Maddy: Difference between revisions
imported>Onny Further mail server test links |
imported>Onny m Update on read permissions for certificates |
||
| Line 25: | Line 25: | ||
TLS certificates can be obtained by using services like [[certbot]] or the [[acme]] service. Please reference their documentation on how to configure them to acquire the certificates. | TLS certificates can be obtained by using services like [[certbot]] or the [[acme]] service. Please reference their documentation on how to configure them to acquire the certificates. | ||
In case of using the ''acme'' service, grant the ''maddy'' service read permissions for the certificates by adding it to the corresponding group | |||
{{file|/etc/nixos/configuration.nix|nix|<nowiki> | |||
systemd.services.maddy.serviceConfig.SupplementaryGroups = | |||
[ config.security.acme.certs."example.org".group ]; | |||
</nowiki>}} | |||
For other clients such as ''certbot'', add it to the <code>acme</code> group | |||
{{file|/etc/nixos/configuration.nix|nix|<nowiki> | |||
systemd.services.maddy.serviceConfig.SupplementaryGroups = | |||
[ "acme" ]; | |||
</nowiki>}} | |||
== Configuration == | == Configuration == | ||