GLiCID/guix-glicid
7
0
Fork 0
mirror of https://gitlab.univ-nantes.fr/glicid-public/guix-glicid.git synced 2025-04-29 13:48:36 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

testing caddy service

Browse source
This commit is contained in:
Jean-François GUILLAUME 2024-10-14 15:25:39 +02:00
parent f472bdf592
commit 7d2afb1b3a
Signed by: Jean-François GUILLAUME
GPG key ID: 38751DAE145EFB5A
1 changed files with 28 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

33
glicid/services/caddy.scm
View file

@ -5,8 +5,21 @@
#:use-module (gnu services shepherd) #:use-module (gnu services shepherd)
#:use-module (guix records) #:use-module (guix records)
#:use-module (gnu system shadow) #:use-module (gnu system shadow)
#:use-module (gnu system privilege)
#:use-module (ice-9 match)
#:use-module (glicid packages caddy)) #:use-module (glicid packages caddy))
(define %caddy-accounts
(list
(user-group (name "caddy")(system? #t))
(user-account
(name "caddy")
(group "caddy")
(system? #t)
(home-directory "/var/lib/caddy")
(shell (file-append bash "/sbin/nologin")))))
(define-record-type* <caddy-configuration> caddy-configuration (define-record-type* <caddy-configuration> caddy-configuration
make-caddy-configuration make-caddy-configuration
caddy-configuration? caddy-configuration?
@ -23,11 +36,14 @@
(requirement '(user-processes)) (requirement '(user-processes))
(start #~(make-forkexec-constructor (list (string-append #$caddy "/sbin/caddy") (start #~(make-forkexec-constructor (list (string-append #$caddy "/sbin/caddy")
"run" "run"
"--config" "-c"
#$config-file) #$config-file)
#:log-file #$log-file #:log-file #$log-file
#:environment-variables (list #:environment-variables (list
"PATH=/run/current-system/profile/bin:/run/current-system/profile/sbin:/run/current-system/profile/libexec"))) (string-append "PATH="
"/run/current-system/profile/bin"
":/run/current-system/profile/sbin"
":/run/current-system/profile/libexec"))))
(stop #~(make-kill-destructor))))) (stop #~(make-kill-destructor)))))
(define caddy-service-type (define caddy-service-type
@ -35,6 +51,13 @@
(name 'caddy) (name 'caddy)
(default-value (caddy-configuration)) (default-value (caddy-configuration))
(extensions (list (extensions (list
;(service-extension activation-service-type (const %caddy-activation)) (service-extension shepherd-root-service-type (compose list caddy-shepherd-service))
(service-extension shepherd-root-service-type (compose list caddy-shepherd-service)))) (service-extension privileged-program-service-type (const (list
(privileged-program
(program (file-append caddy-dirty "/sbin/caddy"))
(capabilities "cap_net_bind_service=+ep")
(user "caddy")
(group "caddy")
))))
))
(description "run caddy web server service"))) (description "run caddy web server service")))