ka
/
ansible-role-opendkim
1
0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
3 коммитов
1 ветка
30KB
Дерево: 37a303b281
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '37a303b281'
${ noResults }
ansible-role-opendkim/tasks/main.yaml

88 строки
2.0KB
Исходник Blame История 

  1. ---

  2. 

  3. - name: opendkim debian packages

  4.   apt:

  5.     pkg:

  6.       - opendkim

  7.       - opendkim-tools

  8.       - python-openssl

  9. 

  10. - name: opendkim config

  11.   template:

  12.     src: opendkim.conf.j2

  13.     dest: /etc/opendkim.conf

  14.   notify: reload opendkim

  15. 

  16. - name: opendkim config directory

  17.   file:

  18.     path: /etc/opendkim

  19.     state: directory

  20.     owner: opendkim

  21.     group: opendkim

  22.     mode: 0755

  23.   with_items: "{{dkim_domains}}"

  24. 

  25. - name: dkim keys directories

  26.   file:

  27.     path: /etc/opendkim/keys/{{item}}

  28.     state: directory

  29.     owner: opendkim

  30.     group: opendkim

  31.     mode: 0700

  32.   with_items: "{{dkim_domains}}"

  33. 

  34. - name: dkim private keys

  35.   openssl_privatekey:

  36.     path: /etc/opendkim/keys/{{item}}/{{dkim_selector}}.private

  37.     size: "{{opendkim_key_size}}"

  38.     owner: opendkim

  39.     group: opendkim

  40.     mode: 0600

  41.   with_items: "{{dkim_domains}}"

  42. 

  43. - name: dkim public keys

  44.   openssl_publickey:

  45.     privatekey_path: /etc/opendkim/keys/{{item}}/{{dkim_selector}}.private

  46.     path: /etc/opendkim/keys/{{item}}/{{dkim_selector}}.public

  47.     owner: opendkim

  48.     group: opendkim

  49.     mode: 0600

  50.   with_items: "{{dkim_domains}}"

  51. 

  52. - name: read dkim public keys

  53.   command: cat /etc/opendkim/keys/{{item}}/{{dkim_selector}}.public

  54.   with_items: "{{dkim_domains}}"

  55.   changed_when: false

  56.   register: _opendkim_read_public_key

  57. 

  58. - name: show dkim dns records

  59.   debug:

  60.     msg: "{{_dkim_dns_records}}"

  61. 

  62. - name: test dkim dns records

  63.   command: opendkim-testkey -v -d {{item}} -s {{dkim_selector}} -k /etc/opendkim/keys/{{item}}/{{dkim_selector}}.private

  64.   changed_when: false

  65.   with_items: "{{dkim_domains}}"

  66. 

  67. - name: opendkim key table

  68.   template:

  69.     src: key.table.j2

  70.     dest: /etc/opendkim/key.table

  71.     mode: 0600

  72. 

  73. - name: opendkim signing table

  74.   template:

  75.     src: signing.table.j2

  76.     dest: /etc/opendkim/signing.table

  77.     mode: 0600

  78. 

  79. - name: opendkim signing table

  80.   template:

  81.     src: trusted.hosts.j2

  82.     dest: /etc/opendkim/trusted.hosts

  83.     mode: 0600

  84. 

  85. - name: test opendkim configuration

  86.   command: opendkim -n

  87.   changed_when: false