blob: c4f40a19575a546f1ade7e269bb37a18bd8b21b8 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
|
(define-module (vkraus services copirate-site)
#:use-module ((gnu services)
#:select (service-type
service-extension))
#:use-module ((gnu services web)
#:select (nginx-service-type
nginx-server-configuration
nginx-location-configuration))
#:use-module ((gnu services certbot)
#:select (certbot-service-type
certificate-configuration))
#:use-module ((vkraus services simple-firewall)
#:select (simple-firewall-configuration
simple-firewall-service-type))
#:use-module ((vkraus packages copirate-site)
#:select ((copirate-site . package:copirate-site)))
#:use-module ((guix gexp)
#:select (file-append program-file gexp))
#:use-module ((oop goops)
#:select (define-class
define-method
make
slot-ref
slot-set!
deep-clone))
#:re-export (make)
#:export (<copirate-site-configuration>
copirate-site-service-type)
#:duplicates (merge-generics)
#:declarative? #t)
(define-class <copirate-site-configuration> ()
(domain-name #:init-keyword #:domain-name)
(copirate-site #:init-keyword #:copirate-site
#:init-value package:copirate-site))
(define-method (nginx-extension (cfg <copirate-site-configuration>))
(list
(nginx-server-configuration
(server-name (list (slot-ref cfg 'domain-name)))
(listen '("443 ssl" "[::]:443 ssl"))
(ssl-certificate
(format #f "/etc/letsencrypt/live/~a/fullchain.pem"
(slot-ref cfg 'domain-name)))
(ssl-certificate-key
(format #f "/etc/letsencrypt/live/~a/privkey.pem"
(slot-ref cfg 'domain-name)))
(index '("index.xhtml"))
(root (build-copirate-site (slot-ref cfg 'copirate-source))))))
(define-method (certbot-extension (cfg <copirate-site-configuration>))
(list
(certificate-configuration
(domains (list (slot-ref cfg 'domain-name)))
(deploy-hook
(program-file
"refresh-nginx"
#~(let ((pid (call-with-input-file "/var/run/nginx/pid" read)))
(kill pid SIGHUP)))))))
(define-method (simple-firewall-extension (cfg <copirate-site-configuration>))
(list
(simple-firewall-configuration #f '(http https) '(http https))))
(define copirate-site-service-type
(service-type
(name 'copirate-site)
(description
"Serve the copirate site.")
(extensions
(list
(service-extension nginx-service-type nginx-extension)
(service-extension certbot-service-type certbot-extension)
(service-extension simple-firewall-service-type simple-firewall-extension)))))
|
