Infini-DL360/hydra: attempt to properly set up email

2025-01-19 13:54:31 -05:00 · 2025-01-19 13:54:31 -05:00 · e2f89e5e16
commit e2f89e5e16
parent 7e1efba83f
1 changed files with 10 additions and 6 deletions
--- a/hosts/Infini-DL360/hydra.nix
+++ b/hosts/Infini-DL360/hydra.nix
@ -1,4 +1,4 @@
-{ config, common, secrets, ... }:
+{ config, common, secrets, pkgs, ... }:
 let
  domain = common.subdomain "hydra";
 in
@ -18,20 +18,24 @@ in
    smtpHost = common.email.smtp.address;
    useSubstitutes = true;
    environmentFile = config.secrets.hydra;
-    extraEnv = {
-      EMAIL_SENDER_TRANSPORT_sasl_username = common.email.outgoing;
-      EMAIL_SENDER_TRANSPORT_port = toString common.email.smtp.SSLTLS;
-      EMAIL_SENDER_TRANSPORT_ssl = "ssl";
-    };
    extraConfig = ''
      binary_cache_secret_key_file = ${secrets.binary-cache-private-key}
      allow_import_from_derivation = true
+      email_notification = 1
      <git-input>
        timeout = 3600
      </git-input>
    '';
  };

+  systemd.services.hydra-queue-runner.path = [ pkgs.msmtp ];
+  systemd.services.hydra-server.path = [ pkgs.msmtp ];
+
+  users.users = {
+    hydra.extraGroups = [ "smtp" ];
+    hydra-queue-runner.extraGroups = [ "smtp" ];
+  };
+
  nix.settings.allowed-uris = [
    "github:"
    "git+https://github.com/"