From 60139ce4267158dbd64a40bbbbba51a8573528db Mon Sep 17 00:00:00 2001
From: Emelie Graven <emelie@graven.dev>
Date: Sat, 18 Dec 2021 12:52:49 +0100
Subject: [PATCH] Remove `mail` host

---
 config/hosts/mail/configuration.nix           |  51 ------------------
 .../data/secrets/mail_noreply_anarkafem_dev   | Bin 84 -> 0 bytes
 config/hosts/mail/data/secrets/secrets.nix    | Bin 243 -> 0 bytes
 config/hosts/mail/data/secrets/ssh_key        | Bin 421 -> 0 bytes
 config/hosts/mail/data/secrets/ssh_key.pub    | Bin 119 -> 0 bytes
 config/hosts/mail/hardware-configuration.nix  |  41 --------------
 config/hosts/mail/services/acme.nix           |   9 ----
 config/hosts/mail/services/mail.nix           |  25 ---------
 config/hosts/mail/services/restic.nix         |  17 ------
 deploy/default.nix                            |   7 ---
 10 files changed, 150 deletions(-)
 delete mode 100644 config/hosts/mail/configuration.nix
 delete mode 100644 config/hosts/mail/data/secrets/mail_noreply_anarkafem_dev
 delete mode 100644 config/hosts/mail/data/secrets/secrets.nix
 delete mode 100644 config/hosts/mail/data/secrets/ssh_key
 delete mode 100644 config/hosts/mail/data/secrets/ssh_key.pub
 delete mode 100644 config/hosts/mail/hardware-configuration.nix
 delete mode 100644 config/hosts/mail/services/acme.nix
 delete mode 100644 config/hosts/mail/services/mail.nix
 delete mode 100644 config/hosts/mail/services/restic.nix

diff --git a/config/hosts/mail/configuration.nix b/config/hosts/mail/configuration.nix
deleted file mode 100644
index 9192dc6..0000000
--- a/config/hosts/mail/configuration.nix
+++ /dev/null
@@ -1,51 +0,0 @@
-{ config, pkgs, lib, ... }:
-
-{
-  imports = [ 
-    ./hardware-configuration.nix 
-    ../../common/services/ssh.nix
-		../../common/users.nix
-    #./services/restic.nix
-    ./services/mail.nix
-    ./services/acme.nix
-    ./data/secrets/secrets.nix
-    ];
-
-  boot.loader.grub.enable = true;
-  boot.loader.grub.version = 2;
-  boot.loader.grub.device = "/dev/sda";
-  boot.supportedFilesystems = ["zfs"];
-  services.zfs.autoSnapshot.enable = true;
-  services.zfs.autoScrub.enable = true;
-
-  networking.hostName = "mail";
-  networking.hostId = "1e04e84b";
-  time.timeZone = "Europe/Copenhagen";
-  networking.useDHCP = false;
-  networking.interfaces.ens3.useDHCP = true;
-  networking.interfaces.ens3.ipv6.addresses = [ { address = "2a01:4f9:c010:624a::1"; prefixLength = 64; } ];
-  networking.defaultGateway6 = { address = "fe80::1"; interface = "ens3"; };
-
-  security.sudo.wheelNeedsPassword = false;
-
-  environment.systemPackages = with pkgs; [
-    vim
-    htop
-    iotop
-    dig
-  ];
-
-  nix = {
-    autoOptimiseStore = true;
-    trustedUsers = [
-      "root"
-      "@wheel"
-    ];
-  };
-
-
-  # Use hetzner firewall instead
-  networking.firewall.enable = false;
-  system.stateVersion = "21.05";
-
-}
diff --git a/config/hosts/mail/data/secrets/mail_noreply_anarkafem_dev b/config/hosts/mail/data/secrets/mail_noreply_anarkafem_dev
deleted file mode 100644
index 8756cf3f2276cbca1636b0229d916d111a4ef795..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 84
zcmV-a0IUB1M@dveQdv+`0Pc^+9MvpI8+w7u_}VvORQCEXyd6s^R3r|E#m7zm6%{5|
q({mqbf9fs_3n8=?qC>WAF6DhdM$fR&*AfD(qWZ?X!Y09eK19IY^(CtS

diff --git a/config/hosts/mail/data/secrets/secrets.nix b/config/hosts/mail/data/secrets/secrets.nix
deleted file mode 100644
index 42a986ca7e734c2dba4a35a5db0f2f1585a871ca..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 243
zcmV<P01W>CM@dveQdv+`00EDG9*xQ4Ei|?UE^C2R24`xN%r~Bx%)*p?9=q~SoaHWS
zH%a?RiE<47tn(Qi<{iuuPK5!mnUCf)Wt4ls^#R4%GLKb*W51&K?Cg3&g`|{XOZ{5-
zR8+5q66_o{d;6GU<S|>>=(EzrJ&u1Dlb{=8G@|r}ywuZ%JL+dYbrVnRUeSkCkB?IT
z-vW@u_mysofI<U~1WB!tvpEDHb#s&Ht~yNoUg2zqq`@gu%utq5<pSjwtwL1&-%9ba
t1{}6SW6svAGr{t&x6(U*#(HA$*XFY%suGzP#w#sCeH1V#?ls}vzwF9Tc~1ZU

diff --git a/config/hosts/mail/data/secrets/ssh_key b/config/hosts/mail/data/secrets/ssh_key
deleted file mode 100644
index d99f226bc12271f176cc53eb8d03e01b2de8dd40..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 421
zcmV;W0b2e5M@dveQdv+`0H><=*~yL<WdfB1T>d0Tz)E!?d}=@aW2PD8v<Dm<pmNPC
z{m6cXd}ww@A2rkqBl##8wg6eT*|Y^yYA4|9&9W}B_y+g|GqP9M_9r@oKf4?x;A5On
zisO?-d_1Wt!lZ!oNj+n)-v5`_!R9k3R)Hx9d4dV|JU*34U1PwIuC!mmJq=EE%5e*Z
zZ7iy8Hh|U)9r;2Xodq9EyV=!q%R$zj6$Iyc$Y`OG;IdzJm~1wZ+r+c>U-T_ewU}9i
z9~Q6}jDRH!jItC7;b#u564}1gBCi$?ar~SZ>f+YQ81f(xRhG_pJxCMC#nDdK&#}f9
zx%p_JaQX|a2Mx7D;$ILmBVFhLUfE{fm!Bk_Lx8x(INdh}p+!oD`+ePj$(RlSSq^@{
zJGcv&@~CclY%?|w#i`sQM6yR`X&*E`_E(IdZy0|V&;}>f)7&@pui+e`dFJD<)Vc0S
z?p|32grd46I4-J{O{MUApSt&5u1%Q48%;NBrN$C4o^;<WMroF2ZjY$F-zDCw+MJXS
P!q#7`<DA*g#<=-V>JH5(

diff --git a/config/hosts/mail/data/secrets/ssh_key.pub b/config/hosts/mail/data/secrets/ssh_key.pub
deleted file mode 100644
index 04225ea49a09a8fa8692a683d04001bd8ff11669..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 119
zcmV--0EqtpM@dveQdv+`0KhLV3(LLCzu{UL`ZY=wx6l`GCfjqD0={-a4R3%4lmA7k
z4BzNr=ze8kSgK5~{aH~1VBiQ!7@%Ts1tq-j8_Pv<+Ez`A*zZu24Yw@J<68{`bugn3
ZH<4nHct7<~;8gL%(u4uSTpKGtOw9_-H3t9y

diff --git a/config/hosts/mail/hardware-configuration.nix b/config/hosts/mail/hardware-configuration.nix
deleted file mode 100644
index 90e8d09..0000000
--- a/config/hosts/mail/hardware-configuration.nix
+++ /dev/null
@@ -1,41 +0,0 @@
-# Do not modify this file!  It was generated by ‘nixos-generate-config’
-# and may be overwritten by future invocations.  Please make changes
-# to /etc/nixos/configuration.nix instead.
-{ config, lib, pkgs, modulesPath, ... }:
-
-{
-  imports =
-    [ (modulesPath + "/profiles/qemu-guest.nix")
-      (modulesPath + "/profiles/minimal.nix")
-    ];
-
-  boot.initrd.availableKernelModules = [ "ata_piix" "virtio_pci" "virtio_scsi" "xhci_pci" "sd_mod" "sr_mod" ];
-  boot.initrd.kernelModules = [ ];
-  boot.kernelModules = [ ];
-  boot.extraModulePackages = [ ];
-
-  fileSystems."/" =
-    { device = "rpool/safe/root";
-      fsType = "zfs";
-    };
-
-  fileSystems."/home" =
-    { device = "rpool/safe/home";
-      fsType = "zfs";
-    };
-
-  fileSystems."/var" =
-    { device = "rpool/safe/var";
-      fsType = "zfs";
-    };
-
-  fileSystems."/nix" =
-    { device = "rpool/local/nix";
-      fsType = "zfs";
-    };
-
-  swapDevices =
-    [ { device = "/dev/disk/by-uuid/9c3c66f5-bf5a-4a2a-88a2-fc2ef312d7ef"; }
-    ];
-
-}
diff --git a/config/hosts/mail/services/acme.nix b/config/hosts/mail/services/acme.nix
deleted file mode 100644
index 62ae467..0000000
--- a/config/hosts/mail/services/acme.nix
+++ /dev/null
@@ -1,9 +0,0 @@
-{ config, ... }:
-
-{
-  security.acme = {
-    acceptTerms = true;
-    email = "admin+certs@graven.dev";
-  };
-}
-
diff --git a/config/hosts/mail/services/mail.nix b/config/hosts/mail/services/mail.nix
deleted file mode 100644
index f6f1184..0000000
--- a/config/hosts/mail/services/mail.nix
+++ /dev/null
@@ -1,25 +0,0 @@
-{ config, ... }:
-
-{
-  imports = [
-    (builtins.fetchTarball {
-      # Pick a commit from the branch you are interested in
-      url = "https://gitlab.com/simple-nixos-mailserver/nixos-mailserver/-/archive/5675b122a947b40e551438df6a623efad19fd2e7/nixos-mailserver-5675b122a947b40e551438df6a623efad19fd2e7.tar.gz";
-      # And set its hash
-      sha256 = "1fwhb7a5v9c98nzhf3dyqf3a5ianqh7k50zizj8v5nmj3blxw4pi";
-    })
-  ];
-
-  mailserver = {
-    enable = true;
-    fqdn = "mail.graven.dev";
-    domains = [ "anarkafem.dev" ];
-
-    loginAccounts = {
-      "noreply@anarkafem.dev" = {
-        hashedPasswordFile = config.secrets.files.mail_noreply_anarkafem_dev.file;
-      };
-    };
-    certificateScheme = 3;
-  };
-}
diff --git a/config/hosts/mail/services/restic.nix b/config/hosts/mail/services/restic.nix
deleted file mode 100644
index 2425166..0000000
--- a/config/hosts/mail/services/restic.nix
+++ /dev/null
@@ -1,17 +0,0 @@
-{ config, ... }:
-
-{
-
-  services.restic.backups = {
-    "mail" = {
-      paths = [ "/var/vmail" ];
-      repository = "sftp:restic@despondos.nao.sh:/etheria/backup/mail/mail";
-      initialize = true;
-      pruneOpts = [ "--keep-daily 7" "--keep-weekly 5" "--keep-monthly 12" "--keep-yearly 75" ];
-      timerConfig = { "OnCalendar" = "02:15"; };
-      extraOptions = [ "sftp.command='ssh restic@despondos.nao.sh -i ${config.secrets.files.ssh_key.file} -s sftp'" ];
-      passwordFile = builtins.toString config.secrets.files.restic_pass.file;
-      user = "virtualMail";
-    };
-  };
-}
diff --git a/deploy/default.nix b/deploy/default.nix
index c91bbbd..ee07e2e 100644
--- a/deploy/default.nix
+++ b/deploy/default.nix
@@ -33,13 +33,6 @@ in import "${sources.nixus}" {} ({ config, ... }: {
       successTimeout = 300;
       ignoreFailingSystemdUnits = true;
     };
-    mail = { lib, config, ... }: {
-      host = "emelie@mail.graven.dev";
-      configuration = ../config/hosts/mail/configuration.nix;
-      switchTimeout = 300;
-      successTimeout = 300;
-      #ignoreFailingSystemdUnits = true;
-    };
   };
 })