Home Explore Help
Sign In
Hoshpak
/
acme-updater
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e43cb383ab
Branches Tags
acme-updater
/
amulib
/
postfix.py

postfix.py 1.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839 
  1. # SPDX-FileCopyrightText: 2016-2017 Helmut Pozimski <helmut@pozimski.eu>
    2. 

  2. #
    3. 

  3. # SPDX-License-Identifier: GPL-2.0-only
    4. 

  4. 

  5. 

  6. # -*- coding: utf8 -*-
    7. 

  7. 

  8. """ Contains the postfix module which manages certificates for the postfix
    9. 

  9. mail server.
    10. 

  10. """
    11. 

  11. 

  12. import socket
    13. 

  13. 

  14. from amulib import service
    15. 

  15. 

  16. 

  17. def run(config=None, acme_dir="/var/lib/acme",
    18. 

  18.         named_key_path="/run/named/session.key",
    19. 

  19.         dns_server="localhost"):
    20. 

  20.     """ manages the certificates for postfix
    21. 

  21. 

  22.     :param config: configuration for the service
    23. 

  23.     :type config: dict
    24. 

  24.     :param acme_dir: path to the acme state dir
    25. 

  25.     :type acme_dir: str
    26. 

  26.     :param named_key_path: path to the named session.key
    27. 

  27.     :type named_key_path: str
    28. 

  28.     :param dns_server: DNS server to use to create TLSA records
    29. 

  29.     :type dns_server: str
    30. 

  30.     """
    31. 

  31.     hostname = socket.gethostname()
    32. 

  32.     if not config:
    33. 

  33.         config = {
    34. 

  34.             "certificate_path": "/etc/postfix/%s.crt" % hostname,
    35. 

  35.             "key_path": "/etc/postfix/%s.key" % hostname,
    36. 

  36.             "tlsa": True,
    37. 

  37.             "tlsa_ports": [25, 465, 587]
    38. 

  38.         }
    39. 

  39.     service.run("postfix", config, acme_dir, named_key_path, dns_server)
    40.