Squash merge feat/mail-server into main

2025-07-14 16:18:20 +08:00 · 2025-07-14 16:18:20 +08:00 · 06bcfe62ff
commit 06bcfe62ff
parent 14f4243aee
21 changed files with 973 additions and 67 deletions
--- a/system/dev/dn-pre7780/default.nix
+++ b/system/dev/dn-pre7780/default.nix
@ -1,6 +1,7 @@
 {
  pkgs,
  settings,
+  config,
  ...
 }:
 {
@ -14,6 +15,7 @@
    ./boot.nix
    ./sops-conf.nix
    # ./nginx.nix
+    ../../modules/certbot.nix
    ../../modules/presets/basic.nix
    ../../modules/gaming.nix
    ../../modules/secure-boot.nix
@ -26,8 +28,28 @@
    #   datadir = "/mnt/nextcloud";
    #   https = false;
    # })
+    ../../modules/mail-server
  ];

+  mail-server = {
+    enable = true;
+    mailDir = "~/Maildir";
+    virtualMailDir = "/var/mail/vhosts";
+    domain = "vmail.net.dn";
+    networks = [
+      "127.0.0.0/8"
+      "10.0.0.0/24"
+    ];
+    openFirewall = true;
+    sslKey = "/etc/letsencrypt/live/vmail.net.dn/privkey.pem";
+    sslCert = "/etc/letsencrypt/live/vmail.net.dn/fullchain.pem";
+    dovecot.ldapFile = config.sops.secrets."dovecot/openldap".path;
+    openldap = {
+      passwordFile = config.sops.secrets."openldap/adminPassword".path;
+      enableWebUI = true;
+    };
+  };
+
  home-manager = {
    users."${settings.personal.username}" = {
      imports = [
@ -46,10 +68,13 @@
  ];

  users.users = {
-    "${settings.personal.username}".openssh.authorizedKeys.keys = [
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJFQA42R3fZmjb9QnUgzzOTIXQBC+D2ravE/ZLvdjoOQ danny@lap.dn"
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILSHkPa6vmr5WBPXAazY16+Ph1Mqv9E24uLIf32oC2oH danny@phone.dn"
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMj/LeB3i/vca3YwGNpAjf922FgiY2svro48fUSQAjOv Shortcuts on :D"
-    ];
+    "${settings.personal.username}" = {
+      openssh.authorizedKeys.keys = [
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJFQA42R3fZmjb9QnUgzzOTIXQBC+D2ravE/ZLvdjoOQ danny@lap.dn"
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILSHkPa6vmr5WBPXAazY16+Ph1Mqv9E24uLIf32oC2oH danny@phone.dn"
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMj/LeB3i/vca3YwGNpAjf922FgiY2svro48fUSQAjOv Shortcuts on :D"
+      ];
+    };
  };
+
 }