forked from input-output-hk/log-classifier
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathlogical.nix
54 lines (44 loc) · 1.32 KB
/
logical.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
{ machine = { config, pkgs, lib, ... }:
{
systemd.services.log-classifier = {
wantedBy = [ "multi-user.target" ];
# first let's copy the important files
preStart =
let projectPath = ./.;
in "ls -la ${projectPath} && cp -R ${projectPath}/tmp-secrets /tmp/ && cp -R ${projectPath}/knowledgebase /tmp/";
script = "${(import ./release.nix).log-classifier-web}/bin/log-classifier-web";
};
# We presume that the AWS has a security group for these.
networking.firewall.allowedTCPPorts = [
80 443 # nginx
#8100 # for testing
];
services.nginx = {
enable = true;
virtualHosts =
let vhostDomainName = "log-classifier.io";
in {
"log-classifier.${vhostDomainName}" = {
#enableACME = true;
#addSSL = true;
locations = {
"/".proxyPass = "http://127.0.0.1:8100";
};
# Otherwise nginx serves files with timestamps unixtime+1 from /nix/store
extraConfig = ''
if_modified_since off;
add_header Last-Modified "";
etag off;
'';
};
};
eventsConfig = ''
worker_connections 1024;
'';
appendConfig = ''
worker_processes 4;
worker_rlimit_nofile 2048;
'';
};
};
}