phfroidmont/self-hosting
1
0
Fork 0
mirror of https://github.com/phfroidmont/self-hosting.git synced 2025-12-25 05:36:59 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Updade mailu

Browse source
This commit is contained in:
Paul-Henri Froidmont 2018-01-12 15:17:53 +01:00
parent 3c4d76c76e
commit f532d01ab3
4 changed files with 99 additions and 71 deletions
Download patch file Download diff file Expand all files Collapse all files

2
playbook.yml
View file

@ -15,7 +15,7 @@
- role: wiki-docker - role: wiki-docker
- role: emby-docker - role: emby-docker
- role: gitlab-docker - role: gitlab-docker
- role: mailu-docker - { role: mailu-docker, tags: [ 'mailu', 'docker' ] }
- { role: nextcloud-docker, tags: [ 'nextcloud', 'docker' ] } - { role: nextcloud-docker, tags: [ 'nextcloud', 'docker' ] }
- role: matrix-docker - role: matrix-docker
- role: plex-docker - role: plex-docker

87
roles/mailu-docker/files/mailu/docker-compose.yml
View file

@ -6,8 +6,23 @@ networks:
name: nginx-proxy name: nginx-proxy
services: services:
front:
image: mailu/nginx:$VERSION
restart: always
env_file: .env
ports:
- "$BIND_ADDRESS4:110:110"
- "$BIND_ADDRESS4:143:143"
- "$BIND_ADDRESS4:993:993"
- "$BIND_ADDRESS4:995:995"
- "$BIND_ADDRESS4:25:25"
- "$BIND_ADDRESS4:465:465"
- "$BIND_ADDRESS4:587:587"
volumes:
- "../proxy/nginx/certs/${DOMAIN}.crt:/certs/cert.pem"
- "../proxy/nginx/certs/${DOMAIN}.key:/certs/key.pem"
redis: redis:
image: redis:latest image: redis:alpine
restart: always restart: always
volumes: volumes:
- "$ROOT/redis:/data" - "$ROOT/redis:/data"
@ -16,44 +31,18 @@ services:
image: mailu/dovecot:$VERSION image: mailu/dovecot:$VERSION
restart: always restart: always
env_file: .env env_file: .env
ports:
- "110:110"
- "143:143"
- "993:993"
- "995:995"
- "4190:4190"
volumes: volumes:
- "$ROOT/data:/data" - "$ROOT/data:/data"
- "$ROOT/mail:/mail" - "$ROOT/mail:/mail"
- "../proxy/nginx/certs/${DOMAIN}.crt:/certs/cert.pem"
- "../proxy/nginx/certs/${DOMAIN}.key:/certs/key.pem"
- "$ROOT/overrides:/overrides" - "$ROOT/overrides:/overrides"
- /etc/localtime:/etc/localtime:ro
smtp: smtp:
image: mailu/postfix:$VERSION image: mailu/postfix:$VERSION
restart: always restart: always
env_file: .env env_file: .env
ports:
- "25:25"
- "465:465"
- "587:587"
volumes: volumes:
- "$ROOT/data:/data" - "$ROOT/data:/data"
- "../proxy/nginx/certs/${DOMAIN}.crt:/certs/cert.pem"
- "../proxy/nginx/certs/${DOMAIN}.key:/certs/key.pem"
- "$ROOT/overrides:/overrides" - "$ROOT/overrides:/overrides"
- /etc/localtime:/etc/localtime:ro
milter:
image: mailu/rmilter:$VERSION
restart: always
env_file: .env
volumes:
- "$ROOT/filter:/data"
- "$ROOT/dkim:/dkim"
- "$ROOT/overrides:/overrides"
- /etc/localtime:/etc/localtime:ro
antispam: antispam:
image: mailu/rspamd:$VERSION image: mailu/rspamd:$VERSION
@ -61,15 +50,15 @@ services:
env_file: .env env_file: .env
volumes: volumes:
- "$ROOT/filter:/var/lib/rspamd" - "$ROOT/filter:/var/lib/rspamd"
- /etc/localtime:/etc/localtime:ro - "$ROOT/dkim:/dkim"
- "$ROOT/overrides/rspamd:/etc/rspamd/override.d"
antivirus: antivirus:
image: mailu/clamav:$VERSION image: mailu/$ANTIVIRUS:$VERSION
restart: always restart: always
env_file: .env env_file: .env
volumes: volumes:
- "$ROOT/filter:/data" - "$ROOT/filter:/data"
- /etc/localtime:/etc/localtime:ro
webdav: webdav:
image: mailu/$WEBDAV:$VERSION image: mailu/$WEBDAV:$VERSION
@ -77,35 +66,42 @@ services:
env_file: .env env_file: .env
volumes: volumes:
- "$ROOT/dav:/data" - "$ROOT/dav:/data"
- /etc/localtime:/etc/localtime:ro
admin: admin:
image: mailu/admin:$VERSION image: mailu/admin:$VERSION
restart: always restart: always
env_file: .env env_file: .env
#hostname: mailu.banditlair.com expose:
ports: - 80
- "127.0.0.1:8000:80"
environment: environment:
- VIRTUAL_HOST=${HOSTNAME} - VIRTUAL_HOST=mailu.banditlair.com
- VIRTUAL_NETWORK=nginx-proxy - VIRTUAL_NETWORK=nginx-proxy
- VIRTUAL_PORT=8000 - VIRTUAL_PORT=80
volumes: volumes:
- "$ROOT/data:/data" - "$ROOT/data:/data"
- "$ROOT/dkim:/dkim" - "$ROOT/dkim:/dkim"
- "../proxy/nginx/certs/${DOMAIN}.crt:/certs/cert.pem"
- "../proxy/nginx/certs/${DOMAIN}.key:/certs/key.pem"
- /var/run/docker.sock:/var/run/docker.sock:ro - /var/run/docker.sock:/var/run/docker.sock:ro
- /etc/localtime:/etc/localtime:ro depends_on:
- redis
networks: networks:
- proxy-tier - proxy-tier
- default
#webmail: webmail:
# image: "mailu/$WEBMAIL:$VERSION" image: "mailu/$WEBMAIL:$VERSION"
# restart: always restart: always
# env_file: .env env_file: .env
# volumes: expose:
# - "$ROOT/webmail:/data" - 80
environment:
- VIRTUAL_HOST=webmail.banditlair.com
- VIRTUAL_NETWORK=nginx-proxy
- VIRTUAL_PORT=80
volumes:
- "$ROOT/webmail:/data"
networks:
- proxy-tier
- default
fetchmail: fetchmail:
image: mailu/fetchmail:$VERSION image: mailu/fetchmail:$VERSION
@ -113,4 +109,3 @@ services:
env_file: .env env_file: .env
volumes: volumes:
- "$ROOT/data:/data" - "$ROOT/data:/data"
- /etc/localtime:/etc/localtime:ro

79
roles/mailu-docker/templates/mailu/.env
View file

@ -12,45 +12,49 @@
ROOT=/var/lib/mailu ROOT=/var/lib/mailu
# Mailu version to run (stable, 1.0, 1.1, etc. or latest) # Mailu version to run (stable, 1.0, 1.1, etc. or latest)
VERSION=stable VERSION=1.5.1
# Set to a randomly generated 16 bytes string # Set to a randomly generated 16 bytes string
SECRET_KEY={{mailu_secret_key}} SECRET_KEY={{mailu_secret_key}}
# Address where listening ports should bind # Address where listening ports should bind
BIND_ADDRESS={{inventory_hostname}} BIND_ADDRESS4=0.0.0.0
BIND_ADDRESS6=::
# Main mail domain # Main mail domain
DOMAIN=banditlair.com DOMAIN=banditlair.com
# Exposed mail-server hostname # Exposed mail-server hostname
HOSTNAME=mail.banditlair.com HOSTNAMES=mail.banditlair.com,mail2.banditlair.com
# Postmaster local part (will append the main mail domain) # Postmaster local part (will append the main mail domain)
POSTMASTER=admin POSTMASTER=admin
# Docker-compose project name, this will prepended to containers names. # Choose how secure connections will behave (value: letsencrypt, cert, notls, mail)
COMPOSE_PROJECT_NAME=mailu TLS_FLAVOR=mail
# Authentication rate limit (per source IP address)
AUTH_RATELIMIT=30/minute;1800/hour
# Opt-out of statistics, replace with "True" to opt out
DISABLE_STATISTICS=True
################################### ###################################
# Optional features # Optional features
################################### ###################################
# Choose which frontend Web server to run if any (value: nginx, nginx-no-https, none) # Expose the admin interface (value: true, false)
FRONTEND=none ADMIN=true
# Choose which webmail to run if any (values: roundcube, rainloop, none) # Choose which webmail to run if any (values: roundcube, rainloop, none)
WEBMAIL=none WEBMAIL=rainloop
# Expose the admin interface in publicly (values: yes, no)
EXPOSE_ADMIN=no
# Use Letsencrypt to generate a TLS certificate (uncomment to enable)
ENABLE_CERTBOT=True
# Dav server implementation (value: radicale, none) # Dav server implementation (value: radicale, none)
WEBDAV=none WEBDAV=none
# Antivirus solution (value: clamav, none)
ANTIVIRUS=none
################################### ###################################
# Mail settings # Mail settings
################################### ###################################
@ -61,7 +65,7 @@ MESSAGE_SIZE_LIMIT=50000000
# Networks granted relay permissions, make sure that you include your Docker # Networks granted relay permissions, make sure that you include your Docker
# internal network (default to 172.17.0.0/16) # internal network (default to 172.17.0.0/16)
RELAYNETS=172.25.0.0/16 RELAYNETS=172.22.0.0/16
# Will relay all outgoing mails if configured # Will relay all outgoing mails if configured
RELAYHOST= RELAYHOST=
@ -69,16 +73,45 @@ RELAYHOST=
# Fetchmail delay # Fetchmail delay
FETCHMAIL_DELAY=600 FETCHMAIL_DELAY=600
################################### # Recipient delimiter, character used to delimiter localpart from custom address part
# Nginx settings # e.g. localpart+custom@domain;tld
################################### RECIPIENT_DELIMITER=+
# SSL DHPARAM Bits
#NGINX_SSL_DHPARAM_BITS=2048 # DMARC rua and ruf email
DMARC_RUA=dmarc
DMARC_RUF=dmarc
# Weclome email, enable and set a topic and body if you wish to send welcome
# emails to all users.
WELCOME=true
WELCOME_SUBJECT=Welcome to your new email account
WELCOME_BODY=Welcome to your new email account, if you can read this, then it is configured properly!
################################### ###################################
# Developers # Web settings
################################### ###################################
# Uncomment this to enable debugging globally # Path to the admin interface if enabled
#DEBUG=True WEB_ADMIN=/admin
# Path to the webmail if enabled
WEB_WEBMAIL=/webmail
# Website name
SITENAME=Emails management
# Linked Website URL
WEBSITE=https://banditlair.com
###################################
# Advanced settings
###################################
# Docker-compose project name, this will prepended to containers names.
COMPOSE_PROJECT_NAME=mailu
# Default password scheme used for newly created accounts and changed passwords
# (value: SHA512-CRYPT, SHA256-CRYPT, MD5-CRYPT, CRYPT)
PASSWORD_SCHEME=SHA512-CRYPT

2
roles/searx-docker/files/searx/docker-compose.yml
View file

@ -14,7 +14,7 @@ services:
- VIRTUAL_HOST=banditlair.com - VIRTUAL_HOST=banditlair.com
- VIRTUAL_NETWORK=nginx-proxy - VIRTUAL_NETWORK=nginx-proxy
- VIRTUAL_PORT=8888 - VIRTUAL_PORT=8888
- LETSENCRYPT_HOST=banditlair.com,mail.banditlair.com,gitlab.banditlair.com,grafana.banditlair.com,cloud.banditlair.com,office.banditlair.com,plex.banditlair.com,sonar.banditlair.com,deluge.banditlair.com,rpg.banditlair.com,matrix.banditlair.com,emby.banditlair.com - LETSENCRYPT_HOST=banditlair.com,mail.banditlair.com,mailu.banditlair.com,webmail.banditlair.com,gitlab.banditlair.com,cloud.banditlair.com,office.banditlair.com,plex.banditlair.com,deluge.banditlair.com,rpg.banditlair.com,matrix.banditlair.com,emby.banditlair.com
- LETSENCRYPT_EMAIL=letsencrypt.account@banditlair.com - LETSENCRYPT_EMAIL=letsencrypt.account@banditlair.com
networks: networks:
- proxy-tier - proxy-tier