2022-03-08 19:42:28 +01:00
<?xml version='1.0' encoding='UTF-8'?>
<rougail version= "0.10" >
<services >
<service name= "postfix" target= "multi-user" >
2023-06-23 08:12:05 +02:00
<override engine= "ansible" />
2023-02-14 14:24:16 +01:00
<certificate authority= "Mail" owner= "postfix" type= "server" domain= "postfix_mail_hostname" provider= "postfix_crt_provider" > postfix</certificate>
<certificate authority= "InternalMail" type= "server" domain= "domain_name_eth" certificate_type= "variable" format= "pem" > domain_name_eth</certificate>
2022-03-08 19:42:28 +01:00
<file engine= "none" source= "sysuser-postfix.conf" > /sysusers.d/1postfix.conf</file>
<file engine= "none" source= "tmpfile-postfix.conf" > /tmpfiles.d/0postfix.conf</file>
2023-06-23 08:12:05 +02:00
<file engine= "ansible" > /etc/postfix/main.cf</file>
<file engine= "ansible" > /etc/postfix/lmtp</file>
<file engine= "ansible" > /etc/postfix/sni</file>
2022-03-08 19:42:28 +01:00
<file engine= "none" > /etc/postfix/master.cf</file>
</service>
<service name= "saslauthd" >
2023-06-23 08:12:05 +02:00
<file engine= "none" > /etc/sasl2/smtpd.conf</file>
2022-03-08 19:42:28 +01:00
</service>
<service name= "opendkim" target= "multi-user" >
<file engine= "none" source= "sysuser-opendkim.conf" > /sysusers.d/0opendkim.conf</file>
2023-06-23 08:12:05 +02:00
<file engine= "none" > /etc/opendkim.conf</file>
<file engine= "ansible" > /etc/opendkim/KeyTable</file>
<file engine= "ansible" > /etc/opendkim/SigningTable</file>
<file engine= "ansible" > /etc/opendkim/TrustedHosts</file>
<file engine= "ansible" file_type= "variable" owner= "opendkim" mode= "400" source= "opendkim.key" variable= "postfix_relay_domains" > opendkim_keys</file>
2022-03-08 19:42:28 +01:00
</service>
<service name= "opendmarc" target= "multi-user" >
<file engine= "none" source= "sysuser-opendmarc.conf" > /sysusers.d/0opendmarc.conf</file>
<file engine= "none" source= "tmpfile-opendmarc.conf" > /tmpfiles.d/0opendmarc.conf</file>
2023-06-23 08:12:05 +02:00
<file engine= "ansible" > /etc/opendmarc.conf</file>
2022-03-08 19:42:28 +01:00
</service>
</services>
<variables >
2022-06-24 19:00:16 +02:00
<family name= "network" >
2023-08-11 09:38:05 +02:00
<variable name= "outgoing_ports" redefine= "True" mandatory= "False" />
2023-06-23 08:12:05 +02:00
<variable name= "incoming_ports" redefine= "True" mandatory= "False" />
2022-06-24 19:00:16 +02:00
</family>
2022-03-08 19:42:28 +01:00
<family name= "postfix" description= "Postfix mail server" >
2023-08-11 09:38:05 +02:00
<variable name= "postfix_mail_hostname" type= "domainname" description= "External email server domain name" help= "This variable is mandatory if mail server needs to interact with external area" mode= "basic" />
<variable name= "postfix_crt_provider" type= "choice" description= "Type of certificate autority signing external certificate" mandatory= "True" mode= "basic" help= "The certificate can be self-signed (therefore invalid by default for the client) or obtained via the Let's Encrypt service (generally valid for the client)" >
2023-08-02 09:26:54 +02:00
<value > self-signed</value>
<choice > self-signed</choice>
2023-02-14 14:24:16 +01:00
<choice > letsencrypt</choice>
</variable>
2023-08-11 09:38:05 +02:00
<variable name= "postfix_relay_domains" type= "domainname" multi= "True" hidden= "True" />
<variable name= 'postfix_relay_authentifications' description= "Create a SMTP relay account and authorize sending email" help= "A service needs send email with SMTP protocol, so an account is created and SMTP relay accept sending mail by this account" multi= "True" provider= "SMTP" hidden= "True" />
<family name= "local_authentification_" dynamic= 'postfix_relay_authentifications' hidden= "True" >
<variable name= "local_authentification_username_" description= "User account to send email for " type= "unix_user" provider= "SMTP:username" />
<variable name= "local_authentification_password_" description= "Password to send email for " type= "secret" provider= "SMTP:password" />
<variable name= "postfix_relay_ip_" type= "ip" />
2022-03-08 19:42:28 +01:00
</family>
</family>
<family name= "opendkim" >
2023-08-11 09:38:05 +02:00
<variable name= "opendkim_keys" type= "filename" multi= "True" hidden= "True" />
2022-03-08 19:42:28 +01:00
</family>
</variables>
<constraints >
<fill name= "calc_value" >
<param > /etc/opendkim/keys/</param>
<param type= "variable" > postfix_relay_domains</param>
<param > .key</param>
<param name= "join" > </param>
<param name= "multi" type= "boolean" > True</param>
<target > opendkim_keys</target>
</fill>
2022-12-25 17:08:52 +01:00
<fill name= "get_ip" >
<param type= "information" > zones</param>
<param type= "suffix" />
<target > postfix_relay_ip_</target>
</fill>
2023-06-23 08:12:05 +02:00
<fill name= "calc_value" >
<param type= "nil" />
<param name= "default" > 25</param>
<param name= "condition" type= "variable" > postfix_mail_hostname</param>
<param name= "expected" type= "nil" />
<param name= "multi" > True</param>
<target > incoming_ports</target>
</fill>
2023-08-11 09:38:05 +02:00
<fill name= "calc_value" >
<param type= "nil" />
<param name= "default" > 25</param>
<param name= "condition" type= "variable" > postfix_mail_hostname</param>
<param name= "expected" type= "nil" />
<param name= "multi" > True</param>
<target > outgoing_ports</target>
</fill>
2022-03-08 19:42:28 +01:00
</constraints>
</rougail>
