1 files changed, 40 insertions, 29 deletions
diff --git a/flakes/private/openarc/flake.nix b/flakes/private/openarc/flake.nix
index fd8ec56..9cc9aed 100644
--- a/flakes/private/openarc/flake.nix
+++ b/flakes/private/openarc/flake.nix
@@ -3,40 +3,51 @@
    path = "../../openarc";
    type = "path";
  };
+  inputs.files-watcher = {
+    path = "../../files-watcher";
+    type = "path";
+  };
+  inputs.my-lib = {
+    path = "../../lib";
+    type = "path";
+  };
  inputs.nix-lib.url = "github:NixOS/nixpkgs";
  description = "Private configuration for openarc";
-  outputs = { self, nix-lib, openarc }:
+  outputs = { self, nix-lib, my-lib, files-watcher, openarc }:
    let
-      cfg = name': { config, lib, pkgs, name, ... }: lib.mkIf (name == name') {
+      cfg = name': { config, lib, pkgs, name, ... }: {
-        services.openarc = {
+        imports = [ (my-lib.lib.withNarKey files-watcher "nixosModule") ];
-          enable = true;
+        config = lib.mkIf (name == name') {
-          user = "opendkim";
+          services.openarc = {
-          socket = "local:${config.myServices.mail.milters.sockets.openarc}";
+            enable = true;
-          group = config.services.postfix.group;
+            user = "opendkim";
-          configFile = pkgs.writeText "openarc.conf" ''
+            socket = "local:${config.myServices.mail.milters.sockets.openarc}";
-            AuthservID              mail.immae.eu
+            group = config.services.postfix.group;
-            Domain                  mail.immae.eu
+            configFile = pkgs.writeText "openarc.conf" ''
-            KeyFile                 ${config.secrets.fullPaths."opendkim/eldiron.private"}
+              AuthservID              mail.immae.eu
-            Mode                    sv
+              Domain                  mail.immae.eu
-            Selector                eldiron
+              KeyFile                 ${config.secrets.fullPaths."opendkim/eldiron.private"}
-            SoftwareHeader          yes
+              Mode                    sv
-            Syslog                  Yes
+              Selector                eldiron
+              SoftwareHeader          yes
+              Syslog                  Yes
+              '';
+          };
+          systemd.services.openarc.serviceConfig.Slice = "mail.slice";
+          systemd.services.openarc.postStart = lib.optionalString
+                (lib.strings.hasPrefix "local:" config.services.openarc.socket) ''
+            while [ ! -S ${lib.strings.removePrefix "local:" config.services.openarc.socket} ]; do
+              sleep 0.5
+            done
+            chmod g+w ${lib.strings.removePrefix "local:" config.services.openarc.socket}
            '';
-        };
+          services.filesWatcher.openarc = {
-        systemd.services.openarc.serviceConfig.Slice = "mail.slice";
+            restart = true;
-        systemd.services.openarc.postStart = lib.optionalString
+            paths = [
-              (lib.strings.hasPrefix "local:" config.services.openarc.socket) ''
+              config.secrets.fullPaths."opendkim/eldiron.private"
-          while [ ! -S ${lib.strings.removePrefix "local:" config.services.openarc.socket} ]; do
+            ];
-            sleep 0.5
+          };
-          done
-          chmod g+w ${lib.strings.removePrefix "local:" config.services.openarc.socket}
-          '';
-        services.filesWatcher.openarc = {
-          restart = true;
-          paths = [
-            config.secrets.fullPaths."opendkim/eldiron.private"
-          ];
        };
      };
    in