---

ldap_client_config:
  - comment: Set the base DN
    option: BASE
    value: dc=example,dc=com
  - comment: Set the default URI
    option: URI
    value: ldap://ldap.example.com/
  - comment: Set the LDAP TLS truststore
    option: TLS_CACERT
    value: /etc/ssl/certs/example_ca_chain.pem

mail_ldap_url: ldap://ldap.example.com/
mail_ldap_tls_truststore: /etc/ssl/certs/example_ca_chain.pem
mail_ldap_root_dn: dc=example,dc=com
mail_ldap_postfix_password: postfix
mail_ldap_dovecot_password: dovecot

mail_user: vmail
mail_user_uid: 5000
mail_user_gid: 5000

imap_tls_certificate: "{{ inventory_dir }}/tls/mail.example.com_imap.pem"
imap_tls_key: "{{ inventory_dir }}/tls/mail.example.com_imap.key"
smtp_tls_certificate: "{{ inventory_dir }}/tls/mail.example.com_smtp.pem"
smtp_tls_key: "{{ inventory_dir }}/tls/mail.example.com_smtp.key"
imap_folder_separator: /
smtp_rbl:
  - bl.spamcop.net
  - zen.spamhaus.org

mail_postmaster: postmaster@example.com

smtp_allow_relay_from:
  - ldap.example.com
  - xmpp.example.com
  - web.example.com