raven/ansible
1
0
Fork 0
forked from infra/ansible
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Create certficate config in mail role.

Browse Source
This commit is contained in:
Markus 2016-02-28 15:30:57 +01:00
parent 2732c1a4ca
commit 3bfa0391b1
2 changed files with 31 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
roles/mail/tasks/main.yml
View File

@ -81,6 +81,10 @@
notify: Run postmap notify: Run postmap
tags: mail tags: mail
- name: Configure certificate manager
template: src=certs.j2 dest=/etc/acme/domains.d/{{ ansible_fqdn }}_mail.conf
tags: mail
- name: Create razor directory structure - name: Create razor directory structure
command: razor-admin -create chdir=/var/lib/amavis creates=/var/lib/amavis/.razor command: razor-admin -create chdir=/var/lib/amavis creates=/var/lib/amavis/.razor
become: yes become: yes

27
roles/mail/templates/certs.j2 Normal file
View File

@ -0,0 +1,27 @@
---
{{ ansible_fqdn }}:
- path: /etc/postfix/ssl/{{ ansible_fqdn }}.crt
user: postfix
group: postfix
perm: '400'
format: crt
notify: 'service postfix reload'
- path: /etc/postfix/ssl/{{ ansible_fqdn }}.key
user: postfix
group: postfix
perm: '400'
format: key
notify: 'service postfix reload'
- path: /etc/dovecot/ssl/{{ ansible_fqdn }}.crt
user: dovecot
group: dovecot
perm: '400'
format: crt
notify: 'service dovecot reload'
- path: /etc/dovecot/ssl/{{ ansible_fqdn }}.key
user: dovecot
group: dovecot
perm: '400'
format: key
notify: 'service dovecot reload'