New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
opendkim: automated key generation (no manual changes for service ini… #29365
Conversation
Nice! I bet someone will be glad to not have to work this out for themselves like I did: https://github.com/eqyiel/deployments/blob/master/realms/tsumugi.rkm.id.au/mail-server.nix#L468-L494 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks! Looks fine but look at my small nitpick.
@@ -57,9 +59,13 @@ in { | |||
''; | |||
}; | |||
|
|||
keyFile = mkOption { | |||
keyPath = mkOption { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We should add a mkRenamedOptionModule
for this change.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
ok, will fix that, thanks for pointing out!
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
fix landed, as you wished.
…tialization required anymore)
0a6885d
to
00dfa11
Compare
@fpletz is the fix sufficient? |
Sorry for the delay. Yeah, that's fine! Thanks! |
Backported to 17.09: b0dba8f |
Thanks @qknight, good stuff, useful. I was previously managing my opendkim key file with NixOps keys, so this change breaks that. I would suggest that the |
Motivation for this change
the
nixcloud.email
abstraction requires some changes and in this case we need to automate opendkim.this PR is related to #29366
Things done
build-use-sandbox
innix.conf
on non-NixOS)nix-shell -p nox --run "nox-review wip"
./result/bin/
)