Jérémy Lecour
ee21973371
All checks were successful
Ansible Lint |Total|New|Outstanding|Fixed|Trend
|:-:|:-:|:-:|:-:|:-:
|2777|524|2253|2462|:+1:
Reference build: <a href="https://jenkins.evolix.org/job/gitea/job/ansible-roles/job/unstable/223//ansiblelint">Evolix » ansible-roles » unstable #223</a>
gitea/ansible-roles/pipeline/head This commit looks good
Fully Qualified Collection Name
106 lines
2.5 KiB
YAML
106 lines
2.5 KiB
YAML
- name: ensure packages are installed
|
|
ansible.builtin.apt:
|
|
name:
|
|
- dovecot-ldap
|
|
- dovecot-imapd
|
|
- dovecot-pop3d
|
|
- dovecot-sieve
|
|
- dovecot-managesieved
|
|
state: present
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: Generate 4096 bits Diffie-Hellman parameters (may take several minutes)
|
|
community.crypto.openssl_dhparam:
|
|
path: /etc/ssl/dhparams.pem
|
|
size: 4096
|
|
|
|
- name: disable pam auth
|
|
ansible.builtin.replace:
|
|
dest: /etc/dovecot/conf.d/10-auth.conf
|
|
regexp: "[^#]!include auth-system.conf.ext"
|
|
replace: "#!include auth-system.conf.ext"
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: update ldap auth
|
|
ansible.builtin.lineinfile:
|
|
dest: /etc/dovecot/dovecot-ldap.conf.ext
|
|
line: "{{ item.key }} = {{ item.value }}"
|
|
regexp: "^#*{{ item.key }}"
|
|
state: present
|
|
loop:
|
|
- { key: 'hosts', value: '127.0.0.1' }
|
|
- { key: 'auth_bind', value: 'yes' }
|
|
- { key: 'ldap_version', value: 3 }
|
|
- { key: 'base', value: "{{ ldap_suffix }}" }
|
|
- { key: 'user_attrs', value: 'homeDirectory=home' }
|
|
- { key: 'user_filter', value: '(&(isActive=TRUE)(uid=%u))' }
|
|
- { key: 'pass_attrs', value: 'uid=user,userPassword=password' }
|
|
when: ldap_suffix is defined
|
|
notify: reload dovecot
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: create vmail group
|
|
ansible.builtin.group:
|
|
name: vmail
|
|
gid: "{{ dovecot_vmail_gid }}"
|
|
system: True
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: create vmail user
|
|
ansible.builtin.user:
|
|
name: vmail
|
|
group: vmail
|
|
uid: "{{ dovecot_vmail_uid }}"
|
|
shell: /bin/false
|
|
system: True
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: deploy evolix config
|
|
ansible.builtin.template:
|
|
src: z-evolinux-defaults.conf.j2
|
|
dest: /etc/dovecot/conf.d/z-evolinux-defaults.conf
|
|
mode: "0644"
|
|
notify: reload dovecot
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: deploy file for custom configuration
|
|
ansible.builtin.template:
|
|
src: zzz-evolinux-custom.conf.j2
|
|
dest: /etc/dovecot/conf.d/zzz-evolinux-custom.conf
|
|
mode: "0644"
|
|
notify: reload dovecot
|
|
tags:
|
|
- dovecot
|
|
|
|
- ansible.builtin.include: munin.yml
|
|
tags:
|
|
- dovecot
|
|
|
|
- name: log2mail is installed
|
|
ansible.builtin.apt:
|
|
name: log2mail
|
|
state: present
|
|
tags: dovecot
|
|
|
|
- name: dovecot is configured in log2mail
|
|
ansible.builtin.blockinfile:
|
|
path: /etc/log2mail/config/mail.conf
|
|
create: true
|
|
owner: log2mail
|
|
group: adm
|
|
mode: "0640"
|
|
block: |
|
|
file = /var/log/mail.log
|
|
pattern = "Out of memory"
|
|
mailto = {{ log2mail_alert_email or general_alert_email | mandatory }}
|
|
template = /etc/log2mail/mail
|
|
notify: restart log2mail
|
|
tags: dovecot
|
|
|