From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on dcvr.yhbt.net X-Spam-Level: X-Spam-ASN: AS11403 66.111.4.0/24 X-Spam-Status: No, score=-3.9 required=3.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_LOW,SPF_HELO_PASS, SPF_PASS shortcircuit=no autolearn=ham autolearn_force=no version=3.4.2 Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by dcvr.yhbt.net (Postfix) with ESMTPS id 4274B1F4BD for ; Sun, 6 Oct 2019 09:53:02 +0000 (UTC) Received: from compute7.internal (compute7.nyi.internal [10.202.2.47]) by mailout.nyi.internal (Postfix) with ESMTP id 5A4B720814; Sun, 6 Oct 2019 05:53:01 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute7.internal (MEProxy); Sun, 06 Oct 2019 05:53:01 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alyssa.is; h= from:to:cc:subject:in-reply-to:references:date:message-id :mime-version:content-type; s=fm1; bh=PpSRYqzkmaWWaW1lcWVv3xLlCh f3dzQrQwZcxWjCb3o=; b=Udv+Rg+fnjC7I037kwOMv2f7MBgzC1kCDyc29WqB7X s+nUsTKC59dFKSWEzpYjnfkMYZJnb5wRzLogA1O+D5KOW2i440fb3/ECYLKs44Ln wZ0mhtfjEieO6nIGxKaN1aOc3KZx21TQcW9UbL5WkGf+xi60DXDOVkibfDSXHR5o fzULYTl8T1mHL8RJwdrrIOtRz7v6u1+Y827hrujeZrErOw5AmgQH4H6ApQjMsaWk OFNh0o9PqeGEgfbU8cxJagGT/XmXsYm0Qcbd2dDkgfgi+rOGgxY6Q569h8Xuz/3o BpaQSl/5yV3x1VE5L0xR1DJd9uWSx5KO0aWRvxiEr4Yg== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=PpSRYq zkmaWWaW1lcWVv3xLlChf3dzQrQwZcxWjCb3o=; b=FtNDwmrbrGAupuB81hM6NA 1hDTBLxS5hEhRog467u2N3EADgwHFnEBHol03qy/gziLgQx9Ze+WWKWZesoXBdXc gP2CMHs25cykeVHmJBuV1p5bw0sbqdmjAuwzxPdwL63+tOhStkMAhzFn5rkG39MO lkeJwWVTnbmhiWV57VCRsz1c/RuN9y1I8+UMjsLbgK6jwytd+1LmGfQkgPP7kq4J IJ4/8Jb3Kk8ipwTBHV6OC4vCtFKMr7S3l+glGW3qs67rz8gzP/Ad/csnsJ1iGOXi 1YXgezrW0mFCEj9eifRFr4LgwIfLXS3mjLQj4IRz4NQCy/WS01GYMB9YHNDAdDIQ == X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedrheehgddvvdcutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurhephffvufgjfhffkfggtgesghdtreertd dttdenucfhrhhomheptehlhihsshgrucftohhsshcuoehhihesrghlhihsshgrrdhisheq necukfhppeekgedrudekgedrvddvgedrudehtdenucfrrghrrghmpehmrghilhhfrhhomh ephhhisegrlhihshhsrgdrihhsnecuvehluhhsthgvrhfuihiivgeptd X-ME-Proxy: Received: from localhost (p54b8e096.dip0.t-ipconnect.de [84.184.224.150]) by mail.messagingengine.com (Postfix) with ESMTPA id 7A95B80059; Sun, 6 Oct 2019 05:53:00 -0400 (EDT) From: Alyssa Ross To: Eric Wong Cc: meta@public-inbox.org Subject: Re: public-inbox-init with minimal info In-Reply-To: <20191005195838.nypagsfok24b5odr@dcvr> References: <87bluyhyfi.fsf@alyssa.is> <20191004024559.GA24741@dcvr> <878sq0iwt2.fsf@alyssa.is> <20191005051434.GA23947@dcvr> <87pnjb4a1f.fsf@alyssa.is> <20191005195838.nypagsfok24b5odr@dcvr> Date: Sun, 06 Oct 2019 09:52:55 +0000 Message-ID: <87h84m42vc.fsf@alyssa.is> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature" List-Id: --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable >> I've been using cgit fine with a readonly config for ages, fwiw. > > Is that possible without scan-path/project-list options in cgitrc? > public-inbox has nothing analogous to those options, right now. Yes, because I can generate my cgit configuration file with Nix. Theer's no static config file or anything -- it's generated from the configuration options provided by the user. So, as a user of cgit in NixOS, I can define my repositories, and the paths to them in Nix, and when I "rebuild"[1] my system the cgit configuration file is generated based on that. [1]: conceptually an update, but works by generating a new system configuration without referring to the current one, so it's more like rebuilding from scratch > one systemd service =3D=3D one tor process, right? I haven't looked > too deeply into systemd, though, so maybe there's some way to > add services to an existing tor process... At least in this case, yes, one systemd service =3D=3D one tor process. We don't support more than one, AFAIK. That would have to be done in a container or something. > I tried to make the defaults reasonable, so I don't think any > config is needed outside of what's required to map > inboxes/addresses to directories (which public-inbox-init does) The only one I've really added so far that affects the public-inbox config is whether to enable spam checking or not, but I suspect there might be more. There are also options for things like whether a service should be generated to run public-inbox-httpd, etc. Here's what my configuration looks like so far, using the module I'm writing: services.public-inbox.enable =3D true; # Add spamassassin to the PATH of public-inbox-mda, # public-inbox-watch, etc. services.public-inbox.path =3D with pkgs; [ spamassassin ]; =20=20=20=20 services.public-inbox.mda.spamCheck =3D "spamc"; services.public-inbox.http.mount =3D "/lists/archives/"; services.public-inbox.inboxes =3D { [...] }; As you can see, it's in some ways like just writing a public-inbox configuration file, but it can go beyond that too -- there can be options like services.public-inbox.path that are more of a packaging but that can be delegated to a user (by default, services on NixOS have almost nothing in their PATH to ensure purity). I'm probably not the best person to explain why NixOS modules are good, or the benefits of expressing all system configuration in a single functional programming language, so suffice it to say that doing these things are the fundamental goals of the distribution, and that it works extremely well. --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEH9wgcxqlHM/ARR3h+dvtSFmyccAFAl2ZuXcACgkQ+dvtSFmy ccCEUxAAhnqNbeNqZOBVsFcnWlwJ7z3CQeeRmDAoDH3Xd4jMHHHfgpq/Dge5B9MA 1i6k7cTiBDMC+VvUEBsddHltjPiKlrcKfpLBcnH56Hu+SCA/a5kyLsTPTrkWd5No 9NN5VYqixOku2PYF4B2MjUVEbkKU+FnxmoT1QkwXI5plhhDMfAoYszsOfRoNgj50 tA8T2YGeNrjzG3ZCPNPv9BcyRlhWf/1X5qJ3k20HZ9cxte7Xmc9kve/GXzk0FWqB Z7mW+En3rdfkQvd+e2s1mmXgbT8l9jjntjrzLE1QIJy+wvnyUiUVxpZCRFdQg5MI 8g/Gh3eg3yaLvnJlSzYurgBce40apyqYjZFjO8ikQ97bVeiUhFl6Z77HSFLLM8VR Ykvg9rneUS7LOYDwjPN6oERl+ZT+Huc3dHdT5+Hjk6J2MRZq2e561kQAcrHM+ZH8 dOGo3o4VQWYmkr36SNtckPQYMSwJKbapuUVqGItC67sJlRozZ5s6rkplbnvdX+en h8gD6Xj55npzSurY7XsXTGsTwfdugK8q/XSuQoPpmZJ5E0cjIF96x8Y4ClVPzIr+ xu5XUCb3O1YNdpln/yWPrt9950AmuudVDmBxBk2Sj/Gri9lHBbHELRIMOt0piQnO AlKXMJ+kBvF6c8Jvasi/1wM/JpZsesfjDA1BeX2sATo2ECe44Is= =SGsX -----END PGP SIGNATURE----- --=-=-=--