libre.sh/scimserviceprovider
2
0
Fork 0
Code Issues 10 Pull requests Releases 1 Activity Actions
scimserviceprovider/flake.nix
Hugo Renard c4d7b37b6e
Some checks failed
/ build (push) Failing after 5s
Details
/ release (push) Has been skipped
Details
ci: use forgejo & nix
2024-11-29 18:20:00 +01:00

140 lines
4.6 KiB
Nix
Raw Blame History

{
description = "Empty Template";
inputs = {
nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
flake-utils.url = "github:numtide/flake-utils";
};
outputs =
{
nixpkgs,
flake-utils,
...
}:
flake-utils.lib.eachDefaultSystem (
system:
let
pkgs = nixpkgs.legacyPackages.${system};
config = pkgs.writeText "config.php" ''
<?php
$CONFIG = [
'config_is_read_only' => true,
'logfile' => getenv('NEXTCLOUD_DATA_DIR').'/nextcloud.log',
'apps_paths' => [
[
'path'=> '${pkgs.nextcloud28}/apps',
'url' => '/apps',
'writable' => false,
],
[
'path'=> getenv('NEXTCLOUD_DATA_DIR').'/apps',
'url' => '/apps',
'writable' => true,
],
],
];
'';
occ = pkgs.writeShellApplication {
name = "occ";
runtimeInputs = with pkgs; [
nextcloud28
php
];
text = ''
NEXTCLOUD_DATA_DIR="$(mktemp -d)"
export NEXTCLOUD_DATA_DIR="$NEXTCLOUD_DATA_DIR"
export NEXTCLOUD_CONFIG_DIR="$NEXTCLOUD_DATA_DIR/config"
mkdir "$NEXTCLOUD_CONFIG_DIR"
mkdir "$NEXTCLOUD_DATA_DIR/apps"
cp ${config} "$NEXTCLOUD_CONFIG_DIR/config.php"
exec php ${pkgs.nextcloud28}/occ "$@"
'';
};
src = ./.;
version = builtins.readFile (
pkgs.runCommand "version" { } ''
${pkgs.coreutils}/bin/cat ${src}/appinfo/info.xml | ${pkgs.xq-xml}/bin/xq -x "info/version" | ${pkgs.coreutils}/bin/tr -d '\n' > $out
''
);
vendor = pkgs.stdenv.mkDerivation {
pname = "scimserviceprovider-vendor";
inherit src version;
doCheck = false;
dontFixup = true;
nativeBuildInputs = with pkgs; [
cacert
php
php.packages.composer
rsync
];
buildPhase = ''
runHook preBuild
export COMPOSER_MIRROR_PATH_REPOS=1
export COMPOSER_CACHE_DIR=/dev/null
export COMPOSER_HTACCESS_PROTECT=0
composer install --no-interaction --no-dev
runHook postBuild
'';
installPhase = ''
runHook preInstall
mkdir $out
rsync -av --progress vendor/ $out --exclude .git
runHook postInstall
'';
outputHashAlgo = "sha256";
outputHashMode = "recursive";
outputHash = "sha256-fPSCufyPWf1G1XH3NsbuWSbKBBw/AM6j6Vd9lX+6qIQ=";
#outputHash = pkgs.lib.fakeHash;
};
scimserviceprovider = pkgs.stdenv.mkDerivation {
pname = "scimserviceprovider";
inherit src version;
installPhase = ''
runHook preInstall
mkdir $out
cp -r appinfo $out/
cp -r lib $out/
cp LICENSE $out/
ln -sv ${vendor} $out/vendor
runHook postInstall
'';
};
make = pkgs.writeShellApplication {
name = "make";
runtimeInputs = with pkgs; [
coreutils
gnutar
openssl
occ
];
text = ''
SCIMSERVICEPROVIDER_CRT=''\${SCIMSERVICEPROVIDER_CRT:-"$HOME/.nextcloud/certificates/scimserviceprovider.crt"}
SCIMSERVICEPROVIDER_KEY=''\${SCIMSERVICEPROVIDER_KEY:-"$HOME/.nextcloud/certificates/scimserviceprovider.key"}
rm -rf build
mkdir -p build/scimserviceprovider
cd build
cp -Lr --no-preserve=all ${scimserviceprovider}/* scimserviceprovider/
occ integrity:sign-app --privateKey="$SCIMSERVICEPROVIDER_KEY" --certificate="$SCIMSERVICEPROVIDER_CRT" --path="$PWD/scimserviceprovider"
tar czf scimserviceprovider.v${scimserviceprovider.version}.tar.gz scimserviceprovider
openssl dgst -sha512 -sign "$SCIMSERVICEPROVIDER_KEY" "$PWD/scimserviceprovider.v${scimserviceprovider.version}.tar.gz" | openssl base64 > "$PWD/scimserviceprovider.v${scimserviceprovider.version}.tar.gz.sign"
'';
};
in
{
packages.default = scimserviceprovider;
packages.scimserviceprovider = scimserviceprovider;
packages.occ = occ;
packages.make = make;
devShells.default = pkgs.mkShell {
buildInputs = [
occ
make
];
};
}
);
}
Reference in a new issue View git blame Copy permalink