Switch dovecot to bottin2 & put secret in own consul key

author: Alex Auvolat <alex@adnab.me> 2020-02-11 22:42:28 +0100
committer: Alex Auvolat <alex@adnab.me> 2020-02-11 22:53:29 +0100
commit: cd6da5d52f7e869c83e4a55bf762d9d6b0c96b09 (patch)
tree: 248aeba32981585f7e2f5c8b6805028a30e53209 /consul/configuration/email/dovecot/dovecot-ldap.conf.tpl
parent: a552f67e9433a476c49db0b7166538f1d3d68f47 (diff)
download: infrastructure-cd6da5d52f7e869c83e4a55bf762d9d6b0c96b09.tar.gz
infrastructure-cd6da5d52f7e869c83e4a55bf762d9d6b0c96b09.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/consul/configuration/email/dovecot/dovecot-ldap.conf.tpl b/consul/configuration/email/dovecot/dovecot-ldap.conf.tpl
new file mode 100644
index 0000000..9fb1ea6
--- /dev/null
+++ b/consul/configuration/email/dovecot/dovecot-ldap.conf.tpl
@@ -0,0 +1,8 @@
+hosts = bottin2.service.2.cluster.deuxfleurs.fr
+dn = {{ key "secrets/email/dovecot/ldap_binddn" | trimSpace }}
+dnpass = {{ key "secrets/email/dovecot/ldap_bindpwd" | trimSpace }}
+base = dc=deuxfleurs,dc=fr
+scope = subtree
+user_filter = (&(mail=%u)(&(objectClass=inetOrgPerson)(memberOf=cn=email,ou=groups,dc=deuxfleurs,dc=fr)))
+pass_filter = (&(mail=%u)(&(objectClass=inetOrgPerson)(memberOf=cn=email,ou=groups,dc=deuxfleurs,dc=fr)))
+user_attrs = mail=/var/mail/%{ldap:mail}
author	Alex Auvolat <alex@adnab.me>	2020-02-11 22:42:28 +0100
committer	Alex Auvolat <alex@adnab.me>	2020-02-11 22:53:29 +0100
commit	cd6da5d52f7e869c83e4a55bf762d9d6b0c96b09 (patch)
tree	248aeba32981585f7e2f5c8b6805028a30e53209 /consul/configuration/email/dovecot/dovecot-ldap.conf.tpl
parent	a552f67e9433a476c49db0b7166538f1d3d68f47 (diff)
download	infrastructure-cd6da5d52f7e869c83e4a55bf762d9d6b0c96b09.tar.gz infrastructure-cd6da5d52f7e869c83e4a55bf762d9d6b0c96b09.zip