mirror of
https://gitlab.com/simple-nixos-mailserver/nixos-mailserver.git
synced 2025-05-04 17:50:51 +05:00
33 lines
1.3 KiB
Nix
33 lines
1.3 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
let
|
|
cfg = config.mailserver;
|
|
in {
|
|
assertions = lib.optionals cfg.ldap.enable [
|
|
{
|
|
assertion = cfg.loginAccounts == {};
|
|
message = "When the LDAP support is enable (mailserver.ldap.enable = true), it is not possible to define mailserver.loginAccounts";
|
|
}
|
|
{
|
|
assertion = cfg.extraVirtualAliases == {};
|
|
message = "When the LDAP support is enable (mailserver.ldap.enable = true), it is not possible to define mailserver.extraVirtualAliases";
|
|
}
|
|
{
|
|
assertion = cfg.forwards == {};
|
|
message = "When the LDAP support is enable (mailserver.ldap.enable = true), it is not possible to define mailserver.forwards";
|
|
}
|
|
] ++ lib.optionals (cfg.enable && cfg.certificateScheme != "acme") [
|
|
{
|
|
assertion = cfg.acmeCertificateName == cfg.fqdn;
|
|
message = "When the certificate scheme is not 'acme' (mailserver.certificateScheme != \"acme\"), it is not possible to define mailserver.acmeCertificateName";
|
|
}
|
|
] ++ lib.optionals cfg.dkimSigning (
|
|
let
|
|
missingDomains = builtins.filter (d: !(cfg.dkimSelector ? "${d}")) cfg.domains;
|
|
in [
|
|
{
|
|
assertion = missingDomains == [];
|
|
message = "Missing DKIM selector for domains: ${builtins.concatStringsSep ", " missingDomains}";
|
|
}
|
|
]);
|
|
}
|