talexander/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Releases Activity

nixos/postsrsd: expose socketPath via module option

Browse Source 
Services utilising postsrsd need to connect to it via a Unix socket.
While the path to that socket is static as of now, the discoverability
of that path suffers from the lack of module documentation and a
scattered definition of the individual path components over at least
three lines, even when reading the module source.

By exposing the socket path as a readOnly NixOS option, that value shows
up in the options overview and can be re-used in other parts of NixOS
config.
This commit is contained in:
Oliver Schmidt 2025-05-12 09:51:17 +02:00
parent f79b568519
commit 047a804449
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
nixos/modules/services/mail/postsrsd.nix
View File

@ -22,7 +22,7 @@ let
secrets-file = "''${CREDENTIALS_DIRECTORY}/secrets-file" secrets-file = "''${CREDENTIALS_DIRECTORY}/secrets-file"
domains = ${libconfuseDomains} domains = ${libconfuseDomains}
separator = "${cfg.separator}" separator = "${cfg.separator}"
socketmap = "unix:${runtimeDirectory}/socket" socketmap = "unix:${cfg.socketPath}"
# Disable postsrsd's jailing in favor of confinement with systemd. # Disable postsrsd's jailing in favor of confinement with systemd.
unprivileged-user = "" unprivileged-user = ""
@ -93,6 +93,15 @@ in
default = "postsrsd"; default = "postsrsd";
description = "Group for the daemon"; description = "Group for the daemon";
}; };
socketPath = lib.mkOption {
type = lib.types.path;
default = "${runtimeDirectory}/socket";
readOnly = true;
description = ''
Path to the Unix socket for connecting to postsrsd.
Read-only, intended for usage when integrating postsrsd into other NixOS config.'';
};
}; };
}; };