python-ci: création utilisateur

Permet d'utiliser un RuntimeDir public
mail-server: configuration postfix serveur relai
2020-01-08 01:29:31 +01:00 · 2020-01-08 01:28:27 +01:00
2 changed files with 18 additions and 1 deletions
--- a/services/mail-server.nix
+++ b/services/mail-server.nix
@ -52,6 +52,15 @@ in
      enableManageSieve = true;
    };

+    services.postfix = {
+      relayHost = "mailvps.nyanlout.re";
+      relayPort = 587;
+      config = {
+        smtp_tls_cert_file = lib.mkForce "/var/lib/postfix/postfixrelay.crt";
+        smtp_tls_key_file = lib.mkForce "/var/lib/postfix/postfixrelay.key";
+      };
+    };
+
    security.acme.certs = {
      "${cfg.domaine}" = {
        extraDomains = {
--- a/services/python-ci.nix
+++ b/services/python-ci.nix
@ -12,6 +12,14 @@ in

  config = mkIf cfg.enable {

+    users.users = {
+      python-ci = {
+        isSystemUser = true;
+        group = "nogroup";
+        description = "Python CI user";
+      };
+    };
+
    systemd.services.python-ci = {
      description = "CI Nix en Python";
      requires = ["network-online.target"];
@ -19,7 +27,7 @@ in
      environment = { HOME = "/var/lib/python-ci"; NIX_PATH = concatStringsSep ":" config.nix.nixPath; NIXPKGS_ALLOW_UNFREE = "1";};
      path = with pkgs;[ nix gnutar gzip ];
      serviceConfig = {
-        DynamicUser = true;
+        User = "python-ci";
        StateDirectory = "python-ci";
        RuntimeDirectory = "python-ci";
        RuntimeDirectoryPreserve = "yes";
Author	SHA1	Message	Date
nyanloutre	72d0802b67	python-ci: création utilisateur Permet d'utiliser un RuntimeDir public	2020-01-08 01:29:31 +01:00
nyanloutre	5a6a41fe2d	mail-server: configuration postfix serveur relai	2020-01-08 01:28:27 +01:00