---

dependency: {}

driver:

  name: vagrant

  provider:

    name: virtualbox

lint:

  name: yamllint

  options:

    config-file: ../../.yamllint.yml

platforms:

  # Helpers

  # =======

  - name: mail-server

    groups:

      - mail-servers

      - helper

    memory: 256

    cpus: 1

    provider_raw_config_args:

      - "customize ['modifyvm', :id, '--paravirtprovider', 'minimal']"

    interfaces:

      - auto_config: true

        ip: 192.168.56.11

        network_name: private_network

        type: static

  - name: client1

    groups:

      - clients

      - helper

    memory: 256

    cpus: 1

    provider_raw_config_args:

      - "customize ['modifyvm', :id, '--paravirtprovider', 'minimal']"

    interfaces:

      - auto_config: true

        ip: 192.168.56.12

        network_name: private_network

        type: static

  # Bookworm

  # ========

  - name: parameters-mandatory-bookworm

    groups:

      - parameters-mandatory

    box: debian/bookworm64

    memory: 384

    cpus: 1

    provider_raw_config_args:

      - "customize ['modifyvm', :id, '--paravirtprovider', 'minimal']"

    interfaces:

      - auto_config: true

        ip: 192.168.56.21

        network_name: private_network

        type: static

  - name: parameters-optional-bookworm

    groups:

      - parameters-optional

    box: debian/bookworm64

    memory: 384

    cpus: 1

    provider_raw_config_args:

  become: true

  tasks:

    - name: Update all caches to avoid errors due to missing remote archives

      apt:

        update_cache: true

      changed_when: false

- hosts: all

  become: true

  tasks:

    - name: Set-up the hosts file

      lineinfile:

        path: /etc/hosts

        regexp: "^{{ item.key }}"

        line: "{{ item.key }} {{ item.value }}"

        owner: root

        group: root

        mode: 0644

        state: present

      with_dict:

        192.168.56.11: "mail-server domain1"

        192.168.56.12: "client1"

        192.168.56.21: "parameters-mandatory-bookworm"

        192.168.56.22: "parameters-optional-bookworm"

        192.168.56.23: "parameters-no-incoming-bookworm"

    - name: Install tools for testing

      apt:

        name: gnutls-bin

        state: present

- hosts: clients

  become: true

  tasks:

    - name: Install SWAKS for testing SMTP capability

      apt:

        name: swaks

        state: present

    - name: Install tool for testing TCP connectivity

      apt:

        name: hping3

        state: present

    - name: Deploy CA certificate

# Under Debian, when a file name is specified, the first line of the

# file be used as the SMTP server name.

myorigin = /etc/mailname

# Text shown to connecting clients as part of SMTP greeting.

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)

# Listen on all network interfaces and all protocols.

inet_interfaces = all

inet_protocols = all

# Fall-back to using native lookups (/etc/hosts etc) if DNS lookup

# fails. Useful for local overrides of mail servers.

smtp_host_lookup = dns, native

# Recipient delimeter for separating user name from its extension.

recipient_delimiter = +

# Explicitly set maximum allowed mail size that should be accepted.

message_size_limit = {{ mail_message_size_limit }}

# Disable output of Postfix README file paths when invoking postconf.

readme_directory = no

# Use whitelist/blacklist instead of allowlist/denylist in log

# entries.

respectful_logging = no

# Compatibility level for default values. For more details, see:

#     https://www.postfix.org/COMPATIBILITY_README.html

compatibility_level = 3.6

# Local mailbox delivery

# ======================

# List of domains for local transport deliveries.

mydestination = {{ inventory_hostname }}, {{ inventory_hostname_short }}, localhost.localdomain, localhost

# Alias maps for local deliveries (to system accounts).

alias_maps = hash:/etc/aliases

# Alias database that gets updated when invoking "newaliases" command.

alias_database = hash:/etc/aliases

# Disable size limits for local user mailboxes.

mailbox_size_limit = 0

# Disable use of biff service for new mail notifications to local

# users (improves performance).

biff = no