use newest alpine

push to 3.8.2
use alpine 3.17
2024-01-01 16:44:07 +01:00 · 2023-09-26 15:57:45 +02:00 · 2022-11-23 17:38:37 +01:00 · 2022-11-13 13:11:16 +01:00 · 2022-11-13 10:23:50 +01:00 · 2022-11-13 10:22:18 +01:00
6 changed files with 28 additions and 31 deletions
--- a/.gitea/workflows/container.yaml
+++ b/.gitea/workflows/container.yaml
@ -0,0 +1,12 @@
+name: Build Multiarch Container Image
+on: [push]
+jobs:
+  call-reusable-workflow:
+    uses: container/multiarch-build-workflow/.gitea/workflows/build.yaml@main
+    with:
+      repository: ${{ gitea.repository }}
+      ref_name: ${{ gitea.ref_name }}
+      sha: ${{ gitea.sha }}
+      registry_url: ${{ secrets.REGISTRY_URL }}
+      registry_user: ${{ secrets.REGISTRY_USER }}
+      registry_pw: ${{ secrets.REGISTRY_PW }}
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@ -1,18 +0,0 @@
-variables:
-  CONTAINER_NAME: thallian/postfix
-
-build:
-  stage: build
-  image:
-    name: gcr.io/kaniko-project/executor:debug
-    entrypoint: [""]
-  script:
-    - mkdir -p /kaniko/.docker
-    - echo "{\"auths\":{\"$CI_REGISTRY\":{\"auth\":\"$(printf "%s:%s" "$CI_REGISTRY_USER" "$CI_REGISTRY_PASSWORD" | base64 | tr -d '\n')\"}}}" > /kaniko/.docker/config.json
-    - >-
-      /kaniko/executor
-      --context "$CI_PROJECT_DIR"
-      --dockerfile "$CI_PROJECT_DIR/Dockerfile"
-      --destination "$CONTAINER_NAME:$CI_COMMIT_SHA"
-      --destination "$CONTAINER_NAME:$CI_COMMIT_REF_NAME"
-      --destination "$CONTAINER_NAME:latest"
--- a/5
+++ b/5
@ -1,11 +1,12 @@
-FROM docker.io/thallian/confd-env:3.16
+FROM docker.io/thallian/confd-env:3.19-3.1.6.2

 RUN apk add --no-cache \
    postfix \
    postfix-pgsql \
    openssl \
    libstdc++ \
-    libmilter
+    libmilter \
+    icu-data-full

 RUN addgroup -g 2222 access
 RUN addgroup postfix access
--- a/README.md
+++ b/README.md
@ -9,7 +9,7 @@ create table if not exists virtual_domains (
 create table if not exists virtual_users (
 	email text primary key,
 	domain_name text not null references virtual_domains(name),
-    wildcard_sender bool default false
+  wildcard_sender bool default false
 );

 create table if not exists virtual_aliases (
--- a/rootfs/etc/confd/templates/main.cf.tmpl
+++ b/rootfs/etc/confd/templates/main.cf.tmpl
@ -1,29 +1,28 @@
-compatibility_level = 2
+compatibility_level = 3.7
+
+inet_protocols = all 

 mail_owner = postfix
 myhostname = {{getenv "MYHOSTNAME"}}
 mydomain = {{getenv "MYDOMAIN"}}
 myorigin = $mydomain
-mydestination = $myhostname, localhost
-
-proxy_interfaces = {{getenv "EXTERNAL_IP"}}

 unknown_local_recipient_reject_code = 550
-mynetworks_style = host
 relay_domains = $mydestination
 recipient_delimiter = +

 mailbox_transport = lmtp:{{getenv "LMTP_HOST"}}
 mailbox_size_limit = {{getenv "MAILBOX_SIZELIMIT" "0"}}
 smtpd_banner = {{getenv "SMTP_BANNER"}} $myhostname ESMTP $mail_name
+smtp_helo_name = $mydomain

 virtual_mailbox_maps = pgsql:/etc/postfix/pgsql-virtual-mailbox-maps.cf
 virtual_mailbox_domains = pgsql:/etc/postfix/pgsql-virtual-mailbox-domains.cf
 virtual_alias_maps = pgsql:/etc/postfix/pgsql-virtual-alias-maps.cf
 virtual_transport = lmtp:inet:{{getenv "LMTP_HOST"}}:{{getenv "LMTP_PORT"}}

-smtpd_tls_key_file=/etc/ssl/mail/tls.key
-smtpd_tls_cert_file=/etc/ssl/mail/tls.crt
+smtpd_tls_key_file=/etc/ssl/mail/key.pem
+smtpd_tls_cert_file=/etc/ssl/mail/cert.pem

 smtp_tls_security_level = {{getenv "TLS_SECURITY_LEVEL" "may"}}
 smtp_tls_auth_only = yes
@ -59,8 +58,11 @@ smtpd_sasl_auth_enable = yes
 smtpd_tls_auth_only = yes
 smtpd_sasl_tls_security_options = noanonymous

-smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination
-smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination, reject_unverified_recipient
+smtpd_relay_restrictions = 
+  permit_mynetworks
+  permit_sasl_authenticated
+  defer_unauth_destination
+  reject_sender_login_mismatch

 smtpd_sender_restrictions = reject_sender_login_mismatch
 smtpd_sender_login_maps = pgsql:/etc/postfix/pgsql-login-maps.cf
--- a/rootfs/etc/confd/templates/pgsql-login-maps.cf.tmpl
+++ b/rootfs/etc/confd/templates/pgsql-login-maps.cf.tmpl
@ -2,4 +2,4 @@ hosts = {{ getenv "DB_HOST" }}
 user = {{ getenv "DB_USER" "email" }}
 password = {{ getenv "DB_PASSWORD" }}
 dbname = {{ getenv "DB_NAME" "email" }}
-query = SELECT email FROM virtual_users WHERE email='%u' UNION SELECT destination FROM virtual_aliases WHERE source='%u' 
+query = SELECT email FROM virtual_users WHERE email='%u' UNION SELECT destination FROM virtual_aliases WHERE source='%u' UNION SELECT email FROM virtual_users WHERE wildcard_sender = true AND domain_name = '%d'
Author	SHA1	Message	Date
Sebastian Hugentobler	ccb9974ac7	use newest alpine	2024-01-01 16:44:07 +01:00
Sebastian Hugentobler	eb9d2c0a20	push to 3.8.2	2023-09-26 15:57:45 +02:00
Sebastian Hugentobler	ec6fa0f2c3	use alpine 3.17	2022-11-23 17:38:37 +01:00
Sebastian Hugentobler	00aaca260e	set helo to domain	2022-11-13 13:11:16 +01:00
Sebastian Hugentobler	2458c52211	Merge branch 'master' into k3s	2022-11-13 10:23:50 +01:00
Sebastian Hugentobler	77dedb09ac	listen on all interfaces	2022-11-13 10:22:18 +01:00
Sebastian Hugentobler	40e330c899	Add '.woodpecker.yml'	2022-11-11 07:48:23 +00:00
Sebastian Hugentobler	db1487974b	Delete '.gitlab-ci.yml'	2022-11-11 07:47:08 +00:00
Sebastian Hugentobler	fba756d7ac	readd wildcard sending functionality	2022-10-31 13:38:08 +01:00
Sebastian Hugentobler	17449cfdb4	use lego names for certificates	2022-10-28 18:02:29 +02:00