Blame - charts/maddy/templates/config.yaml - pcloud

blob: 166adc3966a0f9a504ef9ad85682a029cf23bb3f [file] [log] [blame]

giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	1	apiVersion: v1
				2	kind: ConfigMap
				3	metadata:
				4	name: config
				5	namespace: {{ .Release.Namespace }}
				6	data:
				7	maddy.conf: \|
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	8	$(hostname) = mail.{{ .Values.ingress.public.domain }}
				9	$(primary_domain) = {{ .Values.ingress.public.domain }}
				10	$(local_domains) = $(primary_domain)
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	11
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	12	auth.pass_table local_authdb {
				13	table sql_table {
				14	driver sqlite3
				15	dsn credentials.db
				16	table_name passwords
				17	}
				18	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	19
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	20	storage.imapsql local_mailboxes {
				21	driver sqlite3
				22	dsn imapsql.db
				23	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	24
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	25	hostname $(hostname)
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	26
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	27	msgpipeline local_routing {
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	28	destination postmaster $(local_domains) {
				29	modify {
				30	replace_rcpt regexp "(.+)\+(.+)@(.+)" "$1@$3"
				31	replace_rcpt file /etc/maddy/aliases
				32	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	33
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	34	deliver_to &local_mailboxes
				35	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	36
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	37	default_destination {
				38	reject 550 5.1.1 "User doesn't exist"
				39	}
				40	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	41
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	42	smtp tcp://0.0.0.0:25 {
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	43	tls off
				44
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	45	limits {
				46	# Up to 20 msgs/sec across max. 10 SMTP connections.
				47	all rate 20 1s
				48	all concurrency 10
				49	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	50
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	51	dmarc yes
				52	check {
				53	require_mx_record
				54	dkim
				55	spf
				56	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	57
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	58	source $(local_domains) {
				59	reject 501 5.1.8 "Use Submission for outgoing SMTP"
				60	}
				61	default_source {
				62	destination postmaster $(local_domains) {
				63	deliver_to &local_routing
				64	}
				65	default_destination {
				66	reject 550 5.1.1 "User doesn't exist"
				67	}
				68	}
				69	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	70
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	71	submission tls://0.0.0.0:465 tcp://0.0.0.0:587 {
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	72	tls file /etc/maddy/certs-private/tls.crt /etc/maddy/certs-private/tls.key
				73
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	74	limits {
				75	# Up to 50 msgs/sec across any amount of SMTP connections.
				76	all rate 50 1s
				77	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	78
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	79	auth &local_authdb
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	80
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	81	source $(local_domains) {
				82	destination postmaster $(local_domains) {
				83	deliver_to &local_routing
				84	}
				85	default_destination {
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	86	# modify {
				87	# dkim $(primary_domain) $(local_domains) default
				88	# }
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	89	deliver_to &remote_queue
				90	}
				91	}
				92	default_source {
				93	reject 501 5.1.8 "Non-local sender domain"
				94	}
				95	}
				96
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	97	target.smtp outbound_gateway {
				98	hostname {{ .Values.mailGateway.mxHostname }}
				99	attempt_starttls false
				100	require_tls no
				101	auth forward
				102	targets {{ .Values.mailGateway.address}}
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	103	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	104
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	105	target.queue remote_queue {
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	106	target &outbound_gateway
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	107	autogenerated_msg_domain $(primary_domain)
				108	bounce {
				109	destination postmaster $(local_domains) {
				110	deliver_to &local_routing
				111	}
				112	default_destination {
				113	reject 550 5.0.0 "Refusing to send DSNs to non-local addresses"
				114	}
				115	}
				116	}
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	117
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	118	imap tls://0.0.0.0:993 tcp://0.0.0.0:143 {
giolekva	75ee271	2021-11-26 13:57:12 +0400	[diff] [blame]	119	tls file /etc/maddy/certs-private/tls.crt /etc/maddy/certs-private/tls.key
giolekva	7fe1519	2021-11-19 13:58:16 +0400	[diff] [blame]	120	auth &local_authdb
				121	storage &local_mailboxes
				122	}