mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2025-01-18 08:06:16 +01:00
38 lines
1.2 KiB
YAML
38 lines
1.2 KiB
YAML
---
|
|
|
|
- name: install opendkim
|
|
pacman: name=opendkim state=present
|
|
|
|
- name: install opendkim.conf
|
|
template: src=opendkim.conf.j2 dest=/etc/opendkim/opendkim.conf owner=root group=root mode=0644
|
|
notify:
|
|
- restart opendkim
|
|
|
|
- name: create opendkim spool directory
|
|
file: path="/var/spool/opendkim/" state=directory owner=opendkim group=postfix mode=0750
|
|
|
|
- name: install domains config
|
|
template: src=domains.j2 dest=/etc/opendkim/domains owner=root group=root mode=0644
|
|
notify:
|
|
- restart opendkim
|
|
|
|
- name: create dkim key directory
|
|
file: path="/etc/opendkim/private" state=directory owner=root group=root mode=0700
|
|
|
|
- name: generate DKIM key for {{ dkim_selector }}
|
|
command: opendkim-genkey -r -s {{ dkim_selector }} -d archlinux.org --bits=4096
|
|
args:
|
|
creates: /etc/opendkim/private/{{ dkim_selector }}.private
|
|
chdir: /etc/opendkim/private
|
|
|
|
# see README.md for instruction on how to add the key to DNS. This will fail unless the key in DNS is correct!
|
|
- name: verify key in dns
|
|
command: opendkim-testkey -d archlinux.org -s {{ dkim_selector }} -k /etc/opendkim/private/{{ dkim_selector }}.private -vvv
|
|
tags:
|
|
- dkimverify
|
|
changed_when: false
|
|
|
|
- name: start and enable opendkim
|
|
service: name=opendkim enabled=yes state=started
|
|
|