spencer/nix
1
0
Fork 0
mirror of https://github.com/sbrow/nix.git synced 2026-02-27 13:21:45 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
642482921ccf8f9c61904033b6b784d8e7674755
nix/nixos/modules/web-apps/laravel.nix
Spencer Brower 642482921c feat: Added laravel module.
2022-09-06 13:02:37 -04:00

124 lines
3.6 KiB
Nix
Raw Blame History

# TODO: Install private shell key?
# TODO: git config via HomeManager?
{ config, hostName, lib, pkgs, nixpkgs, ... }:
let
cfg = config.services.laravel;
in
{
options = {
services.laravel = {
domain = lib.mkOption {
description = "The domain on which to serve the Laravel app.";
type = lib.types.str;
default = "localhost";
};
enable = lib.mkOption {
description = "Whether to enable the Laravel web server";
type = lib.types.bool;
default = false;
};
root = lib.mkOption {
description = "Path to the root directory of the app source.";
type = lib.types.path;
default = /var/www;
};
# database.connection = lib.mkOption { string mysql }
/*
env = lib.mkOption {
description = "The environment to pass to Laravel.";
default = "local";
type = lib.types.enum [ "local" "staging" "production" ];
};
*/
user = lib.mkOption {
description = "User account under which Laravel runs.";
type = lib.types.str;
default = "nginx";
};
# TODO: Support octane
poolConfig = lib.mkOption {
description = "Configuration for the php fpm pool";
# type = with lib.types; attrsOf inferred;
type = lib.types.attrs;
default = {
user = cfg.user;
group = "nginx";
settings = {
pm = "dynamic";
"listen.owner" = cfg.user;
"pm.max_children" = 5;
"pm.start_servers" = 2;
"pm.min_spare_servers" = 1;
"pm.max_spare_servers" = 3;
"pm.max_requests" = 500;
};
phpEnv."PATH" = "/run/current-system/sw/bin";
};
};
phpPackage = lib.mkOption {
description = "The php package run laravel with.";
type = lib.types.package;
default = pkgs.php;
};
db.connection = lib.mkOption {
description = "The backend to use for the database";
type = lib.types.str;
default = "mysql";
};
};
};
config = lib.mkIf cfg.enable (lib.mkMerge [
{
environment.systemPackages = with pkgs; [
php.packages.composer
];
services.phpfpm.phpPackage = cfg.phpPackage;
services.phpfpm.pools."www" = cfg.poolConfig;
services.nginx.enable = true;
services.nginx.user = cfg.user;
services.nginx.virtualHosts."${cfg.domain}" = {
/*
enableACME = false;
forceSSL = true;
sslCertificate = "${pkgs.path}/nixos/tests/common/acme/server/acme.test.cert.pem";
sslCertificateKey = "${pkgs.path}/nixos/tests/common/acme/server/acme.test.key.pem";
*/
root = "/${cfg.root}/public";
locations."/".index = "index.php";
locations."/".tryFiles = "$uri $uri/ /index.php$is_args$args";
locations."~ \.php$".extraConfig = ''
fastcgi_pass unix:${config.services.phpfpm.pools."www".socket};
fastcgi_index index.php;
'';
};
}
(lib.mkIf (cfg.db.connection == "mysql") {
services.mysql.enable = true;
services.mysql.package = pkgs.mysql80;
services.mysql.ensureDatabases = [ "callsys" ];
environment.etc."mysql/init.sql".text = ''
CREATE USER 'homestead'@'localhost' IDENTIFIED BY 'secret';
GRANT ALL ON callsys.* to 'homestead'@'localhost';
'';
services.mysql.initialScript = /etc/mysql/init.sql;
services.mysql.ensureUsers = [
{
name = "vagrant";
ensurePermissions = {
"*.*" = "ALL PRIVILEGES";
};
}
];
})
]);
}
Reference in New Issue View Git Blame Copy Permalink