mailman2: web

This commit is contained in:
genofire 2020-07-24 15:43:21 +02:00
parent 7c53014b9a
commit bf3d3e3616
3 changed files with 67 additions and 2 deletions

View File

@ -27,6 +27,7 @@ mailserver_rspamd_domain: ""
mailserver_rspamd_dkim_selector: "2020" mailserver_rspamd_dkim_selector: "2020"
mailserver_mailman_enabled: true mailserver_mailman_enabled: true
mailserver_mailman_web: true
mailserver_mailman_domains: mailserver_mailman_domains:
- mail: "lists.{{ mailserver_mail_domain }}" - mail: "lists.{{ mailserver_mail_domain }}"
web: "lists.{{ mailserver_mail_domain }}" web: "lists.{{ mailserver_mail_domain }}"

View File

@ -1,8 +1,7 @@
- name: mailman - install - name: mailman - install
package: package:
state: latest state: latest
name: name: mailman
- mailman
- name: mailman - mm_config - name: mailman - mm_config
notify: notify:
@ -12,6 +11,38 @@
src: mailman_cfg.py src: mailman_cfg.py
dest: /etc/mailman/mm_cfg.py dest: /etc/mailman/mm_cfg.py
#
# Web - part
#
- name: mailman - install fcgiwrap
when: mailserver_mailman_web
package:
state: latest
name: fcgiwrap
- name: mailman - start and enable fcgiwrap
when: mailserver_mailman_web
systemd:
name: fcgiwrap.socket
state: started
enabled: yes
- name: mailman - get cert for web
notify: dehydrated
when: mailserver_mailman_web
lineinfile:
path: /etc/dehydrated/domains.txt
line: "{{ mailserver_mailman_domains | map(attribute='web') | join(' ') }}"
- name: mailman - nginx domain
notify: reload nginx
when: mailserver_mailman_web
template:
src: mailman-domain.nginx
dest: /etc/nginx/sites.d/mailman.act
### END Web - part
- name: mailman - enable timer - name: mailman - enable timer
systemd: systemd:
name: "{{ item }}" name: "{{ item }}"

View File

@ -0,0 +1,33 @@
server {
listen [::]:443 ssl http2;
listen 443 ssl http2;
{% for d in mailserver_mailman_domains %}
server_name {{ d.web }};
{% endfor %}
ssl_certificate /etc/dehydrated/certs/{{ mailserver_mailman_domains[0].web }}/fullchain.pem;
ssl_certificate_key /etc/dehydrated/certs/{{ mailserver_mailman_domains[0].web }}/privkey.pem;
root /usr/lib/mailman/cgi-bin;
location = / {
rewrite ^ /listinfo permanent;
}
location / {
fastcgi_split_path_info ^(/[^/]*)(.*)$;
fastcgi_pass unix:/run/fcgiwrap.sock;
include fastcgi.conf;
fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info;
}
location /icons {
alias /usr/lib/mailman/icons;
}
location /archives {
alias /var/lib/mailman/archives/public;
autoindex on;
}
include snippets/letsencrypt.conf;
}