dataset/seed/dovecot/README.md

Table of Contents

• dovecot
• Synopsis
• Basic variables
• General
• Mail configuration
• Mail domain
• Variables for expert
• General
• OpenLDAP directory
• Client
• Requirements services
• Mandatories
• Optionals
• Example
• Dependances
• Useful for service

Return to the list of application services.

dovecot

Synopsis

Postfix and Dovecot as mail servers (IMAP and submission).

This application service provides email server. Two servers are used: Dovecot as IMAP server and Postfix as submission server. In addition, an auto-detection file of the email configuration is set up.

Basic variables

General

Mail configuration

Configure IMAP servers and submission to access email accounts and send emails.

Mail domain

This family is a leadership.

Parameter	Comments
general.mail.domain.mail_domains mandatory, multiple Type: domainname	Final destination email address. These domain names are the domain names for emails (user@example.net) and for auto configuration of email clients (https://example.net/.well-known/autoconfig/mail/config-v1.1.xml). Example: example.net
general.mail.domain.imap_domainname mandatory Type: domainname	External IMAP server address. Matches TLS connection’s SNI name, if it’s sent by the client. For some email clients, use in DNS configuration a line like "_submissions._tcp IN SRV 1 587 imap.example.net.". Example: imap.example.net
general.mail.domain.submission_domainname mandatory Type: domainname	External submission server address. Matches TLS connection’s SNI name, if it’s sent by the client. For some email clients, add in DNS configuration a line like "_imaps._tcp IN SRV 0 1 993 submission.example.net.". Example: submission.example.net

Parameter	Comments
general.mail.mail_crt_provider mandatory Type: choice	Type of certificate autority signing external IMAP and submission domain certificates. The certificate can be self-signed (therefore invalid by default for the client) or obtained via the Let's Encrypt service (generally valid for the client). Choices: - self-signed ← default - letsencrypt

Variables for expert

General

OpenLDAP directory

Client

Parameter	Comments
general.ldap.client.ldapclient_family mandatory Type: unix_user	Restrict service configuration for a LDAP family. "all" for all families. Default: all

Requirements services

Mandatories

• LocalDNS: nsd-local
• SMTP: postfix-relay
• LDAP: openldap
• ReverseProxy: nginx-reverse-proxy
• OAuth2: lemonldap

Optionals

• Journald: vector

bold: provider is mandatory

Example

Zone names are provided as examples. Think about adapting with the value of provider_zone in configuration file.

dovecot:
  applicationservice: dovecot
  provider_zone: imap
  zones_name:
    - ldap
    - localdns
    - oauth2
    - reverseproxy
    - smtp
  values:
    general.mail.domain.mail_domains:
      - example.net
    general.mail.domain.imap_domainname:
      '0': imap.example.net
    general.mail.domain.submission_domainname:
      '0': submission.example.net

Dependances

• base-fedora-36
  • base-fedora
    • systemd
      • base-machine
        • base
        • dns-local
        • pki-tls
      • journald
      • resolved
• relay-lmtp-client
  • relay-mail-client
• ldap-client
• oauth2-client
• nginx-https
  • nginx-common
  • reverse-proxy-client

Useful for service

roundcube: Roundcube, a webmail.