From 91883b0b5498e38e2626b0c9792fd2a23a967d9e Mon Sep 17 00:00:00 2001
From: Aaron LI <aly@aaronly.me>
Date: Sun, 4 Mar 2018 18:46:14 +0800
Subject: add mail role: preliminary, setup DKIM keys

---
 roles/mail/tasks/main.yml | 48 +++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 roles/mail/tasks/main.yml

(limited to 'roles/mail/tasks/main.yml')

diff --git a/roles/mail/tasks/main.yml b/roles/mail/tasks/main.yml
new file mode 100644
index 0000000..019a2e0
--- /dev/null
+++ b/roles/mail/tasks/main.yml
@@ -0,0 +1,48 @@
+---
+- name: install packages
+  pkgng:
+    name: "{{ item }}"
+    state: present
+  with_items:
+    - postfix
+    - dovecot
+    - opendkim
+
+- name: dkim - create directory
+  file:
+    path: /usr/local/etc/mail/dkim
+    state: directory
+
+- name: dkim - generate domain keys
+  include_tasks: dkim-genkey.yml domain={{ item }}
+  with_items: "{{ mail.domains }}"
+
+- name: postfix - set as mailer/MTA
+  file:
+    path: /etc/mail/mailer.conf
+    src: /etc/mail/mailer.conf.postfix
+    state: link
+    force: true
+
+- name: postfix - enable postfix and disable sendmail
+  blockinfile:
+    path: /etc/rc.conf
+    marker: "# {mark} ANSIBLE MANAGED - postfix"
+    block: |
+      postfix_enable="YES"
+      # Completely disable sendmail(8) in favor of Postfix
+      sendmail_enable="NO"
+      sendmail_submit_enable="NO"
+      sendmail_outbound_enable="NO"
+      sendmail_msp_queue_enable="NO"
+
+- name: postfix - disable sendmail periodic tasks
+  blockinfile:
+    path: /etc/periodic.conf
+    marker: "# {mark} ANSIBLE MANAGED - postfix"
+    block: |
+      # Disable sendmail(8) tasks in favor of Postfix
+      daily_clean_hoststat_enable="NO"
+      daily_status_mail_rejects_enable="NO"
+      daily_status_include_submit_mailq="NO"
+      daily_submit_queuerun="NO"
-- 
cgit v1.2.2