Lillian-Violet/NixOS-Config
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Some initial updates to the mail server

Browse source
This commit is contained in:
Lillian Violet 2023-11-25 00:47:00 +01:00
parent cfd0fcf082
commit d2bff65f03
2 changed files with 15 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
nixos/queen/configuration.nix
View file

@ -60,8 +60,8 @@
sops.secrets."nextclouddb".owner = config.users.users.nextcloud.name;
sops.secrets."local.json".mode = "0440";
sops.secrets."local.json".owner = config.users.users.onlyoffice.name;
#sops.secrets."mailpass".mode = "0440";
#sops.secrets."mailpass".owner = config.users.users.virtualMail.name;
sops.secrets."mailpass".mode = "0440";
sops.secrets."mailpass".owner = config.users.users.virtualMail.name;
nix = {
gc = {

14
nixos/queen/mail-server.nix
View file

@ -1,6 +1,7 @@
{
inputs,
outputs,
lib,
config,
pkgs,
...
@ -15,6 +16,8 @@
})
];
users.groups.virtualMail = {};
users.users = {
virtualMail = {
isSystemUser = true;
@ -26,12 +29,21 @@
enable = true;
fqdn = "mail.gladtherescake.eu";
domains = ["nextcloud.gladtherescake.eu"];
mailserver.enableImapSsl = true;
loginAccounts = {
"no-reply@nextcloud.gladtherescake.eu" = {
hashedPasswordFile = config.sops.secrets."mailpass".path;
aliases = ["postmaster@nextcloud.gladtherescake.eu" "abuse@nextcloud.gladtherescake.eu" "security@nextcloud.gladtherescake.eu"];
};
};
forwards = {
"abuse@nextcloud.gladtherescake.eu" = "nextcloud@gladtherescake.eu";
"postmaster@nextcloud.gladtherescake.eu" = "nextcloud@gladtherescake.eu";
};
openFirewall = true;
mailserver.rejectRecipients = ["no-reply@nextcloud.gladtherescake.eu"];
certificateScheme = "acme-nginx";
};
security.acme.acceptTerms = true;
security.acme.defaults.email = "letsencryp@gladtherescake.eu";
}