Tom Hubrecht
88d9b8c3e3
Some checks failed
Check meta / check_dns (pull_request) Successful in 19s
Check meta / check_meta (pull_request) Successful in 20s
Check workflows / check_workflows (pull_request) Successful in 24s
Build all the nodes / ap01 (pull_request) Successful in 1m15s
Build all the nodes / bridge01 (pull_request) Successful in 1m53s
Build all the nodes / geo01 (pull_request) Successful in 1m55s
Build all the nodes / geo02 (pull_request) Successful in 1m53s
Build all the nodes / compute01 (pull_request) Successful in 2m33s
Build all the nodes / rescue01 (pull_request) Successful in 2m13s
Build all the nodes / storage01 (pull_request) Successful in 1m57s
Run pre-commit on all files / check (pull_request) Successful in 30s
Build all the nodes / web02 (pull_request) Successful in 1m47s
Build all the nodes / vault01 (pull_request) Successful in 2m21s
Build all the nodes / web03 (pull_request) Successful in 1m40s
Build all the nodes / web01 (pull_request) Successful in 2m54s
Check meta / check_dns (push) Successful in 20s
Check meta / check_meta (push) Successful in 19s
Check workflows / check_workflows (push) Successful in 25s
Build all the nodes / ap01 (push) Successful in 1m16s
Build all the nodes / bridge01 (push) Successful in 1m41s
Build all the nodes / geo02 (push) Successful in 1m44s
Build all the nodes / geo01 (push) Successful in 1m53s
Build all the nodes / compute01 (push) Successful in 2m20s
Build all the nodes / rescue01 (push) Successful in 1m49s
Build all the nodes / storage01 (push) Successful in 1m46s
Build all the nodes / vault01 (push) Successful in 1m45s
Run pre-commit on all files / check (push) Successful in 30s
Build all the nodes / web02 (push) Has been cancelled
Build all the nodes / web01 (push) Has been cancelled
Build all the nodes / web03 (push) Has been cancelled
Signed-off-by: Tom Hubrecht <tom.hubrecht@dgnum.eu> Acked-by: Ryan Lahfa <ryan.lahfa@dgnum.eu> Acked-by: Maurice Debray <maurice.debray@dgnum.eu> Acked-by: Lubin Bailly <lubin.bailly@dgnum.eu> Acked-by: Jean-Marc Gailis <jean-marc.gailis@dgnum.eu> as the legal authority, at the time of writing, in DGNum. Acked-by: Elias Coppens <elias.coppens@dgnum.eu> as a member, at the time of writing, of the DGNum executive counsel.
104 lines
2.9 KiB
Nix
104 lines
2.9 KiB
Nix
# SPDX-FileCopyrightText: 2024 Tom Hubrecht <tom.hubrecht@dgnum.eu>
|
|
#
|
|
# SPDX-License-Identifier: EUPL-1.2
|
|
|
|
{
|
|
config,
|
|
pkgs,
|
|
sources,
|
|
...
|
|
}:
|
|
|
|
let
|
|
host = "demarches.dgnum.eu";
|
|
|
|
dgn-id = "1fbe81d211b18dae7b9c1727362997c62636f24a";
|
|
in
|
|
{
|
|
imports = [ ./module.nix ];
|
|
|
|
dgn-web.internalPorts.ds-fr = 3000;
|
|
|
|
services.demarches-simplifiees = {
|
|
enable = true;
|
|
|
|
package =
|
|
((import sources.nix-pkgs { inherit pkgs; }).demarches-simplifiees.override {
|
|
initialDeploymentDate = "20230923";
|
|
}).overrideAttrs
|
|
(old: {
|
|
dsModules = old.dsModules.overrideAttrs {
|
|
prePatch = ''
|
|
${pkgs.lib.getExe pkgs.git} apply -p1 < ${
|
|
pkgs.fetchurl {
|
|
url = "https://git.dgnum.eu/DGNum/demarches-normaliennes/commit/${dgn-id}.patch";
|
|
hash = "sha256-aCq/WkV4+PUSIzXgznwm2sAcaz12Y1zmUbh7QoXoMsM=";
|
|
}
|
|
}
|
|
'';
|
|
};
|
|
});
|
|
|
|
secretFile = config.age.secrets."ds-fr-secret_file".path;
|
|
|
|
initialDeploymentDate = "20230923";
|
|
|
|
settings = {
|
|
APP_HOST = host;
|
|
|
|
# Disable France Connect and Agent Connect
|
|
FRANCE_CONNECT_ENABLED = "disabled";
|
|
AGENT_CONNECT_ENABLED = "disabled";
|
|
|
|
# S3 storage setup
|
|
ACTIVE_STORAGE_SERVICE = "local";
|
|
|
|
# SAML_IDP_ENABLED = "enabled";
|
|
|
|
# Optional settings
|
|
APPLICATION_NAME = ''"Démarches normaliennes"'';
|
|
APPLICATION_SHORTNAME = "d-s.dgnum.eu";
|
|
APPLICATION_BASE_URL = "https://${host}";
|
|
|
|
# SMTP setup, TODO: Fix and stop using sendmail
|
|
CLASSIC_SMTP_ENABLED = "enabled";
|
|
SMTP_HOST = "kurisu.lahfa.xyz";
|
|
SMTP_PORT = "465";
|
|
SMTP_USER = "web-services@infra.dgnum.eu";
|
|
SMTP_TLS = "";
|
|
SMTP_SSL = "true";
|
|
SMTP_AUTHENTICATION = "plain";
|
|
|
|
SUPER_ADMIN_OTP_ENABLED = "disabled";
|
|
|
|
CONTACT_EMAIL = "demarches@infra.dgnum.eu";
|
|
EQUIPE_EMAIL = "equipe@infra.dgnum.eu";
|
|
TECH_EMAIL = "tech@infra.dgnum.eu";
|
|
NO_REPLY_EMAIL = ''"Ne pas répondre <demarches@infra.dgnum.eu>"'';
|
|
OLD_CONTACT_EMAIL = "";
|
|
CONTACT_PHONE = "";
|
|
|
|
STATUS_URL = "https://status.dgnum.eu/demarches-normaliennes";
|
|
|
|
DEMANDE_INSCRIPTION_ADMIN_PAGE_URL = "https://demarches.dgnum.eu/commencer/demande-d-inscription-demarches-normaliennes";
|
|
DOC_URL = "https://docs.dgnum.eu/s/demarches-normaliennes";
|
|
|
|
ADMINS_GROUP_ENABLED = "enabled";
|
|
|
|
RUBY_YJIT_ENABLE = "1";
|
|
|
|
STRICT_EMAIL_VALIDATION_STARTS_ON = "2024-02-23";
|
|
WEASYPRINT_URL = "http://127.0.0.1:5000/pdf";
|
|
|
|
# Customization
|
|
# HEADER_LOGO_SRC = "logo_ens_psl_couleur.png";
|
|
# HEADER_LOGO_ALT = "Par la Recherche, pour la Recherche";
|
|
# PROCEDURE_DEFAULT_LOGO_SRC = "logo_ens_psl_couleur.png";
|
|
};
|
|
};
|
|
|
|
age-secrets.autoMatch = [ "ds-fr" ];
|
|
|
|
dgn-backups.jobs.ds-fr.settings.paths = [ "/var/lib/ds-fr" ];
|
|
dgn-backups.postgresDatabases = [ "ds-fr" ];
|
|
}
|