#+title: README
#+author: Evie Litherland-Smith
#+email: evie@xenia.me.uk

* Password store setup
** Transfer GPG key(s)
#+begin_src bash
# Export key on existing machine
gpg --export-secret-keys > key.gpg
# Import key on new machine
gpg --import key.gpg
# Edit (for each key) to set trust
gpg --edit-key ...
#+end_src
** Clone password-store repository
#+begin_src bash
git clone https://git.xenia.me.uk/xenia/pass $PASSWORD_STORE_DIR
#+end_src
* Email setup
** Proton
*** Bridge
Docker source: [[https://hub.docker.com/r/shenxn/protonmail-bridge][Docker]] / [[https://github.com/shenxn/protonmail-bridge-docker][GitHub - shenxn/protonmail-bridge-docker: ProtonMail IMAP/SMTP Bridge Docker ...]]

To initialise:
#+begin_src bash
podman kill protonmail-bridge && podman run --rm -it -v protonmail:/root shenxn/protonmail-bridge init
# Restart so that service picks up available ports
podman kill protonmail-bridge
#+end_src
and follow normal login system for cli.
systemd unit handles running container on boot after this.
**** uidvalidity issue
Remove uid lines from .mbsyncrc (in each mail directory) and delete .uidvalidity, re-run mbsync to fix
*** Password
Get password from protonmail-bridge, save to password-store:
#+begin_src bash
  pass insert mbsync/$(hostname)/proton
  # Insert pass at prompt
#+end_src
** iCloud
*** Password
If not already done, save password to password-store:
#+begin_src bash
  pass insert mbsync/$(hostname)/icloud
  # Insert pass at prompt
#+end_src
This will be synced across devices so only needs doing once
** Outlook
*** Password
If not already done, save password to password-store:
#+begin_src bash
  pass insert mbsync/$(hostname)/outlook
  # Insert pass at prompt
#+end_src
This will be synced across devices so only needs doing once
*** Configuration
On first run (or if token expires), stop systemd service and run manually to complete manual auth. Token will stay valid for a little while (no idea how long specifically).
#+begin_src bash
# Restart service to ensure ~/.davmail.properties exists
systemctl --user restart davmail.service
# Run to use manual authentication
systemctl --user stop davmail.service && davmail -notray ~/.davmail.properties
# Restart again so that service picks up available ports
systemctl --user restart davmail.service
#+end_src