wurzel/fruitbasket
9
1
Fork 0
Code Issues 5 Pull requests Packages Projects Releases Wiki Activity

Merge pull request #30 from fsr/mailman

Browse source 
Mailman config
This commit is contained in:
Rouven Seifert 2023-04-24 21:12:15 +02:00 committed by GitHub
parent 8f3e98a934 197e8e6add
commit 5f761825f0
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 37 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
flake.nix
View file

@ -44,6 +44,7 @@
./modules/ldap.nix ./modules/ldap.nix
# ./modules/keycloak.nix replaced by portunus # ./modules/keycloak.nix replaced by portunus
./modules/mail.nix ./modules/mail.nix
./modules/mailman.nix
./modules/nginx.nix ./modules/nginx.nix
./modules/hedgedoc.nix ./modules/hedgedoc.nix
./modules/wiki.nix ./modules/wiki.nix
@ -69,6 +70,8 @@
./modules/ldap.nix ./modules/ldap.nix
# ./modules/keycloak.nix replaced by portunus # ./modules/keycloak.nix replaced by portunus
./modules/nginx.nix ./modules/nginx.nix
./modules/mail.nix
./modules/mailman.nix
./modules/hedgedoc.nix ./modules/hedgedoc.nix
./modules/wiki.nix ./modules/wiki.nix
./modules/stream.nix ./modules/stream.nix

6
modules/mail.nix
View file

@ -41,6 +41,8 @@ in
networks = [ "127.0.0.1" "141.30.30.169" ]; networks = [ "127.0.0.1" "141.30.30.169" ];
sslCert = "/var/lib/acme/${hostname}/fullchain.pem"; sslCert = "/var/lib/acme/${hostname}/fullchain.pem";
sslKey = "/var/lib/acme/${hostname}/key.pem"; sslKey = "/var/lib/acme/${hostname}/key.pem";
relayDomains = [ "hash:/var/lib/mailman/data/postfix_domains" ];
extraAliases = '' extraAliases = ''
# Taken from kaki, maybe we can throw out some at some point # Taken from kaki, maybe we can throw out some at some point
# General redirections for pseudo accounts # General redirections for pseudo accounts
@ -99,7 +101,9 @@ in
smtpd_sasl_auth_enable = true; smtpd_sasl_auth_enable = true;
smtpd_sasl_path = "/var/lib/postfix/auth"; smtpd_sasl_path = "/var/lib/postfix/auth";
smtpd_sasl_type = "dovecot"; smtpd_sasl_type = "dovecot";
# virtual_mailbox_base = "/var/mail"; #mailman stuff
transport_maps = [ "hash:/var/lib/mailman/data/postfix_lmtp" ];
local_recipient_maps = [ "hash:/var/lib/mailman/data/postfix_lmtp" ];
}; };
}; };
dovecot2 = { dovecot2 = {

29
modules/mailman.nix Normal file
View file

@ -0,0 +1,29 @@
{ config, ... }:
{
sops.secrets.mailman_ldap_search = {
key = "portunus_search";
owner = config.services.mailman.webUser;
};
services.mailman = {
enable = true;
serve.enable = true;
webHosts = [ "lists.${config.fsr.domain}" ];
hyperkitty.enable = true;
enablePostfix = true;
siteOwner = "root@${config.fsr.domain}";
ldap = {
enable = true;
serverUri = "ldap://localhost";
bindDn = "uid=search, ou=users, dc=ifsr, dc=de";
bindPasswordFile = config.sops.secrets.mailman_ldap_search.path;
userSearch = {
ou = "ou=users, dc=ifsr, dc=de";
query = "(&(objectClass=posixAccount)(uid=%(user)s))";
};
groupSearch = {
ou = "ou=groups, dc=ifsr, dc=de";
query = "(objectClass=groupOfNames)";
};
};
};
}