modules: some refactoring #85
|
@ -40,6 +40,15 @@
|
||||||
superUserGroup = "cn=admins,ou=groups,dc=ifsr,dc=de";
|
superUserGroup = "cn=admins,ou=groups,dc=ifsr,dc=de";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
services.postfix = {
|
||||||
|
relayDomains = [ "hash:/var/lib/mailman/data/postfix_domains" ];
|
||||||
|
config = {
|
||||||
|
mailbox_transport = "lmtp:unix:/run/dovecot2/dovecot-lmtp";
|
||||||
|
transport_maps = [ "hash:/var/lib/mailman/data/postfix_lmtp" ];
|
||||||
|
virtual_alias_maps = [ "hash:/var/lib/mailman/data/postfix_vmap" ];
|
||||||
|
local_recipient_maps = [ "hash:/var/lib/mailman/data/postfix_lmtp" ];
|
||||||
|
};
|
||||||
|
};
|
||||||
services.postgresql = {
|
services.postgresql = {
|
||||||
enable = true;
|
enable = true;
|
||||||
ensureUsers = [
|
ensureUsers = [
|
||||||
|
|
|
@ -37,7 +37,6 @@ in
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
networksStyle = "host"; # localhost and own public IP
|
networksStyle = "host"; # localhost and own public IP
|
||||||
sslCert = "/var/lib/acme/${hostname}/fullchain.pem";
|
sslCert = "/var/lib/acme/${hostname}/fullchain.pem";
|
||||||
sslKey = "/var/lib/acme/${hostname}/key.pem";
|
sslKey = "/var/lib/acme/${hostname}/key.pem";
|
||||||
relayDomains = [ "hash:/var/lib/mailman/data/postfix_domains" ];
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
config = {
|
config = {
|
||||||
home_mailbox = "Maildir/";
|
home_mailbox = "Maildir/";
|
||||||
# 25 MiB
|
# 25 MiB
|
||||||
|
@ -94,12 +93,7 @@ in
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
smtpd_sasl_auth_enable = true;
|
smtpd_sasl_auth_enable = true;
|
||||||
smtpd_sasl_path = "/var/lib/postfix/auth";
|
smtpd_sasl_path = "/var/lib/postfix/auth";
|
||||||
smtpd_sasl_type = "dovecot";
|
smtpd_sasl_type = "dovecot";
|
||||||
#mailman stuff
|
local_recipient_maps = [ "ldap:${config.sops.secrets."postfix_ldap_aliases".path}" "$alias_maps" ];
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
mailbox_transport = "lmtp:unix:/run/dovecot2/dovecot-lmtp";
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
transport_maps = [ "hash:/var/lib/mailman/data/postfix_lmtp" ];
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
virtual_alias_maps = [ "hash:/var/lib/mailman/data/postfix_vmap" ];
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
local_recipient_maps = [ "hash:/var/lib/mailman/data/postfix_lmtp" "ldap:${config.sops.secrets."postfix_ldap_aliases".path}" "$alias_maps" ];
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
|||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately
|
maybe would be nice to move mailman specific postfix config to mailman.nix, so they could be enabled separately