system-configuration

Julien LepillerMon Mar 25 22:36:37+0100 2019

5cf4d83

Parameterize smtpd service

modules/config/mail.scm

 @yahoo.com.cn
 @qq.com"))
 (define opensmtpd-conf
 (define (opensmtpd-conf interface domain)
   (mixed-text-file "smtpd.conf" "
 # This is the smtpd server system-wide configuration file.
 # See smtpd.conf(5) for more information.
 # My TLS certificate and key
 pki lepiller.eu certificate \"/etc/letsencrypt/live/lepiller.eu/fullchain.pem\"
 pki lepiller.eu key \"/etc/letsencrypt/live/lepiller.eu/privkey.pem\"
 pki lepiller.eu certificate \"/etc/letsencrypt/live/" domain "/fullchain.pem\"
 pki lepiller.eu key \"/etc/letsencrypt/live/" domain "/privkey.pem\"
 # Edit this file to add more virtual users (passwords are read in that file
 # instead of /etc/passwd.
 # port 25 is used only for receiving from external servers, and they may start a
 # TLS session if the want.
 listen on ens18 port 25 tls pki lepiller.eu
 listen on " interface " port 25 tls pki lepiller.eu
 # For sending messages from outside of this server, you need to authenticate and
 # use TLS.
 listen on ens18 port 587 tls-require pki lepiller.eu auth <passwd>
 listen on " interface " port 587 tls-require pki lepiller.eu auth <passwd>
 # On this server, you only need to authenticate on one of the available ports,
 # and you may use TLS.
 listen on lo port 25 tls pki lepiller.eu auth <passwd>
 accept for local alias <aliases> deliver to maildir
 "))
 (define lepiller-imap-service
 (define (lepiller-imap-service domain)
   (service dovecot-service-type
            (dovecot-configuration
 	     (mail-location "maildir:~/Maildir")
 	     (ssl-cert "</etc/letsencrypt/live/lepiller.eu/fullchain.pem")
 	     (ssl-key  "</etc/letsencrypt/live/lepiller.eu/privkey.pem"))))
 	     (ssl-cert (string-append
 			 "</etc/letsencrypt/live/" domain "/fullchain.pem"))
 	     (ssl-key  (string-append
 			 "</etc/letsencrypt/live/" domain "/privkey.pem")))))
 (define lepiller-smtp-service
 (define (lepiller-smtp-service interface domain)
   (service opensmtpd-service-type
 	   (opensmtpd-configuration
 	     (config-file opensmtpd-conf))))
 	     (config-file (opensmtpd-conf interface domain)))))
 (define lepiller-mail-services
 (define* (lepiller-mail-services #:key interface domain)
   (list
     lepiller-smtp-service
     lepiller-imap-service))
     (lepiller-smtp-service interface domain)
     (lepiller-imap-service domain)))

systems/ene.scm

                    (zones (list lepiller-master-zone
                                 ipv4-reverse-master-zone
                                 ipv6-reverse-master-zone))))
         (certbot-service `(("courriel.lepiller.eu")
         (certbot-service `(("courriel.lepiller.eu" "smtp.lepiller.eu")
 			   ("ene.lepiller.eu" "rennes.lepiller.eu")
 			   ("avatar.lepiller.eu")))
 	(cat-avatar-generator-service
 	    (listen '("443 ssl http2" "[::]:443 ssl http2"))))
         (simple-service 'default-http-server nginx-service-type
           (list (nginx-server-configuration
                   (ssl-certificate "/etc/letsencrypt/live/lepiller.eu/fullchain.pem")
                   (ssl-certificate-key "/etc/letsencrypt/live/lepiller.eu/privkey.pem")
                   (ssl-certificate "/etc/letsencrypt/live/ene.lepiller.eu/fullchain.pem")
                   (ssl-certificate-key "/etc/letsencrypt/live/ene.lepiller.eu/privkey.pem")
                   (listen '("443 ssl http2" "[::]:443 ssl http2"))
                   (server-name '(default))(root "/srv/http/default")))))
       lepiller-mail-services
       (lepiller-mail-services
 	#:interface "eth0"
 	#:domain "courriel.lepiller.eu")
       (server-services "ene"))))

systems/hermes.scm

                   (ssl-certificate-key "/etc/letsencrypt/live/lepiller.eu/privkey.pem")
                   (listen '("443 ssl http2" "[::]:443 ssl http2"))
                   (server-name '(default))(root "/srv/http/default")))))
       lepiller-mail-services
       (lepiller-mail-services
 	#:interface "ens18"
 	#:domain "lepiller.eu")
       (server-services "hermes"))))