diff options
Diffstat (limited to 'hosts/cloud/hetzner/mail.nix')
| -rw-r--r-- | hosts/cloud/hetzner/mail.nix | 27 |
1 files changed, 17 insertions, 10 deletions
diff --git a/hosts/cloud/hetzner/mail.nix b/hosts/cloud/hetzner/mail.nix index 9ef4de8..4e218e7 100644 --- a/hosts/cloud/hetzner/mail.nix +++ b/hosts/cloud/hetzner/mail.nix @@ -1,8 +1,4 @@ -{ - config, - pkgs, - ... -}: { +{pkgs, ...}: { environment.etc = { "stalwart/mail-pw1".text = "poguo"; "stalwart/mail-pw2".text = "shahezai"; @@ -29,26 +25,37 @@ submissions = { bind = "[::]:465"; protocol = "smtp"; + tls.implicit = true; }; imaps = { bind = "[::]:993"; protocol = "imap"; + tls.implicit = true; }; - jmap = { + http = { bind = "[::]:8888"; url = "https://mail.urbit.cloud"; - protocol = "jmap"; - }; - management = { - bind = ["127.0.0.1:8888"]; protocol = "http"; + use-x-forwarded = true; }; + # management = { + # bind = ["127.0.0.1:8888"]; + # protocol = "http"; + # }; }; }; lookup.default = { hostname = "mail.urbit.cloud"; domain = "urbit.cloud"; }; + acme."letsencrypt" = { + directory = "https://acme-v02.api.letsencrypt.org/directory"; + challenge = "dns-01"; + contact = "postmaster@urbit.cloud"; + domains = ["urbit.cloud" "mail.urbit.cloud"]; + provider = "cloudfare"; + secret = "%{file:/etc/stalwart/acme-secret}"; + }; session.auth = { mechanisms = "[plain]"; directory = "'in-memory'"; |