From cdee59b5a3da03e6956a76f8cc6295ef8dbfa14f Mon Sep 17 00:00:00 2001
From: Gregor Kleen <gkleen@yggdrasil.li>
Date: Tue, 26 Apr 2016 14:11:32 +0200
Subject: first shot at mail setup on ymir

---
 ymir.nix | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)

diff --git a/ymir.nix b/ymir.nix
index e116c654..52e43d3e 100644
--- a/ymir.nix
+++ b/ymir.nix
@@ -289,4 +289,31 @@ in rec {
     enable = true;
     basePath = services.gitolite.dataDir + "/repositories";
   };
+
+  services.postfix = {
+    enable = true;
+    hostname = "ymir.yggdrasil.li";
+    recipientDelimiter = "+";
+    rootAlias = "gkleen";
+    setSendmail = true;
+    destination = ["yggdrasil.li" "ymir.yggdrasil.li" "mail.yggdrasil.li" "praseodym.org" "ymir.praseodym.org" "mail.praseodym.org" "141.li" "ymir.141.li" "mail.141.li" "xmpp.li" "ymir.xmpp.li" "mail.xmpp.li" "dirty-haskell.org" "mail.dirty-haskell.org" "explainuxul.de" "lmu.li" "localhost.yggdrasil.li" "localhost"];
+    sslCert = "";
+    sslKey = "";
+  };
+
+  services.acme = {
+    certs = {
+      "yggdrasil.li" = {
+        webroot = "/srv/www/acme/yggdrasil.li";
+        allowKeysForGroup = true;
+        email = "phikeebaogobaegh@141.li";
+        extraDomains = builtins.listToAttrs (builtins.map (name: { inherit name; value = "/srv/www/acme/${name}"; })
+          ["git.yggdrasil.li" "dirty-haskell.org" "www.dirty-haskell.org" "141.li" "www.141.li" "xmpp.li" "www.xmpp.li" "www.yggdrasil.li" "praseodym.org" "www.praseodym.org" "mail.dirty-haskell.org" "mail.141.li" "mail.xmpp.li" "mail.yggdrasil.li" "mail.praseodym.org"]);
+        postRun = ''
+          systemctl reload nginx.service
+          prosodyctl reload
+        '';
+      };
+    };
+  };
 }
-- 
cgit v1.2.3