From bbef4bee2763011af11a14568c4d85c54a73557e Mon Sep 17 00:00:00 2001
From: Florent Daigniere <nextgens@freenetproject.org>
Date: Sun, 7 Nov 2021 12:20:31 +0100
Subject: [PATCH] Don't return any key for relayed domains

We may want to revisit this (ARC signing)... but in the meantime
it saves from a scary message in rspamd

signing failure: cannot request data from the vault url: /internal/rspamd/vault/v1/dkim/ ...
---
 core/admin/mailu/internal/views/rspamd.py | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/core/admin/mailu/internal/views/rspamd.py b/core/admin/mailu/internal/views/rspamd.py
index 8551eb8f..123ec4e2 100644
--- a/core/admin/mailu/internal/views/rspamd.py
+++ b/core/admin/mailu/internal/views/rspamd.py
@@ -14,6 +14,11 @@ def vault_error(*messages, status=404):
 
 @internal.route("/rspamd/vault/v1/dkim/<domain_name>", methods=['GET'])
 def rspamd_dkim_key(domain_name):
+    models.Relay.query.get(domain_name) and return flask.jsonify({
+        'data': {
+            'selectors': []
+        }
+    })
     domain = models.Domain.query.get(domain_name) or flask.abort(vault_error('unknown domain'))
     key = domain.dkim_key or flask.abort(vault_error('no dkim key', status=400))
     return flask.jsonify({