WIP: temmie/userweb: use bro to proxy sendmail requests out of sandbox

2026-05-25 15:51:12 +02:00 · 2026-05-25 13:43:26 +09:00
parent 7429b334ca
commit b5f39c4e8c
4 changed files with 169 additions and 23 deletions
--- a/hosts/temmie/services/userweb/default.nix
+++ b/hosts/temmie/services/userweb/default.nix
@@ -67,21 +67,6 @@ let
    ignoreCollisions = true;
  };

-  sendmailWrapper = pkgs.writeShellApplication {
-    name = "sendmail";
-    runtimeInputs = [ ];
-    text = ''
-      args=("$@")
-
-      if [[ -z "$USERDIR_USER" ]] && [[ "$USERDIR_USER" != "pvv" ]]; then
-          # Prepend -fusername to the argument list, so bounces go to the user
-          args=("-f$USERDIR_USER" "''${args[@]}")
-      fi
-
-      exec '${lib.getExe pkgs.system-sendmail}' "''${args[@]}"
-    '';
-  };
-
  # https://nixos.org/manual/nixpkgs/stable/#sec-building-environment
  fhsEnv = pkgs.buildEnv {
    name = "userweb-env";
@@ -89,7 +74,7 @@ let
    paths = with pkgs; [
      bash

-      sendmailWrapper
+      config.services.bro.instances.userweb-sendmail.client.package

      perlEnv
      pythonEnv