ansible-role-mailserver/defaults/main.yml

mailserver:
  smtp_tls_cert: "/etc/ssl/{{ inventory_hostname }}.chain.crt"
  smtp_tls_key: "/etc/ssl/private/{{ inventory_hostname }}.key"
  submission_tls_cert: "/etc/ssl/{{ inventory_hostname }}.chain.crt"
  submission_tls_key: "/etc/ssl/private/{{ inventory_hostname }}.key"
  imap_tls_cert: "/etc/ssl/{{ inventory_hostname }}.chain.crt"
  imap_tls_key: "/etc/ssl/private/{{ inventory_hostname }}.key"
  domains: [] # All mail domains
  postfix:
    metrics_address: "127.0.0.1:9154"
    milters: []
    header_checks:
      remove_client_ip_from_received:
        regex: '^Received:.*(by.*with [A-Z0-9]*SMTPSA.*)$'
        action: 'REPLACE Received: $1'
      drop_originating_ip:
        regex: '^X-Originating-IP:'
        action: IGNORE
      drop_mailer:
        regex: '^X-Mailer:'
        action: IGNORE
      drop_user_agent:
        regex: '^User-Agent:'
        action: IGNORE
  postsrsd:
    srs_domain: "srs.{{ inventory_hostname }}"
  dovecot:
    debug: false
  postfixadmin:
    php_fpm_config:
      user: postfixadmin
      group: postfixadmin
      listen: '/run/php/php{{ php_version }}-fpm-postfixadmin.sock'
      listen.owner: www-data
      listen.group: www-data
      listen.mode: '0660'
      'php_admin_value[syslog.ident]': postfixadmin
      pm: dynamic
      pm.max_children: 50
      pm.start_servers: 2
      pm.min_spare_servers: 2
      pm.max_spare_servers: 3
      'env[HOSTNAME]': '$HOSTNAME'
      'env[PATH]': /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
      'env[TMP]': /tmp
      'env[TMPDIR]': /tmp
      'env[TEMP]': /tmp
    config:
      configured: true
      database_type: pgsql
      database_host: null
      database_user: postfixadmin
      database_password: ''
      database_name: postfixadmin
      encrypt: 'dovecot:ARGON2I'
      default_aliases: [] # For now
      domain_path: 'YES'
      domain_in_mailbox: 'NO'
      aliases: 0
      mailboxes: 0
      maxquota: 0
      domain_quota_default: 0
      quota: 'YES'
      domain_quota: 'NO'
      sendmail: 'NO'
      fetchmail: 'NO'
      show_status: 'NO'
      forgotten_user_password_reset: false
      forgotten_admin_password_reset: false
      password_expiration: 'NO'
      generate_password: 'YES'
      password_validation:
        '/.{8}/': 'password_too_short 8'
      used_quotas: 'YES'
      show_footer_text: 'NO'