make extra header checks configurable

README.md

@@ -67,6 +67,11 @@ mydestination: []
 
 # Check quota with dovecot at 127.0.0.1:12340
 check_dovecot_quota: false
+
+# Header checks (only header_checks and mime_header_checks supported), see http://www.postfix.org/header_checks.5.html
+# privacy related headers are removed in any case, you can add more like this:
+add_header_checks:
+    - { regexp: "^Mime:", action: "IGNORE" }
 ```
 
 **postfixmaps**

defaults/main.yml

@@ -37,3 +37,4 @@ postfix:
       mailboxes: mailMessageStore
   check_dovecot_quota: false
   postfixmaps: []
+  add_header_checks: []

files/header_checks

@@ -1,4 +0,0 @@
-/^Received:.*with ESMTPSA/      IGNORE
-/^X-Originating-IP:/            IGNORE
-/^X-Mailer:/                    IGNORE
-/^User-Agent:/                  IGNORE

tasks/main.yml

@@ -54,16 +54,10 @@
     - { src: "main.cf.j2", dest: "/etc/postfix/main.cf" }
     - { src: "master.cf.j2", dest: "/etc/postfix/master.cf" }
     - { src: "virtual-aliases.cf.j2", dest: "/etc/postfix/virtual-aliases.cf" }
+    - { src: "header_checks.j2", dest: "/etc/postfix/header_checks" }
   notify:
   - restart postfix
 
-- name: Copy header_checks
-  copy:
-    src: header_checks
-    dest: /etc/postfix/header_checks
-  notify:
-    - restart postfix
-
 - name: copy postfix maps
   template:
     src: maps.j2

templates/header_checks.j2

@@ -0,0 +1,11 @@
+/^Received:.*with ESMTPSA/      IGNORE
+/^X-Originating-IP:/            IGNORE
+/^X-Mailer:/                    IGNORE
+/^User-Agent:/                  IGNORE
+
+{% if postfix.add_header_checks|length %}
+# {{ ansible_managed }}
+{% for item in postfix.add_header_checks %}
+/{{ item.regexp }}/	{{ item.action }}
+{% endfor %}
+{% endif %}