Source: postfix.cf
This bundle will check and configure postfix for Debian and CentOS. The following files will be generated from mustache templates:
- /etc/aliases
- /etc/postfix/main.cf
- /etc/postfix/master.cf
- /etc/postfix/dynamicmaps.cf
- /etc/postfix/recipient_canonical
- /etc/postfix/header_checks
- /etc/postfix/transport
Created by the bundle postfix_virtual_alias_map()
- /etc/postfix/virtual_alias_maps.cf
If one of the files is changed then the following ''class'' will be set:
- scl_etc_aliases
- scl_etc_postfix_main_cf
- scl_etc_postfix_master_cf
- scl_etc_postfix_dynamicmaps_cf
- scl_etc_postfix_recipient_canonical
- scl_etc_postfix_header_checks
- scl_etc_postfix_transport
These files will be generated with the aid of mustache templates with json data. the templates are located in:
- templates/postfix/
- templates/postfix/json
The bundle can be run via:
def.scl_services_enabled
"vars": {
"scl_services_enabled": [
"...",
"postfix",
"..."
]
}
The bundle will aways read the default.json file and extra json file(s) can be specified via:
- def.cf
vars:
any::
"postfix_json_files" slist => { "zimbra.json" };
The variable must be ''postfix_json_files'' and with this setup 1 extra json file will be merged.
For more complex Postfix servers (for example a mailhandler) some additonal classes have been added to the mustache template for more strict handling of mail and enabling TLS for receiving emails.
Also some basic support for DOVECOT can be enabled. These classes are:
- POSTFIX_STRICT_HANDLING : Limits the amount of mail per second, and adds more restrictions for accepting mail from other hosts
- POSTFIX_REJECT_LOCAL : Reject all mail with the destination localhost
- POSTFIX_RECEIVE_TLS : Enable more TLS options to add TLS support on the smtp port for receiving mail
- POSTFIX_LOWER_34 : When you are using a Postfix version of 3.4 or lower
- POSTFIX_DOVECOT : Enable basic support for authentication via Dovecot
- POSTFIX_PFLOGSUMM : Run the pflogsumm command
All of the above classes can be defined in the def.cf/json files.
if you want to debug this bundle set the DEBUG_postfix class, eg:
-DDEBUG_postfix
See default.json what the default values are and which variables can be overriden
Here are some examples how to use it:
- specify postfix configuration in def.cf:
vars:
"postfix_json_files" slist => { "zimbra.json" };
- Set/Override options variable in a def.json file:
"vars": {
"postfix" : {
"alias_root_email_address": "[email protected]",
"json_files": [ "zimbra.json" ],
"file_aliases_lines": [ {"name": "beowulf", "value": "|\"/usr/bin/run_email2trac --project beowulf\""} ]
}
}- override server setting in def.cf
vars:
"postfix" data => parsejson( '{ "alias_root_email_address": "file_aliases_lines" }' );
with this bundle you can define youw own mustache template with json data for creating
the virtual alias map file(s). The format of the virtual_alias_maps is:
"virtual_alias_maps": {
"mustache_file": {
"data": {},
"delimiter": "",
"dest": "",
"protocol": ""
}
}
An example for defining an LDAP alias map for mustache (.forward is fetch from LDAP). This will copy the template
ldap_aliases_map.mustache and expand it with the give json data.
"postfix": {
"classes" : {
"VIRTUAL_MAPS": [ "mta.example.com" ],:
},
"virtual_alias_maps": {
"ldap_aliases_map.mustache": {
"delimiter": ":",
"dest": "/etc/postfix/virtual_alias_maps.cf",
"protocol": "ldap",
"data": {
"bind": true,
"bind_options": {
"dn": "<your_dn>",
"pw": "<your_bind_password>"
},
"port": "636",
"query_filter": "(uid=%s)",
"result_attribute": "mail",
"search_base": "ou=Users,dc=example,dc=com",
"server": "ldaps://ldap.example.com"
}
}
}
}