Go to file
Sebastian Hugentobler 09cf75eccb
ci/woodpecker/push/woodpecker Pipeline was successful Details
ci/woodpecker/tag/woodpecker Pipeline was successful Details
push to 2.3.21
2023-09-26 16:05:12 +02:00
rootfs disable service chroots until I understand the problems properly 2023-02-16 22:15:08 +01:00
.gitignore initial commit 2016-07-06 10:58:48 +02:00
.woodpecker.yml Add '.woodpecker.yml' 2022-11-11 07:50:53 +00:00
Dockerfile push to 2.3.21 2023-09-26 16:05:12 +02:00
README.md correct username format 2022-01-22 20:26:16 +01:00

README.md

Dovecot with imap, starttls, oauth2 proxy auth and sieve rules.

Uses SSMTP to send mails (for example if you have a redirect sieve rule).

Volumes

  • /var/lib/vmail/mail

Environment Variables

HOSTNAME

Fully qualified name of the mail host.

GRANT_URL

OAuth2 url for token grants (password grant type).

INTROSPECTION_URL

OAuth2 url for token information.

USER_URL

OAuth2 url for getting available users, the username will be appended to the end.

TOKENINFO_URL

OAuth2 url for requestion information about a token.

CLIENT_ID

Id of the OAuth2 application.

CLIENT_SECRET

Secret of the OAuth2 application.

OAUTH_ADMIN_USER

User with which to perform user lookups (does not have to be an admin, but needs enough rights for that).

OAUTH_ADMIN_PASSWORD

Password for the OAUTH_ADMIN_USER.

SSMTP_MAIL_RELAY

Hostname and port for the used smtp relay (for example mail.example.com:587).

SSMTP_USER

User to authenticate agains the smtp relay.

SSMTP_PASSWORD

Password to authenticate agains the smtp relay.

SSMTP_AUTH_METHOD

  • default: LOGIN

Which authentication mechanism to use for the smtp relay.

SSMTP_USE_STARTTLS

  • default: yes

Whether to use starttls for the smtp relay.

ALLOWED_USERNAME_CHARS

  • default: äöüabcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@

List of characters allowed in a username.

AUTH_MECHANISMS

  • default: plain

Space seperated list of supported authentication mechanisms.

SSL_MIN_PROTOCOL

  • default: TLSv1.2

Ssl minimum protocol version.

SSL_CIPHERLIST

  • default: ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256

Colon seperated list of supported ciphers (!disables a cipher).

Go here for a list of ciphers.

IMAP_MAX_USER_CONNECTIONS

  • default: 10

Maximum number of connections from the same user + ip.

Ports

  • 143

Capabilities

  • CHOWN
  • DAC_OVERRIDE
  • FOWNER
  • NET_BIND_SERVICE
  • SETGID
  • SETUID
  • SYS_CHROOT