Add Solr full text search
This commit is contained in:
parent
1b1155946a
commit
5566a6c099
68
dovecot.nix
68
dovecot.nix
@ -157,6 +157,17 @@ in {
|
|||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
solr = {
|
||||||
|
host = mkOption {
|
||||||
|
type = str;
|
||||||
|
description = "Host providing full-text search with Solr.";
|
||||||
|
};
|
||||||
|
port = mkOption {
|
||||||
|
type = port;
|
||||||
|
description = "Port on which Solr is listening.";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
|
||||||
max-user-connections = mkOption {
|
max-user-connections = mkOption {
|
||||||
type = int;
|
type = int;
|
||||||
description = "Maximum allowed simultaneous connections by one user.";
|
description = "Maximum allowed simultaneous connections by one user.";
|
||||||
@ -201,7 +212,51 @@ in {
|
|||||||
"d ${cfg.state-directory}/sieves 0750 ${config.services.dovecot2.user} ${config.services.dovecot2.group} - -"
|
"d ${cfg.state-directory}/sieves 0750 ${config.services.dovecot2.user} ${config.services.dovecot2.group} - -"
|
||||||
];
|
];
|
||||||
|
|
||||||
services = {
|
timers = {
|
||||||
|
solr-commit = {
|
||||||
|
wantedBy = [ "timers.target" "dovecot2.service" ];
|
||||||
|
timerConfig = {
|
||||||
|
OnBootSec = "5m";
|
||||||
|
OnUnitActiveSec = "5m";
|
||||||
|
Unit = "solr-commit.service";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
solr-optimize = {
|
||||||
|
wantedBy = [ "timers.target" "dovecot2.service" ];
|
||||||
|
timerConfig = {
|
||||||
|
OnBootSec = "5m";
|
||||||
|
OnUnitActiveSec = "5m";
|
||||||
|
Unit = "solr-optimize.service";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
|
||||||
|
services = let
|
||||||
|
solrJob = params: {
|
||||||
|
requires = [ "dovecot2.service" ];
|
||||||
|
path = with pkgs; [ curl ];
|
||||||
|
serviceConfig = {
|
||||||
|
DynamicUser = true;
|
||||||
|
ExecStart =
|
||||||
|
"curl http://${cfg.solr.host}:${cfg.solr.port}/solr/dovecot/update?${params}";
|
||||||
|
PrivateDevices = true;
|
||||||
|
PrivateTmp = true;
|
||||||
|
PrivateMounts = true;
|
||||||
|
ProtectControlGroups = true;
|
||||||
|
ProtectKernelTunables = true;
|
||||||
|
ProtectKernelModules = true;
|
||||||
|
ProtectSystem = true;
|
||||||
|
ProtectHome = true;
|
||||||
|
ProtectClock = true;
|
||||||
|
ProtectKernelLogs = true;
|
||||||
|
Type = "oneshot";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
in {
|
||||||
|
solr-commit = solrJob "commit=true";
|
||||||
|
|
||||||
|
solr-optimize = solrJob "optimize=true";
|
||||||
|
|
||||||
prometheus-dovecot-exporter = {
|
prometheus-dovecot-exporter = {
|
||||||
requires = [ "dovecot2.service" ];
|
requires = [ "dovecot2.service" ];
|
||||||
after = [ "dovecot2.service" ];
|
after = [ "dovecot2.service" ];
|
||||||
@ -247,6 +302,10 @@ in {
|
|||||||
Type = "oneshot";
|
Type = "oneshot";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
solr-commit = {
|
||||||
|
|
||||||
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
@ -315,7 +374,7 @@ in {
|
|||||||
in ''
|
in ''
|
||||||
## Extra Config
|
## Extra Config
|
||||||
|
|
||||||
mail_plugins = $mail_plugins
|
mail_plugins = $mail_plugins fts fts_solr
|
||||||
|
|
||||||
${lib.optionalString cfg.debug ''
|
${lib.optionalString cfg.debug ''
|
||||||
mail_debug = yes
|
mail_debug = yes
|
||||||
@ -332,6 +391,11 @@ in {
|
|||||||
mail_plugins = $mail_plugins sieve
|
mail_plugins = $mail_plugins sieve
|
||||||
}
|
}
|
||||||
|
|
||||||
|
plugin {
|
||||||
|
fts = solr
|
||||||
|
fts_solr = url=http://${cfg.solr.host}:${cfg.solr.port}/solr/dovecot
|
||||||
|
}
|
||||||
|
|
||||||
mail_access_groups = ${cfg.mail-group}
|
mail_access_groups = ${cfg.mail-group}
|
||||||
|
|
||||||
# When looking up usernames, just use the name, not the full address
|
# When looking up usernames, just use the name, not the full address
|
||||||
|
|||||||
@ -253,6 +253,7 @@ in {
|
|||||||
authPort = 5447;
|
authPort = 5447;
|
||||||
userdbPort = 5448;
|
userdbPort = 5448;
|
||||||
dkimPort = 5734;
|
dkimPort = 5734;
|
||||||
|
solrPort = 8983;
|
||||||
|
|
||||||
in {
|
in {
|
||||||
smtp = {
|
smtp = {
|
||||||
@ -263,6 +264,8 @@ in {
|
|||||||
"external_network"
|
"external_network"
|
||||||
# For auth lookups
|
# For auth lookups
|
||||||
"ldap_network"
|
"ldap_network"
|
||||||
|
# For full text search
|
||||||
|
"solr_network"
|
||||||
];
|
];
|
||||||
volumes = [
|
volumes = [
|
||||||
"${hostSecrets.dovecotLdapConfig.target-file}:/run/dovecot2/conf.d/ldap.conf:ro"
|
"${hostSecrets.dovecotLdapConfig.target-file}:/run/dovecot2/conf.d/ldap.conf:ro"
|
||||||
@ -322,8 +325,12 @@ in {
|
|||||||
};
|
};
|
||||||
imap = {
|
imap = {
|
||||||
service = {
|
service = {
|
||||||
networks =
|
networks = [
|
||||||
[ "internal_network" "external_network" "ldap_network" ];
|
"internal_network"
|
||||||
|
"external_network"
|
||||||
|
"ldap_network"
|
||||||
|
"solr_network"
|
||||||
|
];
|
||||||
ports = [ "143:143" "993:993" ];
|
ports = [ "143:143" "993:993" ];
|
||||||
volumes = [
|
volumes = [
|
||||||
"${cfg.state-directory}/dovecot:/state"
|
"${cfg.state-directory}/dovecot:/state"
|
||||||
@ -361,6 +368,10 @@ in {
|
|||||||
host = "antispam";
|
host = "antispam";
|
||||||
port = antispamPort;
|
port = antispamPort;
|
||||||
};
|
};
|
||||||
|
solr = {
|
||||||
|
host = "solr";
|
||||||
|
port = solrPort;
|
||||||
|
};
|
||||||
ldap-conf = "/run/dovecot2/conf.d/ldap.conf";
|
ldap-conf = "/run/dovecot2/conf.d/ldap.conf";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
@ -376,6 +387,12 @@ in {
|
|||||||
];
|
];
|
||||||
env_file = [ hostSecrets.mailLdapProxyEnv.target-file ];
|
env_file = [ hostSecrets.mailLdapProxyEnv.target-file ];
|
||||||
};
|
};
|
||||||
|
solr.service = {
|
||||||
|
image = cfg.images.solr;
|
||||||
|
restart = "always";
|
||||||
|
networks = [ "solr_network" ];
|
||||||
|
volumes = [ "${cfg.state-directory}/solr:/opt/solr/server/solr" ];
|
||||||
|
};
|
||||||
antispam = {
|
antispam = {
|
||||||
service = {
|
service = {
|
||||||
networks = [
|
networks = [
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user