pub-solar/infra
6
1
Fork 3
Code Issues 16 Pull requests 7 Actions Packages Projects 1 Releases Wiki Activity

Init mail.pub.solar #196

Merged
teutat3s merged 13 commits from feat/mail into main 2024-05-31 15:22:28 +00:00
Conversation 0 Commits 13 Files changed 30 +767 -30
hensoko commented 2024-05-22 19:49:53 +00:00
Owner
Copy link
No description provided.
hensoko added 1 commit 2024-05-22 19:49:53 +00:00
initial work on mail
Some checks failed
Flake checks / Check (pull_request) Failing after 1m4s
Details
19e21b5b2b
hensoko force-pushed feat/mail from 19e21b5b2b to 75e65a73d1 2024-05-22 19:53:18 +00:00 Compare
hensoko reviewed 2024-05-22 19:57:30 +00:00
lib/deploy.nix Outdated
@ -9,3 +9,3 @@
let
# https://github.com/serokell/deploy-rs#overall-usage
system = "x86_64-linux";
system = "aarch64-linux";
hensoko commented 2024-05-22 19:57:30 +00:00
Author
Owner
Copy link

this needs to be set based on the target host platform

this needs to be set based on the target host platform
teutat3s marked this conversation as resolved
b12f added 1 commit 2024-05-22 20:58:42 +00:00
deploy: use system from host configuration
Some checks failed
Flake checks / Check (pull_request) Failing after 1m36s
Details
85a5a53254
teutat3s added 1 commit 2024-05-23 09:51:23 +00:00
dns: add metronom.pub.solar
Some checks failed
Flake checks / Check (pull_request) Failing after 1m31s
Details
26836f24ba
teutat3s added 3 commits 2024-05-25 15:26:10 +00:00 
DKIM, DMARC, SPF, MX
docs: add metronom to deploy docs, style: format
Some checks failed
Flake checks / Check (pull_request) Failing after 2m14s
Details
98dc6e0e13
teutat3s force-pushed feat/mail from 98dc6e0e13 to d42152ac99 2024-05-26 16:28:36 +00:00 Compare
teutat3s force-pushed feat/mail from d42152ac99 to 82349a77cd 2024-05-27 15:52:03 +00:00 Compare
teutat3s changed title from WIP: initial work on mail to Init mail.pub.solar 2024-05-27 16:04:48 +00:00
teutat3s added 1 commit 2024-05-27 16:05:42 +00:00
style: treefmt
Some checks failed
Flake checks / Check (pull_request) Failing after 2m15s
Details
0624f05cd4
b12f approved these changes 2024-05-27 19:30:45 +00:00
Dismissed
b12f left a comment
Owner
Copy link

Really really cool, thanks for the work :)

Really really cool, thanks for the work :)
flake.nix Outdated
@ -123,2 +126,4 @@
sshUser = username;
};
metronom = {
hostname = "49.13.236.167";
b12f commented 2024-05-27 19:27:13 +00:00
Owner
Copy link

Change this to the wireguard internal address before merge if it's already deployed

Change this to the wireguard internal address before merge if it's already deployed
teutat3s marked this conversation as resolved
hosts/metronom/default.nix Outdated
@ -0,0 +6,4 @@
./configuration.nix
./networking.nix
./mail.nix
b12f commented 2024-05-27 19:26:19 +00:00
Owner
Copy link

This should be in /modules

This should be in `/modules`
teutat3s marked this conversation as resolved
hosts/metronom/mail.nix Outdated
@ -0,0 +16,4 @@
# A list of all login accounts. To create the password hashes, use
# nix-shell -p mkpasswd --run 'mkpasswd -R11 -m bcrypt'
loginAccounts = {
b12f commented 2024-05-27 19:27:50 +00:00
Owner
Copy link

can this still be connected to oidc later?

can this still be connected to oidc later?
teutat3s commented 2024-05-29 08:43:39 +00:00
Owner
Copy link

From what I read on the projects issue tracker, there hasn't been any talk about OIDC / Keycloak / non-declarative account creation yet.

From what I read on [the projects issue tracker](https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/issues), there hasn't been any talk about OIDC / Keycloak / non-declarative account creation yet.
teutat3s marked this conversation as resolved
hosts/metronom/mail.nix Outdated
@ -0,0 +29,4 @@
hashedPasswordFile = config.age.secrets.mail-admins.path;
quota = "2G";
aliases = [
"abuse@pub.solar"
b12f commented 2024-05-27 19:29:16 +00:00
Owner
Copy link

if we connect this to oidc we might want to block all these names in keycloak. It might be better to have all automated emails coming from one address, like no-reply, or from a subdomain like mail.pub.solar or similar

if we connect this to oidc we might want to block all these names in keycloak. It might be better to have all automated emails coming from one address, like `no-reply`, or from a subdomain like `mail.pub.solar` or similar
teutat3s marked this conversation as resolved
hosts/metronom/mail.nix Outdated
@ -0,0 +51,4 @@
quota = "2G";
aliases = [ "moderation@pub.solar" ];
};
"erpnext@pub.solar" = {
b12f commented 2024-05-27 19:30:10 +00:00
Owner
Copy link

is this momo related?

is this momo related?
teutat3s commented 2024-05-29 08:44:43 +00:00
Owner
Copy link

This was setup for the erpnext test and is currently unused, can be dropped if desired. My initial goal was to just move all existing inboxes.

This was setup for the erpnext test and is currently unused, can be dropped if desired. My initial goal was to just move all existing inboxes.
teutat3s marked this conversation as resolved
b12f dismissed b12f's review 2024-05-27 19:52:03 +00:00
teutat3s added 3 commits 2024-05-29 08:45:01 +00:00
metronom: use wireguard IP for SSH, lock down SSH
Some checks failed
Flake checks / Check (pull_request) Failing after 2m36s
Details
4763bb96ce 
port access to wireguard only
teutat3s added 1 commit 2024-05-29 08:50:38 +00:00
docs: updates for metronom / mail
Some checks failed
Flake checks / Check (pull_request) Failing after 1m38s
Details
ee775da219
teutat3s force-pushed feat/mail from ee775da219 to 4cf1a69120 2024-05-29 08:54:29 +00:00 Compare
teutat3s requested review from b12f 2024-05-30 14:34:03 +00:00
teutat3s requested review from axeman 2024-05-30 14:34:03 +00:00
teutat3s approved these changes 2024-05-31 14:48:53 +00:00
teutat3s force-pushed feat/mail from 4cf1a69120 to 8f46e22636 2024-05-31 14:52:13 +00:00 Compare
teutat3s merged commit a10027ed21 into main 2024-05-31 15:22:28 +00:00
teutat3s deleted branch feat/mail 2024-05-31 15:22:28 +00:00
Sign in to join this conversation.
Reviewers
No reviewers
b12f
axeman
teutat3s
Labels
Clear labels   
Bug

   
Docs

   
Feature request

   
Good for newcomers

   
Infra

   
Privacy

   
Refactoring or migration

   
Security
No labels
Bug
Docs
Feature request
Good for newcomers
Infra
Privacy
Refactoring or migration
Security
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
3 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: pub-solar/infra#196
No description provided.
Delete branch "feat/mail"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?