movefasta/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-06-14 05:29:20 +03:00
Code Issues Projects Releases Packages Wiki Activity

nixos/stalwart-mail: support adding secrets (#380588)

Browse source
This commit is contained in:
Ilan Joselevich 2025-02-23 16:00:01 +07:00 committed by GitHub
commit ddef0335cb
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 16 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

16
nixos/modules/services/mail/stalwart-mail.nix
View file

@ -53,6 +53,21 @@ in
Data directory for stalwart Data directory for stalwart
''; '';
}; };
credentials = lib.mkOption {
description = ''
Credentials envs used to configure Stalwart-Mail secrets.
These secrets can be accessed in configuration values with
the macros such as
`%{file:/run/credentials/stalwart-mail.service/VAR_NAME}%`.
'';
type = lib.types.attrsOf lib.types.str;
default = { };
example = {
user_admin_password = "/run/keys/stalwart_admin_password";
};
};
}; };
config = lib.mkIf cfg.enable { config = lib.mkIf cfg.enable {
@ -149,6 +164,7 @@ in
"" ""
"${cfg.package}/bin/stalwart-mail --config=${configFile}" "${cfg.package}/bin/stalwart-mail --config=${configFile}"
]; ];
LoadCredential = lib.mapAttrsToList (key: value: "${key}:${value}") cfg.credentials;
StandardOutput = "journal"; StandardOutput = "journal";
StandardError = "journal"; StandardError = "journal";