98 lines
2.2 KiB
YAML
98 lines
2.2 KiB
YAML
---
|
|
version: 1.1
|
|
|
|
network:
|
|
|
|
outgoing_ports:
|
|
redefine: true
|
|
default:
|
|
jinja: >-
|
|
{%- if general.postfix.mail_hostname -%}
|
|
25
|
|
{%- endif -%}
|
|
|
|
incoming_ports:
|
|
redefine: true
|
|
default:
|
|
variable: _.outgoing_ports
|
|
|
|
postfix:
|
|
description: Postfix mail server
|
|
|
|
mail_hostname:
|
|
description: External email server domain name
|
|
help: >-
|
|
This variable is mandatory if mail server needs to interact with external
|
|
area
|
|
mode: basic
|
|
type: domainname
|
|
mandatory: false
|
|
|
|
crt_provider:
|
|
description: Type of certificate autority signing external certificate
|
|
mode: basic
|
|
help: >-
|
|
The certificate can be self-signed (therefore invalid by default for the
|
|
client) or obtained via the Let's Encrypt service (generally valid for
|
|
the client)
|
|
choices:
|
|
- self-signed
|
|
- letsencrypt
|
|
default: self-signed
|
|
|
|
relay_domains:
|
|
type: domainname
|
|
multi: true
|
|
mandatory: false
|
|
hidden: true
|
|
|
|
relay_authentifications:
|
|
description: Create a SMTP relay account and authorize sending email
|
|
help: >-
|
|
A service needs send email with SMTP protocol, so an account is created
|
|
and SMTP relay accept sending mail by this account
|
|
multi: true
|
|
mandatory: false
|
|
hidden: true
|
|
provider: SMTP
|
|
|
|
"local_authentification_{{ suffix }}":
|
|
dynamic:
|
|
variable: _.relay_authentifications
|
|
hidden: true
|
|
|
|
local_authentification_username:
|
|
description: 'User account to send email for {{ suffix }}'
|
|
type: unix_user
|
|
mandatory: false
|
|
provider: SMTP:username
|
|
|
|
local_authentification_password:
|
|
description: 'Password to send email for {{ suffix }}'
|
|
type: secret
|
|
mandatory: false
|
|
provider: SMTP:password
|
|
|
|
relay_ip:
|
|
type: ip
|
|
default:
|
|
jinja: >-
|
|
{{ zones | get_ip(suffix) }}
|
|
params:
|
|
zones:
|
|
information: zones
|
|
suffix:
|
|
type: suffix
|
|
|
|
opendkim:
|
|
|
|
opendkim_keys:
|
|
type: unix_filename
|
|
multi: true
|
|
default:
|
|
jinja: |-
|
|
{%- for domaine in general.postfix.relay_domains %}
|
|
/etc/opendkim/keys/{{ domain }}.key
|
|
{%- endfor -%}
|
|
mandatory: false
|
|
hidden: true
|