From b9945775e79b2fcdc594c19579a43e33c0df33a4 Mon Sep 17 00:00:00 2001
From: Jeff Carr <jcarr@wit.com>
Date: Sun, 29 Jan 2023 16:10:40 -0600
Subject: [PATCH] more notes on how to get maddy to work

Signed-off-by: Jeff Carr <jcarr@wit.com>
---
 maddy/files/etc/maddy/Makefile | 17 +++++++++++++++++
 maddy/postinst                 |  5 ++++-
 2 files changed, 21 insertions(+), 1 deletion(-)
 create mode 100644 maddy/files/etc/maddy/Makefile

diff --git a/maddy/files/etc/maddy/Makefile b/maddy/files/etc/maddy/Makefile
new file mode 100644
index 0000000..61cc331
--- /dev/null
+++ b/maddy/files/etc/maddy/Makefile
@@ -0,0 +1,17 @@
+.PHONY: certs
+
+all:
+	echo none of this works yet
+
+# ?
+tls:
+	setfacl -R -m u:maddy:rX /etc/ssl/mx1.example.org.crt /etc/ssl/mx1.example.org.key
+	setfacl -R -m u:maddy:rX /etc/letsencrypt/{live,archive}
+
+# git clone https://github.com/acmesh-official/acme.sh.git
+certs:
+	mkdir -p certs/mx1.example.org
+	./acme.sh/acme.sh --force --install-cert -d mx1.example.org \
+		--key-file       certs/mx1.example.org/privkey.pem  \
+		--fullchain-file certs/mx1.example.org/fullchain.pem
+
diff --git a/maddy/postinst b/maddy/postinst
index 1a24852..d417af6 100755
--- a/maddy/postinst
+++ b/maddy/postinst
@@ -1 +1,4 @@
-#!/bin/sh
+#!/bin/sh -x
+
+systemctl daemon-reload
+useradd -mrU -s /sbin/nologin -d /var/lib/maddy -c "maddy mail server" maddy