bundles/dovecot: some fixes

- fix postfix/myhostname default - ensure old_stats plugin is enabled - ensure permissions for old_stats plugin - ensure /etc/dovecot/ssl exists - remove unneeded configuration files
2021-08-21 07:31:22 +02:00 · 2021-08-21 07:31:22 +02:00 · 96f1604879
commit 96f1604879
parent 8301664d9a
2 changed files with 43 additions and 5 deletions
--- a/bundles/dovecot/files/dovecot.conf
+++ b/bundles/dovecot/files/dovecot.conf
@ -29,8 +29,8 @@ mail_location = maildir:/var/mail/vmail/%d/%n
 protocols = imap lmtp sieve

 ssl = yes
-ssl_cert = </var/lib/dehydrated/certs/${node.metadata['postfix']['myhostname']}/fullchain.pem
-ssl_key =  </var/lib/dehydrated/certs/${node.metadata['postfix']['myhostname']}/privkey.pem
+ssl_cert = </var/lib/dehydrated/certs/${node.metadata.get('postfix/myhostname', node.metadata['hostname'])}/fullchain.pem
+ssl_key =  </var/lib/dehydrated/certs/${node.metadata.get('postfix/myhostname', node.metadata['hostname'])}/privkey.pem
 ssl_dh = </etc/dovecot/ssl/dhparam.pem
 ssl_min_protocol = TLSv1.2
 ssl_cipher_list = EECDH+AESGCM:EDH+AESGCM
@ -40,7 +40,7 @@ login_greeting = IMAPd ready
 auth_mechanisms = plain login
 first_valid_uid = 65534
 disable_plaintext_auth = yes
-mail_plugins = $mail_plugins zlib
+mail_plugins = $mail_plugins zlib old_stats

 plugin {
    zlib_save_level = 6
@ -137,11 +137,26 @@ protocol sieve {
    }
 }

-% if node.has_bundle('telegraf'):
 service old-stats {
+% if node.has_bundle('telegraf'):
    inet_listener {
        address = 127.0.0.1
        port = 24242
    }
-}
 % endif
+    unix_listener old-stats {
+        mode = 0660
+        user = nobody
+        group = nogroup
+    }
+    fifo_listener old-stats-mail {
+        mode = 0660
+        user = nobody
+        group = nogroup
+    }
+    fifo_listener old-stats-user {
+        mode = 0660
+        user = nobody
+        group = nogroup
+    }
+}