nixpkgs/pkgs/applications/version-management/gitlab/default.nix

106 lines
2.9 KiB
Nix
Raw Normal View History

2017-07-06 00:53:31 +03:00
{ pkgs, stdenv, lib, bundler, fetchurl, fetchFromGitHub, bundlerEnv, libiconv
2017-09-03 16:38:28 +03:00
, ruby, tzdata, git, procps, dpkg, nettools
2015-01-26 00:01:48 +03:00
}:
/* When updating the Gemfile add `gem "activerecord-nulldb-adapter"`
to allow building the assets without a database */
let
2017-09-03 16:38:28 +03:00
rubyEnv = bundlerEnv {
name = "gitlab-env-${version}";
2015-01-26 00:01:48 +03:00
inherit ruby;
2017-01-18 02:26:30 +03:00
gemdir = ./.;
2015-01-26 00:01:48 +03:00
meta = with lib; {
homepage = http://www.gitlab.com/;
platforms = platforms.linux;
2017-09-03 00:23:09 +03:00
maintainers = with maintainers; [ fpletz globin ];
2015-01-26 00:01:48 +03:00
license = licenses.mit;
};
};
2017-11-04 00:27:58 +03:00
version = "10.1.1";
2017-09-03 16:38:28 +03:00
gitlabDeb = fetchurl {
url = "https://packages.gitlab.com/gitlab/gitlab-ce/packages/debian/jessie/gitlab-ce_${version}-ce.0_amd64.deb/download";
2017-11-04 00:27:58 +03:00
sha256 = "0xvzxcygy6ffqm24rk6v9gs6g9r744vpwwvk9d00wjla7hwmq3w2";
2017-09-03 16:38:28 +03:00
};
2015-01-26 00:01:48 +03:00
in
2015-01-26 00:01:48 +03:00
stdenv.mkDerivation rec {
name = "gitlab-${version}";
buildInputs = [
2017-09-03 16:38:28 +03:00
rubyEnv ruby bundler tzdata git procps dpkg nettools
];
src = fetchFromGitHub {
owner = "gitlabhq";
repo = "gitlabhq";
rev = "v${version}";
2017-11-04 00:27:58 +03:00
sha256 = "0p118msad6l12pd4q3vkvjggiiasbkh6pnl94riqyb5zkb7yrb1a";
2015-10-21 20:48:56 +03:00
};
patches = [
./remove-hardcoded-locations.patch
./nulladapter.patch
2017-09-03 16:38:28 +03:00
./fix-36783.patch
];
postPatch = ''
2015-01-26 00:01:48 +03:00
# For reasons I don't understand "bundle exec" ignores the
# RAILS_ENV causing tests to be executed that fail because we're
# not installing development and test gems above. Deleting the
# tests works though.:
rm lib/tasks/test.rake
2015-10-21 20:48:56 +03:00
rm config/initializers/gitlab_shell_secret_token.rb
substituteInPlace app/controllers/admin/background_jobs_controller.rb \
--replace "ps -U" "${procps}/bin/ps -U"
# required for some gems:
cat > config/database.yml <<EOF
production:
adapter: <%= ENV["GITLAB_DATABASE_ADAPTER"] || sqlite %>
database: gitlab
host: <%= ENV["GITLAB_DATABASE_HOST"] || "127.0.0.1" %>
password: <%= ENV["GITLAB_DATABASE_PASSWORD"] || "blerg" %>
username: gitlab
encoding: utf8
EOF
2015-01-26 00:01:48 +03:00
'';
2015-01-26 00:01:48 +03:00
buildPhase = ''
mv config/gitlab.yml.example config/gitlab.yml
2017-09-03 16:38:28 +03:00
dpkg -x ${gitlabDeb} .
mv -v opt/gitlab/embedded/service/gitlab-rails/public/assets public
rm -rf opt
mv config/gitlab.yml config/gitlab.yml.example
2017-09-03 16:38:28 +03:00
rm -f config/secrets.yml
mv config config.dist
'';
2015-01-26 00:01:48 +03:00
installPhase = ''
rm -r tmp
2015-01-26 00:01:48 +03:00
mkdir -p $out/share
cp -r . $out/share/gitlab
2017-09-03 16:38:28 +03:00
rm -rf $out/share/gitlab/log
ln -sf /run/gitlab/log $out/share/gitlab/log
ln -sf /run/gitlab/uploads $out/share/gitlab/public/uploads
ln -sf /run/gitlab/config $out/share/gitlab/config
ln -sf /run/gitlab/tmp $out/share/gitlab/tmp
# rake tasks to mitigate CVE-2017-0882
# see https://about.gitlab.com/2017/03/20/gitlab-8-dot-17-dot-4-security-release/
cp ${./reset_token.rake} $out/share/gitlab/lib/tasks/reset_token.rake
2015-01-26 00:01:48 +03:00
'';
2015-01-26 00:01:48 +03:00
passthru = {
2017-09-03 16:38:28 +03:00
inherit rubyEnv;
2015-01-26 00:01:48 +03:00
inherit ruby;
};
}