Update to 2023-11-22 16:00

2023-11-22 16:00:28 +01:00 · 2023-11-22 16:00:28 +01:00 · e76462f776
parent 91c6eec01c
commit e76462f776
6 changed files with 41 additions and 8 deletions
--- a/roles/postfix/defaults/main.yml
+++ b/roles/postfix/defaults/main.yml
@ -31,4 +31,10 @@
 # List of IP addresses which will have access to port 25
 postfix_src_ip: []

+# A list of domain to relay, with an optional transport
+# postfix_relay_domains:
+#   - domain: my.domain.org
+#     transport: smtp:[mx.example.org]:25
+#   - domain: another.domain.fr
+postfix_relay_domains: []
 ...
--- a/roles/postfix/handlers/main.yml
+++ b/roles/postfix/handlers/main.yml
@ -1,5 +1,21 @@
 ---
+
 - name: restart postfix
  service: name=postfix state=restarted

+- name: reload postfix
+  service: name=postfix state=reloaded
+
+- name: rehash relay_auth
+  command: postmap /etc/postfix/relay_auth
+  notify: reload postfix
+
+- name: rehash relay_domains
+  command: postmap /etc/postfix/relay_domains
+  notify: reload postfix
+
+- name: rehash transport_maps
+  command: postmap /etc/postfix/transport_maps
+  notify: reload postfix
+
 ...
--- a/roles/postfix/tasks/main.yml
+++ b/roles/postfix/tasks/main.yml
@ -26,19 +26,19 @@
  notify: restart postfix
  tags: postfix

- name: Deploy Relay authentication map
+- name: Deploy relay_auth
  template: src=relay_auth.j2 dest=/etc/postfix/relay_auth mode=600 owner=root group=root
-  register: relay_auth_file
+  notify: rehash relay_auth
  tags: postfix

- name: Check if relay_auth has been hashed
-  stat: path=/etc/postfix/relay_auth.db
-  register: relay_auth_hashed
+- name: Deploy relay_domains
+  template: src=relay_domains.j2 dest=/etc/postfix/relay_domains mode=644 owner=root group=root
+  notify: rehash relay_domains
  tags: postfix

- name: Rehash postfix relay auth
-  command: postmap /etc/postfix/relay_auth
-  when: relay_auth_file.changed or not relay_auth_hashed.stat.exists
+- name: Deploy transport_maps
+  template: src=transport_maps.j2 dest=/etc/postfix/transport_maps mode=644 owner=root group=root
+  notify: rehash transport_maps
  tags: postfix

 - name: Handle postfix port
--- a/roles/postfix/templates/main.cf.j2
+++ b/roles/postfix/templates/main.cf.j2
@ -50,4 +50,7 @@ owner_request_special = no
 transport_maps = hash:{{ mailman_root_dir | default('/opt/mailman') }}/data/data/postfix_lmtp
 local_recipient_maps = hash:{{ mailman_root_dir | default('/opt/mailman') }}/data/data/postfix_lmtp
 relay_domains = hash:{{ mailman_root_dir | default('/opt/mailman') }}/data/data/postfix_domains
+{% else %}
+relay_domains = hash:/etc/postfix/relay_domains
+transport_maps = hash:/etc/postfix/transport_maps
 {% endif %}
--- a/roles/postfix/templates/relay_domains.j2
+++ b/roles/postfix/templates/relay_domains.j2
@ -0,0 +1,3 @@
+{% for domain in postfix_relay_domains %}
+{{ domain.domain }} 1
+{% endfor %}
--- a/roles/postfix/templates/transport_maps.j2
+++ b/roles/postfix/templates/transport_maps.j2
@ -0,0 +1,5 @@
+{% for domain in postfix_relay_domains %}
+{% if domain.transport is defined %}
+{{ domain.domain }} {{ domain.transport }}
+{% endif %}
+{% endfor %}