5a0ae36c85
This makes the secret contract better (IMNSHO): - Improves documentation, explains better the reasoning behind the contract. - Makes it easier to create an option implementing the secret contract.
130 lines
2.4 KiB
Nix
130 lines
2.4 KiB
Nix
{ pkgs, ... }:
|
|
let
|
|
pkgs' = pkgs;
|
|
|
|
testLib = pkgs.callPackage ../common.nix {};
|
|
|
|
subdomain = "j";
|
|
domain = "example.com";
|
|
|
|
commonTestScript = testLib.accessScript {
|
|
inherit subdomain domain;
|
|
hasSSL = { node, ... }: !(isNull node.config.shb.jellyfin.ssl);
|
|
waitForServices = { ... }: [
|
|
"jellyfin.service"
|
|
"nginx.service"
|
|
];
|
|
waitForPorts = { node, ... }: [
|
|
8096
|
|
];
|
|
};
|
|
|
|
base = testLib.base pkgs' [
|
|
../../modules/services/jellyfin.nix
|
|
];
|
|
|
|
basic = {
|
|
shb.jellyfin = {
|
|
enable = true;
|
|
inherit domain subdomain;
|
|
};
|
|
};
|
|
|
|
https = { config, ... }: {
|
|
shb.jellyfin = {
|
|
ssl = config.shb.certs.certs.selfsigned.n;
|
|
};
|
|
};
|
|
|
|
ldap = { config, ... }: {
|
|
shb.jellyfin = {
|
|
ldap = {
|
|
enable = true;
|
|
host = "127.0.0.1";
|
|
port = config.shb.ldap.ldapPort;
|
|
dcdomain = config.shb.ldap.dcdomain;
|
|
passwordFile = config.shb.ldap.ldapUserPassword.result.path;
|
|
};
|
|
};
|
|
};
|
|
|
|
sso = { config, ... }: {
|
|
shb.jellyfin = {
|
|
sso = {
|
|
enable = true;
|
|
endpoint = "https://${config.shb.authelia.subdomain}.${config.shb.authelia.domain}";
|
|
secretFile = pkgs.writeText "ssoSecretFile" "ssoSecretFile";
|
|
};
|
|
};
|
|
};
|
|
in
|
|
{
|
|
basic = pkgs.testers.runNixOSTest {
|
|
name = "jellyfin_basic";
|
|
|
|
nodes.server = {
|
|
imports = [
|
|
base
|
|
basic
|
|
];
|
|
};
|
|
|
|
nodes.client = {};
|
|
|
|
testScript = commonTestScript;
|
|
};
|
|
|
|
https = pkgs.testers.runNixOSTest {
|
|
name = "jellyfin_https";
|
|
|
|
nodes.server = {
|
|
imports = [
|
|
base
|
|
(testLib.certs domain)
|
|
basic
|
|
https
|
|
];
|
|
};
|
|
|
|
nodes.client = {};
|
|
|
|
testScript = commonTestScript;
|
|
};
|
|
|
|
ldap = pkgs.testers.runNixOSTest {
|
|
name = "jellyfin_ldap";
|
|
|
|
nodes.server = {
|
|
imports = [
|
|
base
|
|
basic
|
|
(testLib.ldap domain pkgs')
|
|
ldap
|
|
];
|
|
};
|
|
|
|
nodes.client = {};
|
|
|
|
testScript = commonTestScript;
|
|
};
|
|
|
|
sso = pkgs.testers.runNixOSTest {
|
|
name = "jellyfin_sso";
|
|
|
|
nodes.server = { config, pkgs, ... }: {
|
|
imports = [
|
|
base
|
|
(testLib.certs domain)
|
|
basic
|
|
https
|
|
(testLib.ldap domain pkgs')
|
|
(testLib.sso domain pkgs' config.shb.certs.certs.selfsigned.n)
|
|
sso
|
|
];
|
|
};
|
|
|
|
nodes.client = {};
|
|
|
|
testScript = commonTestScript;
|
|
};
|
|
}
|