thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
522 Commits
1 Branch
Tree: 8b5ed21e38
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8b5ed21e38'
${ noResults }
sovereign/roles/mailserver/tasks/dovecot.yml

dovecot.yml 2.7KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. - name: Add wheezy-backports to get a reasonably current Dovecot on Debian 7

  2.   apt_repository: repo='deb http://http.debian.net/debian wheezy-backports main'

  3.   when: ansible_distribution_release == 'wheezy'

  4. 

  5. - name: Install Dovecot and related packages on Debian 7

  6.   apt: pkg={{ item }} update_cache=yes state=installed default_release=wheezy-backports

  7.   with_items:

  8.     - dovecot-core

  9.     - dovecot-imapd

  10.     - dovecot-lmtpd

  11.     - dovecot-managesieved

  12.     - dovecot-pgsql

  13.     - dovecot-pop3d

  14.   when: ansible_distribution_release == 'wheezy'

  15. 

  16. - name: Install Dovecot and related packages on distributions other than Debian 7

  17.   apt: pkg={{ item }} update_cache=yes state=installed

  18.   with_items:

  19.     - dovecot-core

  20.     - dovecot-imapd

  21.     - dovecot-lmtpd

  22.     - dovecot-managesieved

  23.     - dovecot-pgsql

  24.     - dovecot-pop3d

  25.   when: ansible_distribution_release != 'wheezy'

  26. 

  27. - name: Install Dovecot Postgres dependency for distributions other than Ubuntu Trusty

  28.   apt: pkg={{ item }} state=installed

  29.   with_items:

  30.     - postgresql-9.1

  31.   when: ansible_distribution_release != 'trusty'

  32. 

  33. - name: Install Dovecot Postgres dependency for Ubuntu trusty

  34.   apt: pkg={{ item }} state=installed

  35.   with_items:

  36.     - postgresql-9.3

  37.   when: ansible_distribution_release == 'trusty'

  38. 

  39. - name: Create vmail group

  40.   group: name=vmail state=present gid=5000

  41. 

  42. - name: Create vmail user

  43.   user: name=vmail group=vmail state=present uid=5000 home=/decrypted shell=/usr/sbin/nologin

  44. 

  45. - name: Ensure mail domain directories are in place

  46.   file: state=directory path=/decrypted/{{ item.name }} owner=vmail group=dovecot mode=770

  47.   with_items: mail_virtual_domains

  48. 

  49. - name: Ensure mail directories are in place

  50.   file: state=directory path=/decrypted/{{ item.domain }}/{{ item.account }} owner=vmail group=dovecot

  51.   with_items: mail_virtual_users

  52. 

  53. - name: Copy dovecot.conf into place

  54.   copy: src=etc_dovecot_dovecot.conf dest=/etc/dovecot/dovecot.conf

  55. 

  56. - name: Copy additional Dovecot configuration files in place

  57.   copy: src=etc_dovecot_conf.d_{{ item }} dest=/etc/dovecot/conf.d/{{ item }}

  58.   with_items:

  59.     - 10-auth.conf

  60.     - 10-mail.conf

  61.     - 10-master.conf

  62.     - 10-ssl.conf

  63.     - auth-sql.conf.ext

  64.   notify: restart dovecot

  65. 

  66. - name: Template 15-lda.conf

  67.   template: src=etc_dovecot_conf.d_15-lda.conf.j2 dest=/etc/dovecot/conf.d/15-lda.conf

  68.   notify: restart dovecot

  69. 

  70. - name: Template dovecot-sql.conf.ext

  71.   template: src=etc_dovecot_dovecot-sql.conf.ext.j2 dest=/etc/dovecot/dovecot-sql.conf.ext

  72.   notify: restart dovecot

  73. 

  74. - name: Ensure correct permissions on Dovecot config directory

  75.   file: state=directory path=/etc/dovecot

  76.           group=dovecot owner=vmail mode=770 recurse=yes

  77.   notify: restart dovecot

  78. 

  79. - name: Set firewall rules for dovecot

  80.   ufw: rule=allow port={{ item }} proto=tcp

  81.   with_items:

  82.     - imaps

  83.     - pop3s