jet/extremist-software
jet/extremist-software
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: allow stalwart to read agenix secrets

Browse source
This commit is contained in:
Jet Pham 2026-03-09 22:46:49 -07:00
parent 2f04d2601e
commit 9dd83c5b92
No known key found for this signature in database
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
modules/mail.nix
View file

@ -48,7 +48,8 @@
}; };
}; };
# Allow Stalwart to read the ACME certificate procured for Caddy # Allow Stalwart to read the ACME certificate procured for Caddy and the agenix secret
systemd.services.stalwart.serviceConfig.SupplementaryGroups = [ "acme" ]; systemd.services.stalwart.serviceConfig.SupplementaryGroups = [ "acme" ];
systemd.services.stalwart.serviceConfig.ReadOnlyPaths = [ "/run/agenix/stalwart-admin" ];
} }