Merge pull request #22683 from aneeshusa/add-nixos-test-for-radicale
Add nixos test for radicale
This commit is contained in:
Michael Raskin
GitHub
commit
929ae39dbe
@ -57,4 +57,6 @@ in
|
|||||||
serviceConfig.Group = "radicale";
|
serviceConfig.Group = "radicale";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
meta.maintainers = with lib.maintainers; [ aneeshusa ];
|
||||||
}
|
}
|
||||||
|
|||||||
80
nixos/tests/radicale.nix
Normal file
80
nixos/tests/radicale.nix
Normal file
@ -0,0 +1,80 @@
|
|||||||
|
let
|
||||||
|
port = 5232;
|
||||||
|
radicaleOverlay = self: super: {
|
||||||
|
radicale = super.radicale.overrideAttrs (oldAttrs: {
|
||||||
|
propagatedBuildInputs = with self.pythonPackages;
|
||||||
|
(oldAttrs.propagatedBuildInputs or []) ++ [
|
||||||
|
passlib
|
||||||
|
];
|
||||||
|
});
|
||||||
|
};
|
||||||
|
common = { config, pkgs, ...}: {
|
||||||
|
services.radicale = {
|
||||||
|
enable = true;
|
||||||
|
config = let home = config.users.extraUsers.radicale.home; in ''
|
||||||
|
[server]
|
||||||
|
hosts = 127.0.0.1:${builtins.toString port}
|
||||||
|
daemon = False
|
||||||
|
[encoding]
|
||||||
|
[well-known]
|
||||||
|
[auth]
|
||||||
|
type = htpasswd
|
||||||
|
htpasswd_filename = /etc/radicale/htpasswd
|
||||||
|
htpasswd_encryption = bcrypt
|
||||||
|
[git]
|
||||||
|
[rights]
|
||||||
|
[storage]
|
||||||
|
type = filesystem
|
||||||
|
filesystem_folder = ${home}/collections
|
||||||
|
[logging]
|
||||||
|
[headers]
|
||||||
|
'';
|
||||||
|
};
|
||||||
|
# WARNING: DON'T DO THIS IN PRODUCTION!
|
||||||
|
# This puts secrets (albeit hashed) directly into the Nix store for ease of testing.
|
||||||
|
environment.etc."radicale/htpasswd".source = with pkgs; let
|
||||||
|
py = python.withPackages(ps: with ps; [ passlib ]);
|
||||||
|
in runCommand "htpasswd" {} ''
|
||||||
|
${py}/bin/python -c "
|
||||||
|
from passlib.apache import HtpasswdFile
|
||||||
|
ht = HtpasswdFile(
|
||||||
|
'$out',
|
||||||
|
new=True,
|
||||||
|
default_scheme='bcrypt'
|
||||||
|
)
|
||||||
|
ht.set_password('someuser', 'really_secret_password')
|
||||||
|
ht.save()
|
||||||
|
"
|
||||||
|
'';
|
||||||
|
};
|
||||||
|
|
||||||
|
in import ./make-test.nix ({ lib, ... }: {
|
||||||
|
name = "radicale";
|
||||||
|
meta.maintainers = with lib.maintainers; [ aneeshusa ];
|
||||||
|
|
||||||
|
# Test radicale with bcrypt-based htpasswd authentication
|
||||||
|
nodes = {
|
||||||
|
py2 = { config, pkgs, ... }@args: (common args) // {
|
||||||
|
nixpkgs.overlays = [
|
||||||
|
radicaleOverlay
|
||||||
|
];
|
||||||
|
};
|
||||||
|
py3 = { config, pkgs, ... }@args: (common args) // {
|
||||||
|
nixpkgs.overlays = [
|
||||||
|
(self: super: {
|
||||||
|
python = self.python3;
|
||||||
|
pythonPackages = self.python3.pkgs;
|
||||||
|
})
|
||||||
|
radicaleOverlay
|
||||||
|
];
|
||||||
|
};
|
||||||
|
};
|
||||||
|
|
||||||
|
testScript = ''
|
||||||
|
for my $machine ($py2, $py3) {
|
||||||
|
$machine->waitForUnit('radicale.service');
|
||||||
|
$machine->waitForOpenPort(${builtins.toString port});
|
||||||
|
$machine->succeed('curl -s http://someuser:really_secret_password@127.0.0.1:${builtins.toString port}/someuser/calendar.ics/');
|
||||||
|
}
|
||||||
|
'';
|
||||||
|
})
|
||||||
@ -1,5 +1,5 @@
|
|||||||
{ stdenv, buildPythonPackage, isPyPy, fetchurl
|
{ stdenv, buildPythonPackage, isPyPy, fetchurl
|
||||||
, cffi, pycparser, mock, pytest, py }:
|
, cffi, pycparser, mock, pytest, py, six }:
|
||||||
|
|
||||||
with stdenv.lib;
|
with stdenv.lib;
|
||||||
|
|
||||||
@ -12,7 +12,7 @@ buildPythonPackage rec {
|
|||||||
sha256 = "1al54xafv1aharpb22yv5rjjc63fm60z3pn2shbiq48ah9f1fvil";
|
sha256 = "1al54xafv1aharpb22yv5rjjc63fm60z3pn2shbiq48ah9f1fvil";
|
||||||
};
|
};
|
||||||
buildInputs = [ pycparser mock pytest py ];
|
buildInputs = [ pycparser mock pytest py ];
|
||||||
propagatedBuildInputs = optional (!isPyPy) cffi;
|
propagatedBuildInputs = [ six ] ++ optional (!isPyPy) cffi;
|
||||||
|
|
||||||
meta = {
|
meta = {
|
||||||
maintainers = with maintainers; [ domenkozar ];
|
maintainers = with maintainers; [ domenkozar ];
|
||||||
|
|||||||
@ -9,13 +9,13 @@ pythonPackages.buildPythonApplication rec {
|
|||||||
sha256 = "1c5lv8qca21mndkx350wxv34qypqh6gb4rhzms4anr642clq3jg2";
|
sha256 = "1c5lv8qca21mndkx350wxv34qypqh6gb4rhzms4anr642clq3jg2";
|
||||||
};
|
};
|
||||||
|
|
||||||
propagatedBuildInputs = [
|
propagatedBuildInputs = stdenv.lib.optionals (!pythonPackages.isPy3k) [
|
||||||
pythonPackages.flup
|
pythonPackages.flup
|
||||||
pythonPackages.ldap
|
pythonPackages.ldap
|
||||||
pythonPackages.sqlalchemy
|
pythonPackages.sqlalchemy
|
||||||
];
|
];
|
||||||
|
|
||||||
doCheck = true;
|
doCheck = !pythonPackages.isPy3k;
|
||||||
|
|
||||||
meta = with stdenv.lib; {
|
meta = with stdenv.lib; {
|
||||||
homepage = http://www.radicale.org/;
|
homepage = http://www.radicale.org/;
|
||||||
@ -29,6 +29,6 @@ pythonPackages.buildPythonApplication rec {
|
|||||||
'';
|
'';
|
||||||
license = licenses.gpl3Plus;
|
license = licenses.gpl3Plus;
|
||||||
platform = platforms.all;
|
platform = platforms.all;
|
||||||
maintainers = with maintainers; [ edwtjo pSub ];
|
maintainers = with maintainers; [ edwtjo pSub aneeshusa ];
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|||||||
@ -8875,7 +8875,8 @@ in {
|
|||||||
sha256 = "1z27wdxs5rj5xhhqfzvzn3yg682irkxw6dcs5jj7mcf97psk8gd8";
|
sha256 = "1z27wdxs5rj5xhhqfzvzn3yg682irkxw6dcs5jj7mcf97psk8gd8";
|
||||||
};
|
};
|
||||||
|
|
||||||
buildInputs = with self; [ nose pybcrypt];
|
buildInputs = with self; [ nose ];
|
||||||
|
propagatedBuildInputs = with self; [ bcrypt ];
|
||||||
|
|
||||||
meta = {
|
meta = {
|
||||||
description = "A password hashing library for Python";
|
description = "A password hashing library for Python";
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user