174 lines
3.9 KiB
Nix
174 lines
3.9 KiB
Nix
{
|
|
config,
|
|
pkgs,
|
|
lib,
|
|
...
|
|
}: let
|
|
inherit (lib) types;
|
|
inherit (lib.options) mkEnableOption mkOption mkPackageOption;
|
|
|
|
cfg = config.services.mailserver;
|
|
in {
|
|
options.services.mailserver = {
|
|
enable = mkEnableOption "mailserver";
|
|
|
|
fqdn = mkOption {
|
|
type = types.str;
|
|
description = "domain used for mx records";
|
|
};
|
|
|
|
domains = mkOption {
|
|
type = types.listOf types.str;
|
|
description = "all domains for receiving mail on";
|
|
};
|
|
|
|
debugMode = mkOption {
|
|
type = types.bool;
|
|
default = false;
|
|
description = "enable debug logging on everything";
|
|
};
|
|
|
|
sslConfig = {
|
|
useACME = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
cert = mkOption {
|
|
type = types.str;
|
|
default = "/var/lib/acme/${cfg.fqdn}/fullchain.pem";
|
|
};
|
|
key = mkOption {
|
|
type = types.str;
|
|
default = "/var/lib/acme/${cfg.fqdn}/key.pem";
|
|
};
|
|
};
|
|
|
|
roundcube = {
|
|
enable = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
package = mkPackageOption pkgs "roundcube" {};
|
|
domain = mkOption {
|
|
type = types.str;
|
|
default = "${cfg.fqdn}";
|
|
};
|
|
plugins = mkOption {
|
|
type = types.listOf types.str;
|
|
default = [];
|
|
};
|
|
extraConfig = mkOption {
|
|
type = types.lines;
|
|
default = "";
|
|
};
|
|
forceSSL = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
enableACME = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
};
|
|
|
|
spf = {
|
|
enable = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
policydConfig = mkOption {
|
|
type = types.str;
|
|
default = "";
|
|
};
|
|
};
|
|
|
|
rspamd = {
|
|
enable = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
extraConfig = mkOption {
|
|
type = types.lines;
|
|
default = "";
|
|
};
|
|
redisPort = mkOption {
|
|
type = types.number;
|
|
default = 6380;
|
|
};
|
|
};
|
|
|
|
accounts = mkOption {
|
|
# where attrName = email for login
|
|
default = {};
|
|
type = types.attrsOf (types.submodule {
|
|
options = {
|
|
passwordHashFile = mkOption {
|
|
type = types.str;
|
|
description = ''
|
|
a file containing the hashed password for user, loaded at runtime
|
|
|
|
'';
|
|
};
|
|
aliases = mkOption {
|
|
type = types.listOf types.str;
|
|
default = [];
|
|
description = "a list of aliases for receiving/sending mail";
|
|
};
|
|
sieveScript = mkOption {
|
|
type = types.nullOr types.lines;
|
|
default = null;
|
|
description = "a default sieve script for filtering mail";
|
|
};
|
|
};
|
|
});
|
|
};
|
|
|
|
extraAliasesFile = mkOption {
|
|
type = types.nullOr types.str;
|
|
default = null;
|
|
description = "file containing postfix aliases for receiving, loaded at runtime";
|
|
};
|
|
|
|
sieveDirectory = mkOption {
|
|
type = types.str;
|
|
default = "/var/sieve";
|
|
description = "path used for storing sieve scripts";
|
|
};
|
|
|
|
dkim = {
|
|
enable = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
directory = mkOption {
|
|
type = types.str;
|
|
default = "/var/dkim";
|
|
description = "path used for storing dkim signing keys, make sure to keep this backed up";
|
|
};
|
|
};
|
|
|
|
vmail = {
|
|
user = mkOption {
|
|
type = types.str;
|
|
default = "vmail";
|
|
};
|
|
group = mkOption {
|
|
type = types.str;
|
|
default = "${cfg.vmail.user}";
|
|
};
|
|
userID = mkOption {
|
|
type = types.number;
|
|
default = 5000;
|
|
};
|
|
groupID = mkOption {
|
|
type = types.number;
|
|
default = cfg.vmail.userID;
|
|
};
|
|
directory = mkOption {
|
|
type = types.str;
|
|
default = "/home/${cfg.vmail.user}";
|
|
};
|
|
};
|
|
};
|
|
}
|