misc_nixos-mailserver/mail-server/dovecot.nix

128 lines
3.4 KiB
Nix
Raw Permalink Normal View History

2016-07-25 15:40:58 +00:00
# nixos-mailserver: a simple mail server
2018-01-29 09:34:27 +00:00
# Copyright (C) 2016-2018 Robin Raymond
2016-07-25 15:40:58 +00:00
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>
2017-09-03 09:13:34 +00:00
{ config, pkgs, lib, ... }:
with (import ./common.nix { inherit config; });
let
2017-09-03 09:13:34 +00:00
cfg = config.mailserver;
# maildir in format "/${domain}/${user}"
dovecot_maildir = "maildir:${cfg.mailDirectory}/%d/%n";
2017-08-12 16:27:22 +00:00
dovecotVersion = builtins.fromJSON
(builtins.readFile (pkgs.callPackage ./dovecot-version.nix {}));
in
2016-07-25 15:40:58 +00:00
{
2017-09-03 09:13:34 +00:00
config = with cfg; lib.mkIf enable {
services.dovecot2 = {
enable = true;
enableImap = enableImap;
enablePop3 = enablePop3;
mailGroup = vmailGroupName;
mailUser = vmailUserName;
mailLocation = dovecot_maildir;
sslServerCert = certificatePath;
sslServerKey = keyPath;
enableLmtp = true;
2017-09-13 10:36:35 +00:00
modules = [ pkgs.dovecot_pigeonhole ];
2017-09-13 11:06:44 +00:00
protocols = [ "sieve" ];
sieveScripts = {
after = builtins.toFile "spam.sieve" ''
require "fileinto";
if header :is "X-Spam" "Yes" {
fileinto "Junk";
stop;
}
'';
2017-09-13 11:06:44 +00:00
};
2017-09-03 09:13:34 +00:00
extraConfig = ''
#Extra Config
2017-11-13 21:46:59 +00:00
${lib.optionalString debug ''
mail_debug = yes
auth_debug = yes
verbose_ssl = yes
''}
2017-09-03 09:13:34 +00:00
mail_access_groups = ${vmailGroupName}
ssl = required
${lib.optionalString (dovecotVersion.major == 2 && dovecotVersion.minor >= 3) ''
ssl_dh = <${certificateDirectory}/dh.pem
''}
2017-09-03 09:13:34 +00:00
service lmtp {
unix_listener /var/lib/postfix/queue/private/dovecot-lmtp {
group = postfix
mode = 0600
user = postfix # TODO: < make variable
}
2017-09-03 09:13:34 +00:00
}
2017-09-13 11:06:44 +00:00
protocol lmtp {
mail_plugins = $mail_plugins sieve
2017-09-13 11:06:44 +00:00
}
2017-09-03 09:13:34 +00:00
service auth {
unix_listener /var/lib/postfix/queue/private/auth {
mode = 0660
user = postfix # TODO: < make variable
group = postfix # TODO: < make variable
}
2017-09-03 09:13:34 +00:00
}
2017-09-03 09:13:34 +00:00
auth_mechanisms = plain login
2017-09-03 09:13:34 +00:00
namespace inbox {
inbox = yes
mailbox "Trash" {
auto = no
special_use = \Trash
}
mailbox "Junk" {
auto = subscribe
special_use = \Junk
}
mailbox "Drafts" {
auto = subscribe
special_use = \Drafts
}
mailbox "Sent" {
auto = subscribe
special_use = \Sent
}
2017-09-03 09:13:34 +00:00
}
plugin {
sieve = file:/var/sieve/%u/scripts;active=/var/sieve/%u/active.sieve
sieve_default = file:/var/sieve/%u/default.sieve
sieve_default_name = default
}
lda_mailbox_autosubscribe = yes
lda_mailbox_autocreate = yes
2017-09-03 09:13:34 +00:00
'';
};
};
2016-07-25 15:40:58 +00:00
}