bstein/titan-iac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

mailu: enable smtpd sasl auth

Browse Source
This commit is contained in:
Brad Stein 2026-01-06 14:06:55 -03:00
parent c693e695b4
commit 4d92263871
2 changed files with 35 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
scripts/nextcloud-maintenance.sh
View File

@ -22,6 +22,35 @@ run_occ theming:config url "https://cloud.bstein.dev"
run_occ theming:config color "#0f172a" run_occ theming:config color "#0f172a"
run_occ theming:config disable-user-theming yes run_occ theming:config disable-user-theming yes
log "Applying Atlas Mail styling defaults"
run_occ app:install customcss >/dev/null 2>&1 || true
run_occ app:enable customcss >/dev/null 2>&1 || true
MAIL_CSS=$(cat <<'CSS'
.mail-message-body, .mail-message-body pre, .mail-message-body code, .mail-message-body table {
font-family: "Inter", "Source Sans 3", "Helvetica Neue", Arial, sans-serif;
font-size: 14px;
line-height: 1.6;
color: var(--color-main-text);
}
.mail-message-body pre {
background: rgba(15, 23, 42, 0.06);
padding: 12px;
border-radius: 8px;
}
.mail-message-body blockquote {
border-left: 3px solid var(--color-border);
padding-left: 12px;
margin: 8px 0;
color: var(--color-text-lighter);
}
.mail-message-body img {
max-width: 100%;
border-radius: 6px;
}
CSS
)
run_occ config:app:set customcss css --value "${MAIL_CSS}" >/dev/null
log "Setting default quota to 200 GB" log "Setting default quota to 200 GB"
run_occ config:app:set files default_quota --value "200 GB" run_occ config:app:set files default_quota --value "200 GB"

6
services/mailu/helmrelease.yaml
View File

@ -220,11 +220,17 @@ spec:
postfix.cf: | postfix.cf: |
smtpd_helo_required = yes smtpd_helo_required = yes
smtpd_helo_restrictions = reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname smtpd_helo_restrictions = reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = noanonymous
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_pipelining smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_pipelining
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_non_fqdn_recipient, reject_unknown_recipient_domain smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_non_fqdn_recipient, reject_unknown_recipient_domain
smtpd_relay_restrictions = permit_sasl_authenticated, reject_unauth_destination smtpd_relay_restrictions = permit_sasl_authenticated, reject_unauth_destination
smtpd_sender_restrictions = reject_non_fqdn_sender, reject_unknown_sender_domain, reject_sender_login_mismatch, reject_authenticated_sender_login_mismatch smtpd_sender_restrictions = reject_non_fqdn_sender, reject_unknown_sender_domain, reject_sender_login_mismatch, reject_authenticated_sender_login_mismatch
smtpd_tls_auth_only = yes smtpd_tls_auth_only = yes
smtpd_forbid_unauth_pipelining = yes
smtpd_client_connection_rate_limit = 30 smtpd_client_connection_rate_limit = 30
smtpd_client_message_rate_limit = 100 smtpd_client_message_rate_limit = 100
smtpd_client_recipient_rate_limit = 200 smtpd_client_recipient_rate_limit = 200