majic-ansible-roles Files · testsite/group

Files @ 70733167cdf8

Branch filter:

Location: majic-ansible-roles/testsite/group_vars/mail.yml

70733167cdf8 1.1 KiB text/x-yaml Show Annotation Show as Raw Download as Raw

branko

MAR-9: Created small utility playbook in testsite for generating the necessary TLS keys and certificates. Updated testsite configuration to be slightly different (no need for separate chain file I think).

---

ldap_client_config:
  - comment: Set the base DN
    option: BASE
    value: "{{ testsite_ldap_base }}"
  - comment: Set the default URI
    option: URI
    value: ldap://ldap.{{ testsite_domain }}/
  - comment: Set the LDAP TLS truststore
    option: TLS_CACERT
    value: /etc/ssl/certs/ca.pem

mail_ldap_url: ldap://ldap.{{ testsite_domain }}/
mail_ldap_tls_truststore: /etc/ssl/certs/ca.pem
mail_ldap_root_dn: "{{ testsite_ldap_base }}"
mail_ldap_postfix_password: postfix
mail_ldap_dovecot_password: dovecot

mail_user: vmail
mail_user_uid: 5000
mail_user_gid: 5000

imap_tls_certificate: "{{ inventory_dir }}/tls/mail.{{ testsite_domain }}_imap.pem"
imap_tls_key: "{{ inventory_dir }}/tls/mail.{{ testsite_domain }}_imap.key"
smtp_tls_certificate: "{{ inventory_dir }}/tls/mail.{{ testsite_domain }}_smtp.pem"
smtp_tls_key: "{{ inventory_dir }}/tls/mail.{{ testsite_domain }}_smtp.key"
imap_folder_separator: /
smtp_rbl:
  - bl.spamcop.net
  - zen.spamhaus.org

mail_postmaster: postmaster@{{ testsite_domain }}

smtp_allow_relay_from:
  - ldap.{{ testsite_domain }}
  - xmpp.{{ testsite_domain }}
  - web.{{ testsite_domain }}