moritz/clan
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: add borgbackup for mail

Browse source
This commit is contained in:
Moritz Böhme 2025-05-14 18:46:23 +02:00
parent da695ac9b1
commit 90170ba821
No known key found for this signature in database
GPG key ID: 970C6E89EB0547A9
1 changed files with 36 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

36
machines/moritz-server/mail-server.nix
View file

@ -70,4 +70,40 @@
}; };
services.nginx.virtualHosts."webmail.moritz.foo".enableACME = false; services.nginx.virtualHosts."webmail.moritz.foo".enableACME = false;
services.nginx.virtualHosts."webmail.moritz.foo".useACMEHost = "any.moritz.foo"; services.nginx.virtualHosts."webmail.moritz.foo".useACMEHost = "any.moritz.foo";
services.borgbackup.jobs = {
mailDirectory = {
paths = config.mailserver.mailDirectory;
repo = "u461386-sub1@u461386.your-storagebox.de:mailDirectory";
doInit = true;
encryption = {
mode = "repokey";
passCommand = "cat ${config.clan.core.vars.generators.borg-mail-server.files.password.path}";
};
environment = {BORG_RSH = "ssh -i ${config.clan.core.vars.generators.borg-mail-server.files."ssh.id_ed25519".path} -p 23";};
compression = "auto,zstd";
startAt = "hourly";
persistentTimer = true;
prune.keep = {
within = "1d"; # Keep all archives from the last day
daily = 7;
weekly = 3;
monthly = 3;
};
};
};
clan.core.vars.generators.borg-mail-server = {
prompts.password.persist = true;
files."ssh.id_ed25519" = {};
files."ssh.id_ed25519.pub".secret = false;
runtimeInputs = [
pkgs.coreutils
pkgs.openssh
];
script = ''
ssh-keygen -t ed25519 -N "" -f "$out"/ssh.id_ed25519
'';
};
} }