New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
nixos/opendkim: Deprecate configFile in favor of settings option #82379
base: master
Are you sure you want to change the base?
Conversation
9517365
to
476c564
Compare
@@ -91,6 +104,22 @@ in { | |||
|
|||
config = mkIf cfg.enable { | |||
|
|||
services.opendkim.settings = { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can we set a default UMask of 002 here? That way the socket created by the daemon will be accessible by its group (which we also set by default). See #27260
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Sounds good, did that
00524af
to
385030b
Compare
Now tested this successfully, would like to merge soon. @aanderse What do you think about having
Previously I argued that it makes sense to allow |
Also opened a PR for nixos-mailserver to support the changes in this PR: https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/merge_requests/162 |
You raise some valid points. Currently some modules already have a Just a quick idea off the top of my head, but for bonus points modules could add
Or something like that. Maybe that is overboard, though. |
@aanderse The problem with that is: If Okay how about this: There is a
|
That sounds like a good idea 👍 |
@aanderse Though in this case I'd still like to remove the previous |
Hello, I'm a bot and I thank you in the name of the community for your contributions. Nixpkgs is a busy repository, and unfortunately sometimes PRs get left behind for too long. Nevertheless, we'd like to help committers reach the PRs that are still important. This PR has had no activity for 180 days, and so I marked it as stale, but you can rest assured it will never be closed by a non-human. If this is still important to you and you'd like to remove the stale label, we ask that you leave a comment. Your comment can be as simple as "still important to me". But there's a bit more you can do: If you received an approval by an unprivileged maintainer and you are just waiting for a merge, you can @ mention someone with merge permissions and ask them to help. You might be able to find someone relevant by using Git blame on the relevant files, or via GitHub's web interface. You can see if someone's a member of the nixpkgs-committers team, by hovering with the mouse over their username on the web interface, or by searching them directly on the list. If your PR wasn't reviewed at all, it might help to find someone who's perhaps a user of the package or module you are changing, or alternatively, ask once more for a review by the maintainer of the package/module this is about. If you don't know any, you can use Git blame on the relevant files, or GitHub's web interface to find someone who touched the relevant files in the past. If your PR has had reviews and nevertheless got stale, make sure you've responded to all of the reviewer's requests / questions. Usually when PR authors show responsibility and dedication, reviewers (privileged or not) show dedication as well. If you've pushed a change, it's possible the reviewer wasn't notified about your push via email, so you can always officially request them for a review, or just @ mention them and say you've addressed their comments. Lastly, you can always ask for help at our Discourse Forum, or more specifically, at this thread or at #nixos' IRC channel. |
I marked this as stale due to inactivity. → More info |
Motivation for this change
Because #75584 still takes some work and I saw #78126, I decided to implement the
settings
concept from NixOS/rfcs#42 for opendkim. This makes everything much nicer, especially for third-party code like nixos-mailserver (for which I will submit a PR to make it compatible with the changes here).Unfortunately I found no backwards compatible way to keep
configFile
working, so I just removed it, which also simplifies the module a lot, and in addition allows other modules to read values fromsettings
(which wouldn't always be possible with aconfigFile
option).I have yet to test this properly.
Removes the need for #78126 and closes #27260
Ping @aanderse @qknight @abbradar @brprice @Valodim
Things done