journalwatch: ignore some openvpn messages

[ansible.git] / roles / email / tasks / dovecot.yml

diff --git a/roles/email/tasks/dovecot.yml b/roles/email/tasks/dovecot.yml
index f4929eb320dfa7bf4dbc72999cc880708dfd180a..5d8ef0c38f051744879021508f2a84d821d24f02 100644 (file)
--- a/roles/email/tasks/dovecot.yml
+++ b/roles/email/tasks/dovecot.yml
@@ -22,7 +22,7 @@
   template:
     dest: /etc/dovecot/{{ item }}
     src: templates/dovecot/{{ item }}
-    mode: u=rw,g=r,o=
+    mode: u=rw,g=r,o=r # changepw needs read access
     group: dovecot
   loop:
   - conf.d/10-auth.conf
@@ -34,9 +34,38 @@
   - conf.d/20-lmtp.conf
   - conf.d/90-quota.conf
   - conf.d/auth-sql.conf.ext
+- name: configure dovecot secrets
+  notify: dovecot
+  template:
+    dest: /etc/dovecot/{{ item }}
+    src: templates/dovecot/{{ item }}
+    mode: u=rw,g=r,o=
+    group: dovecot
+  loop:
   - dovecot-sql.conf.ext
 - name: install quota notification script
   template:
     dest: /etc/dovecot/quota-warning.sh
     src: templates/dovecot/quota-warning.sh
     mode: +x
+# scripts
+- name: create newmail dir
+  file: path=/root/newmail state=directory
+- name: install newmail script
+  template:
+    dest: /root/newmail/newmail
+    src: templates/newmail/newmail
+    mode: u=rwx,g=rx,o=rx
+- name: install newmail config
+  template:
+    dest: /root/newmail/{{ item }}
+    src: templates/newmail/{{ item }}
+  loop:
+  - templates.py
+  - settings.py
+- name: install changepw script
+  when: postfix.dovecot.changepw_cgi is defined
+  template:
+    dest: "{{postfix.dovecot.changepw_cgi}}"
+    src: templates/changepw
+    mode: u=rwx,g=rx,o=