forked from potsda.mn/mobilizon
50 lines
1.1 KiB
Nix
50 lines
1.1 KiB
Nix
{ certs }:
|
|
{ lib, ... }:
|
|
let
|
|
mobilizonDomain = certs.domain;
|
|
port = 41395;
|
|
in
|
|
|
|
{
|
|
name = "mobilizon";
|
|
meta.maintainers = with lib.maintainers; [
|
|
minijackson
|
|
erictapen
|
|
];
|
|
|
|
nodes.server =
|
|
{ pkgs, ... }:
|
|
{
|
|
services.mobilizon = {
|
|
enable = true;
|
|
settings = {
|
|
":mobilizon" = {
|
|
":instance" = {
|
|
name = "Test Mobilizon";
|
|
hostname = mobilizonDomain;
|
|
};
|
|
"Mobilizon.Web.Endpoint".http.port = port;
|
|
};
|
|
};
|
|
};
|
|
|
|
services.postgresql.package = pkgs.postgresql_14;
|
|
|
|
security.pki.certificateFiles = [ certs.ca.cert ];
|
|
|
|
services.nginx.virtualHosts."${mobilizonDomain}" = {
|
|
enableACME = lib.mkForce false;
|
|
sslCertificate = certs.${mobilizonDomain}.cert;
|
|
sslCertificateKey = certs.${mobilizonDomain}.key;
|
|
};
|
|
|
|
networking.hosts."::1" = [ mobilizonDomain ];
|
|
};
|
|
|
|
testScript = ''
|
|
server.wait_for_unit("mobilizon.service")
|
|
server.wait_for_open_port(${toString port})
|
|
server.succeed("curl --fail https://${mobilizonDomain}/")
|
|
'';
|
|
}
|