From 54123ccb764e06c370aa1597140d3fc7cb53aa7d Mon Sep 17 00:00:00 2001
From: Julian Rother <julian@holzmarkt.com>
Date: Fri, 24 Jan 2025 21:45:34 +0100
Subject: [PATCH] Add dovecot_proxy.config option

---
 defaults/main.yml         | 1 +
 templates/dovecot.conf.j2 | 6 +++++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/defaults/main.yml b/defaults/main.yml
index 1acafef..8598567 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -1,4 +1,5 @@
 dovecot_proxy:
+  config: {}
   debug_log_enabled: false # Logs passwords and more to /var/log/dovecot.debug.log
   ssl_cert: "/etc/ssl/{{ inventory_hostname }}.chain.crt"
   ssl_key: "/etc/ssl/private/{{ inventory_hostname }}.key"
diff --git a/templates/dovecot.conf.j2 b/templates/dovecot.conf.j2
index cc08801..d883dec 100644
--- a/templates/dovecot.conf.j2
+++ b/templates/dovecot.conf.j2
@@ -30,9 +30,13 @@ ssl_min_protocol = TLSv1.2
 ssl_cipher_list = ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
 ssl_prefer_server_ciphers = yes
 
+{% for key, value in dovecot_proxy.config.items() %}
+{{ key }} = {{ value }}
+{% endfor %}
+
 {% for domain in dovecot_proxy.domain_proxies %}
 passdb {
   driver = sql
   args = /etc/dovecot/proxy-domain-{{ domain }}-sql.conf
 }
-{% endfor%}
+{% endfor %}