infra/ansible-role-roundcube
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
6 commits 1 branch 0 tags 35 KiB
Find a file
Exact
Julian Rother ac2308f211
Install roundcube-plugins
2025-02-01 18:05:25 +01:00
defaults Add roundcube_separate_user option 2025-01-29 16:38:03 +01:00
handlers Fix cleanup services with roundcube_separate_user enabled 2025-02-01 18:04:18 +01:00
tasks Install roundcube-plugins 2025-02-01 18:05:25 +01:00
templates Fix cleanup services with roundcube_separate_user enabled 2025-02-01 18:04:18 +01:00
README.md Initial commit 2025-01-17 13:15:09 +01:00

README.md

Roundcube

Requires additional PHP and web server setup, e.g. with this nginx role:

roundcube_config:
  imap_host: 'ssl://mail.example.com:993'
  smtp_host: 'tls://mail.example.com:587'
  des_key: "{{ lookup('passwordstore', 'example.com/roundcube-secret create=true length=24 nosymbols=true') }}"

nginx:
  add_headers:
    Strict-Transport-Security: "max-age=63072000"
    Content-Security-Policy: "default-src 'self' 'unsafe-inline' 'unsafe-eval' data:"
    X-Frame-Options: "sameorigin"
    X-Content-Type-Options: "nosniff"
    X-XSS-Protection: "1; mode=block"
  php:
    ini:
      date_timezone: Europe/Berlin
  vhosts:
    mail:
      servername:
      - mail.example.com
      custom:
      - root /var/lib/roundcube
      - index index.php index.html index.htm
      locations:
      - match: /
        custom:
        - try_files $uri $uri/ /index.php?q=$uri&$args
      - match: ^~ /data
        custom:
        - deny all
      - match: '~ \.php$'
        custom:
        - include /etc/nginx/fastcgi_params
        - fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name
        - fastcgi_param REDIRECT_STATUS 200
        - fastcgi_param HTTPS On
        - fastcgi_pass php-handler