJX92EgEIXWB1wNFRl8FvseOqBT+7m6gs+pMyoodruk=";

     

       60
       60
       +
         };

     

       61
       61
       +
       

     

       62
       62
       +
         yarnOfflineCacheClient = fetchYarnDeps {

     

       63
       63
       +
           yarnLock = "${src}/client/yarn.lock";

     

       64
       64
       +
           hash = "sha256-vr9xn5NXwiUS59Kgl8olCtkMgxnI1TKQzibKbb8RNXA=";

     

       60
       65
        
         };

     

       61
       66
        
       

     

       62
       62
       -
         yarnOfflineCacheTools = fetchYarnDeps {

     

       63
       63
       -
           yarnLock = "${src}/server/tools/yarn.lock";

     

       64
       64
       -
           hash = "sha256-maPR8OCiuNlle0JQIkZSgAqW+BrSxPwVm6CkxIrIg5k=";

     

       67
       67
       +
         yarnOfflineCacheAppsCli = fetchYarnDeps {

     

       68
       68
       +
           yarnLock = "${src}/apps/peertube-cli/yarn.lock";

     

       69
       69
       +
           hash = "sha256-xsB71bnaPn/9/f1KHyU3TTwx+Q+1dLjWmNK2aVJgoRY=";

     

       65
       70
        
         };

     

       66
       71
        
       

     

       67
       67
       -
         yarnOfflineCacheClient = fetchYarnDeps {

     

       68
       68
       -
           yarnLock = "${src}/client/yarn.lock";

     

       69
       69
       -
           hash = "sha256-Ejzk/VEx7YtJpsrkHcXAZnJ+yRx1VhBJGpqquHYULNU=";

     

       72
       72
       +
         yarnOfflineCacheAppsRunner = fetchYarnDeps {

     

       73
       73
       +
           yarnLock = "${src}/apps/peertube-runner/yarn.lock";

     

       74
       74
       +
           hash = "sha256-9w3aLuiLs7SU00YwuE0ixfiD77gCakXT4YeRpfsgGz0=";

     

       70
       75
        
         };

     

       71
       76
        
       

     

       72
       72
       -
         nativeBuildInputs = [ brotli prefetch-yarn-deps jq nodejs which yarn ];

     

       77
       77
       +
         outputs = [ "out" "cli" "runner" ];

     

       78
       78
       +
       

     

       79
       79
       +
         nativeBuildInputs = [ brotli prefetch-yarn-deps jq which yarn ];

     

       80
       80
       +
       

     

       81
       81
       +
         buildInputs = [ nodejs ];

     

       73
       82
        
       

     

       74
       83
        
         buildPhase = ''

     

       75
       84
        
           # Build node modules

     

       76
       85
        
           export HOME=$PWD

     

       77
       86
        
           fixup-yarn-lock ~/yarn.lock

     

       78
       78
       -
           fixup-yarn-lock ~/server/tools/yarn.lock

     

       79
       87
        
           fixup-yarn-lock ~/client/yarn.lock

     

       88
       88
       +
           fixup-yarn-lock ~/apps/peertube-cli/yarn.lock

     

       89
       89
       +
           fixup-yarn-lock ~/apps/peertube-runner/yarn.lock

     

       80
       90
        
           yarn config --offline set yarn-offline-mirror $yarnOfflineCacheServer

     

       81
       81
       -
           yarn install --offline --frozen-lockfile --ignore-engines --ignore-scripts --no-progress

     

       82
       82
       -
           cd ~/server/tools

     

       83
       83
       -
           yarn config --offline set yarn-offline-mirror $yarnOfflineCacheTools

     

       84
       91
        
           yarn install --offline --frozen-lockfile --ignore-engines --ignore-scripts --no-progress

     

       85
       92
        
           cd ~/client

     

       86
       93
        
           yarn config --offline set yarn-offline-mirror $yarnOfflineCacheClient

     

       94
       94
       +
           yarn install --offline --frozen-lockfile --ignore-engines --ignore-scripts --no-progress

     

       95
       95
       +
           cd ~/apps/peertube-cli

     

       96
       96
       +
           yarn config --offline set yarn-offline-mirror $yarnOfflineCacheAppsCli

     

       97
       97
       +
           yarn install --offline --frozen-lockfile --ignore-engines --ignore-scripts --no-progress

     

       98
       98
       +
           cd ~/apps/peertube-runner

     

       99
       99
       +
           yarn config --offline set yarn-offline-mirror $yarnOfflineCacheAppsRunner

     

       87
       100
        
           yarn install --offline --frozen-lockfile --ignore-engines --ignore-scripts --no-progress

     

       88
       101
        
       

     

       89
       89
       -
           patchShebangs ~/node_modules

     

       90
       90
       -
           patchShebangs ~/server/tools/node_modules

     

       91
       91
       -
           patchShebangs ~/client/node_modules

     

       92
       92
       -
           patchShebangs ~/scripts

     

       102
       102
       +
           patchShebangs ~/{node_modules,client/node_modules,/apps/peertube-cli/node_modules,apps/peertube-runner/node_modules,scripts}

     

       93
       103
        
       

     

       94
       104
        
           # Fix bcrypt node module

     

       95
       105
        
           cd ~/node_modules/bcrypt

     
···

       103
       113
        
           cd ~

     

       104
       114
        
       

     

       105
       115
        
           # Build PeerTube server

     

       106
       106
       -
           npm run tsc -- --build ./tsconfig.json

     

       107
       107
       -
           npm run resolve-tspaths:server

     

       108
       108
       -
           cp -r "./server/static" "./server/assets" "./dist/server"

     

       109
       109
       -
           cp -r "./server/lib/emails" "./dist/server/lib"

     

       110
       110
       -
       

     

       111
       111
       -
           # Build PeerTube tools

     

       112
       112
       -
           cp -r "./server/tools/node_modules" "./dist/server/tools"

     

       113
       113
       -
           npm run tsc -- --build ./server/tools/tsconfig.json

     

       114
       114
       -
           npm run resolve-tspaths:server

     

       116
       116
       +
           npm run build:server

     

       115
       117
        
       

     

       116
       118
        
           # Build PeerTube client

     

       117
       119
        
           npm run build:client

     

       120
       120
       +
       

     

       121
       121
       +
           # Build PeerTube cli

     

       122
       122
       +
           npm run build:peertube-cli

     

       123
       123
       +
           patchShebangs ~/apps/peertube-cli/dist/peertube.js

     

       124
       124
       +
       

     

       125
       125
       +
           # Build PeerTube runner

     

       126
       126
       +
           npm run build:peertube-runner

     

       127
       127
       +
           patchShebangs ~/apps/peertube-runner/dist/peertube-runner.js

     

       128
       128
       +
       

     

       129
       129
       +
           # Clean up declaration files

     

       130
       130
       +
           find ~/dist/ \

     

       131
       131
       +
             ~/packages/core-utils/dist/ \

     

       132
       132
       +
             ~/packages/ffmpeg/dist/ \

     

       133
       133
       +
             ~/packages/models/dist/ \

     

       134
       134
       +
             ~/packages/node-utils/dist/ \

     

       135
       135
       +
             ~/packages/server-commands/dist/ \

     

       136
       136
       +
             ~/packages/typescript-utils/dist/ \

     

       137
       137
       +
             \( -name '*.d.ts' -o -name '*.d.ts.map' \) -type f -delete

     

       118
       138
        
         '';

     

       119
       139
        
       

     

       120
       140
        
         installPhase = ''

     

       121
       141
        
           mkdir -p $out/dist

     

       122
       142
        
           mv ~/dist $out

     

       123
       143
        
           mv ~/node_modules $out/node_modules

     

       124
       124
       -
           mv ~/server/tools/node_modules $out/dist/server/tools/node_modules

     

       125
       144
        
           mkdir $out/client

     

       126
       145
        
           mv ~/client/{dist,node_modules,package.json,yarn.lock} $out/client

     

       127
       127
       -
           mv ~/{config,scripts,support,CREDITS.md,FAQ.md,LICENSE,README.md,package.json,tsconfig.json,yarn.lock} $out

     

       146
       146
       +
           mkdir -p $out/packages/{core-utils,ffmpeg,models,node-utils,server-commands,typescript-utils}

     

       147
       147
       +
           mv ~/packages/core-utils/{dist,package.json} $out/packages/core-utils

     

       148
       148
       +
           mv ~/packages/ffmpeg/{dist,package.json} $out/packages/ffmpeg

     

       149
       149
       +
           mv ~/packages/models/{dist,package.json} $out/packages/models

     

       150
       150
       +
           mv ~/packages/node-utils/{dist,package.json} $out/packages/node-utils

     

       151
       151
       +
           mv ~/packages/server-commands/{dist,package.json} $out/packages/server-commands

     

       152
       152
       +
           mv ~/packages/typescript-utils/{dist,package.json} $out/packages/typescript-utils

     

       153
       153
       +
           mv ~/{config,support,CREDITS.md,FAQ.md,LICENSE,README.md,package.json,yarn.lock} $out

     

       154
       154
       +
       

     

       155
       155
       +
           mkdir -p $cli/bin

     

       156
       156
       +
           mv ~/apps/peertube-cli/{dist,node_modules,package.json,yarn.lock} $cli

     

       157
       157
       +
           ln -s $cli/dist/peertube.js $cli/bin/peertube-cli

     

       158
       158
       +
       

     

       159
       159
       +
           mkdir -p $runner/bin

     

       160
       160
       +
           mv ~/apps/peertube-runner/{dist,node_modules,package.json,yarn.lock} $runner

     

       161
       161
       +
           ln -s $runner/dist/peertube-runner.js $runner/bin/peertube-runner

     

       128
       162
        
       

     

       129
       163
        
           # Create static gzip and brotli files

     

       130
       164
        
           find $out/client/dist -type f -regextype posix-extended -iregex '.*\.(css|eot|html|js|json|svg|webmanifest|xlf)' | while read file; do