53 lines
1.2 KiB
Nix
53 lines
1.2 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
with lib;
|
|
|
|
{
|
|
virtualisation.oci-containers.backend = "podman";
|
|
virtualisation.oci-containers.containers = {
|
|
phpldapadmin = {
|
|
image = "phpldapadmin/phpldapadmin:latest";
|
|
autoStart = true;
|
|
ports = [
|
|
"8087:8080/tcp"
|
|
];
|
|
environmentFiles = [
|
|
config.sops.secrets.phpldapadmin.path
|
|
];
|
|
};
|
|
};
|
|
|
|
systemd.timers."restart-phpldapadmin" = {
|
|
wantedBy = [ "timers.target" ];
|
|
timerConfig = {
|
|
OnCalendar = "*-*-* 3:00:00";
|
|
Unit = "restart-phpldapadmin.service";
|
|
};
|
|
};
|
|
|
|
services.nginx.virtualHosts."pla.cloonar.com" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
acmeRoot = null;
|
|
locations."/" = {
|
|
proxyPass = "http://localhost:8087";
|
|
proxyWebsockets = true;
|
|
};
|
|
};
|
|
|
|
systemd.services."restart-phpldapadmin" = {
|
|
script = ''
|
|
set -eu
|
|
if ${pkgs.systemd}/bin/systemctl is-active --quiet podman-phpldapadmin.service; then
|
|
${pkgs.systemd}/bin/systemctl restart podman-phpldapadmin.service
|
|
fi
|
|
'';
|
|
serviceConfig = {
|
|
Type = "oneshot";
|
|
User = "root";
|
|
};
|
|
};
|
|
|
|
sops.secrets.phpldapadmin = {};
|
|
}
|