add support for ldap - closes #61

Signed-off-by: Marcin Fabrykowski <git@fabrykowski.pl>

add support for ldap - closes #61
Signed-off-by: Marcin Fabrykowski <git@fabrykowski.pl>
5e132f32 · torgiren · 7f306a4f · 5e132f32 · 5e132f32 · 5e132f32
Unverified Commit 5e132f32 authored 3 years ago by torgiren
Hide whitespace changes
Inline Side-by-side

Showing

with 20 additions and 7 deletions
+20 -7
--- a/chart/templates/deployment.yml
+++ b/chart/templates/deployment.yml
@@ -30,8 +30,8 @@ spec:
            name: vmail
      volumes:
        - name: dovecot-config
-          secret:
-            secretName: dovecot-conf
+          configMap:
+            name: dovecot-conf
        - name: vmail
          persistentVolumeClaim:
            claimName: postfix-vmail
--- a/chart/templates/dovecot_configs.yml
+++ b/chart/templates/dovecot_configs.yml
@@ -6,10 +6,14 @@ data:
  dovecot.conf: |
    # 2.3.15 (0503334ab1): /etc/dovecot/dovecot.conf
    # Pigeonhole version 0.5.15 (e6a84e31)
-    # OS: Linux 5.14.18-300.fc35.x86_64 x86_64
+    # OS: Linux 5.14.18-300.fc35.x86_64 x86_64  btrfs
    # Hostname: fee040f9de2e
+    first_valid_uid = 100
    log_path = /dev/stdout
    mail_debug = yes
+    mail_gid = 102
+    mail_location = maildir:/var/lib/vmail/%d/%u/
+    mail_uid = 101
    managesieve_notify_capability = mailto
    managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date index ihave duplicate mime foreverypart extracttext
    mbox_write_locks = fcntl
@@ -34,8 +38,8 @@ data:
      prefix =
    }
    passdb {
-      args = scheme=CRYPT username_format=%u /etc/dovecot/users
-      driver = passwd-file
+      args = /etc/dovecot/dovecot-ldap.conf.ext
+      driver = ldap
    }
    plugin {
      sieve = file:~/sieve;active=~/.dovecot.sieve
@@ -45,6 +49,12 @@ data:
    ssl_key = </etc/ssl/dovecot/server.key
    ssl_prefer_server_ciphers = yes
    userdb {
-      args = username_format=%u /etc/dovecot/users
-      driver = passwd-file
+      args = /etc/dovecot/dovecot-ldap.conf.ext
+      driver = ldap
    }
+  dovecot-ldap.conf.ext: |
+    uris = {{ .Values.ldap.uri }}
+    auth_bind = yes
+    auth_bind_userdn = maildrop=%u,{{ .Values.ldap.base }}
+    base = {{ .Values.ldap.base }}
+    user_filter = (&(objectClass=postfixUser)(maildrop=%u))
--- a/chart/values.yaml
+++ b/chart/values.yaml
+ldap:
+  uri: ldap://example.com
+  base: dc=example,dc=com
 dovecot:
  image: registry.gitlab.exphost.pl/exphost/dovecot
  tag: v0.1.0