mirror of
https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git
synced 2025-12-06 15:31:38 +01:00
feat(open-xchange): Support for LDAP group based mailing lists
This commit is contained in:
Thomas Kaltenbrunner
committed by
Thorsten Roßner
Thorsten Roßner
parent
684c6d4f29
commit
cc94f0c66d
@@ -68,7 +68,8 @@ postfix:
|
|||||||
allowRelayNets: false
|
allowRelayNets: false
|
||||||
smtpTLSSecurityLevel: "encrypt"
|
smtpTLSSecurityLevel: "encrypt"
|
||||||
smtpdSASLAuthEnable: "yes"
|
smtpdSASLAuthEnable: "yes"
|
||||||
smtpdSASLSecurityOptions: "noanonymous"
|
smtpdSASLSecurityOptions: {{ .Values.smtp.security.smtpdSASLSecurityOptions | join ", " | quote }}
|
||||||
|
smtpSASLSecurityOptions: {{ .Values.smtp.security.smtpSASLSecurityOptions | join ", " | quote }}
|
||||||
smtpdSASLType: "dovecot"
|
smtpdSASLType: "dovecot"
|
||||||
smtpdTLSSecurityLevel: "encrypt"
|
smtpdTLSSecurityLevel: "encrypt"
|
||||||
smtpdTLSCertFile: "/etc/tls/tls.crt"
|
smtpdTLSCertFile: "/etc/tls/tls.crt"
|
||||||
@@ -78,6 +79,25 @@ postfix:
|
|||||||
staticAuthDB:
|
staticAuthDB:
|
||||||
enabled: false
|
enabled: false
|
||||||
|
|
||||||
|
ldapTransportMaps: []
|
||||||
|
|
||||||
|
ldapVirtualAliasMaps:
|
||||||
|
- host: "ums-ldap-server"
|
||||||
|
scheme: "ldap"
|
||||||
|
port: 389
|
||||||
|
baseDn: "{{ .Values.ldap.baseDn }}"
|
||||||
|
bindDn: "uid=ldapsearch_postfix,cn=users,{{ .Values.ldap.baseDn }}"
|
||||||
|
password:
|
||||||
|
value: {{ .Values.secrets.nubus.ldapSearch.postfix | quote }}
|
||||||
|
# ldap filter to find groups with mail address
|
||||||
|
queryFilter: "(&(|(objectClass=univentionMailList)(objectClass=posixGroup))(|(mailPrimaryAddress=%s)(mailAlternativeAddress=%s)))"
|
||||||
|
# -- use this attribute if the query already returns email addresses of members and no recursive lookup needs to be done
|
||||||
|
resultAttribute: ""
|
||||||
|
# -- do a recursive search on the specified attribute if found, should be a DN
|
||||||
|
specialResultAttribute: "uniqueMember"
|
||||||
|
# -- return the following attribute from all found leaves when a recursive search is done
|
||||||
|
leafResultAttribute: "mailPrimaryAddress"
|
||||||
|
|
||||||
{{- if .Values.antivirus.milter.host }}
|
{{- if .Values.antivirus.milter.host }}
|
||||||
smtpdMilters: "inet:{{ .Values.antivirus.milter.host }}:{{ .Values.antivirus.milter.port }}"
|
smtpdMilters: "inet:{{ .Values.antivirus.milter.host }}:{{ .Values.antivirus.milter.port }}"
|
||||||
{{- else }}
|
{{- else }}
|
||||||
|
|||||||
@@ -95,6 +95,25 @@ postfix:
|
|||||||
password:
|
password:
|
||||||
value: {{ .Values.secrets.postfix.opendeskSystemPassword | quote }}
|
value: {{ .Values.secrets.postfix.opendeskSystemPassword | quote }}
|
||||||
|
|
||||||
|
ldapTransportMaps: []
|
||||||
|
|
||||||
|
ldapVirtualAliasMaps:
|
||||||
|
- host: "ums-ldap-server"
|
||||||
|
scheme: "ldap"
|
||||||
|
port: 389
|
||||||
|
baseDn: "{{ .Values.ldap.baseDn }}"
|
||||||
|
bindDn: "uid=ldapsearch_postfix,cn=users,{{ .Values.ldap.baseDn }}"
|
||||||
|
password:
|
||||||
|
value: {{ .Values.secrets.nubus.ldapSearch.postfix | quote }}
|
||||||
|
# ldap filter to find groups with mail address
|
||||||
|
queryFilter: "(&(|(objectClass=univentionMailList)(objectClass=posixGroup))(|(mailPrimaryAddress=%s)(mailAlternativeAddress=%s)))"
|
||||||
|
# -- use this attribute if the query already returns email addresses of members and no recursive lookup needs to be done
|
||||||
|
resultAttribute: ""
|
||||||
|
# -- do a recursive search on the specified attribute if found, should be a DN
|
||||||
|
specialResultAttribute: "uniqueMember"
|
||||||
|
# -- return the following attribute from all found leaves when a recursive search is done
|
||||||
|
leafResultAttribute: "mailPrimaryAddress"
|
||||||
|
|
||||||
{{- if .Values.antivirus.milter.host }}
|
{{- if .Values.antivirus.milter.host }}
|
||||||
smtpdMilters: "inet:{{ .Values.antivirus.milter.host }}:{{ .Values.antivirus.milter.port }}"
|
smtpdMilters: "inet:{{ .Values.antivirus.milter.host }}:{{ .Values.antivirus.milter.port }}"
|
||||||
{{- else }}
|
{{- else }}
|
||||||
|
|||||||
@@ -437,7 +437,7 @@ charts:
|
|||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/platform-development/charts/opendesk-postfix"
|
repository: "bmi/opendesk/components/platform-development/charts/opendesk-postfix"
|
||||||
name: "postfix"
|
name: "postfix"
|
||||||
version: "5.0.1"
|
version: "5.0.2"
|
||||||
verify: true
|
verify: true
|
||||||
postgresql:
|
postgresql:
|
||||||
# providerCategory: "Platform"
|
# providerCategory: "Platform"
|
||||||
|
|||||||
@@ -914,7 +914,7 @@ images:
|
|||||||
# upstreamRepository: "bmi/opendesk/components/platform-development/images/postfix"
|
# upstreamRepository: "bmi/opendesk/components/platform-development/images/postfix"
|
||||||
registry: "registry.opencode.de"
|
registry: "registry.opencode.de"
|
||||||
repository: "bmi/opendesk/components/platform-development/images/postfix"
|
repository: "bmi/opendesk/components/platform-development/images/postfix"
|
||||||
tag: "3.0.3@sha256:12bcebf57ddb53258c48eaa60e9c25b441f4319ee1b94b363c652ad0a992a875"
|
tag: "3.0.4@sha256:5b17c801283215b13e8305b0be1497d70c232e8ea8414f965cd1010333ae95ab"
|
||||||
postfixBootstrap:
|
postfixBootstrap:
|
||||||
# providerCategory: "Community"
|
# providerCategory: "Community"
|
||||||
# providerResponsible: "openDesk"
|
# providerResponsible: "openDesk"
|
||||||
|
|||||||
@@ -32,6 +32,7 @@ secrets:
|
|||||||
dovecot: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_dovecot" | sha1sum | quote }}
|
dovecot: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_dovecot" | sha1sum | quote }}
|
||||||
element: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_element" | sha1sum | quote }}
|
element: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_element" | sha1sum | quote }}
|
||||||
ox: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_ox" | sha1sum | quote }}
|
ox: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_ox" | sha1sum | quote }}
|
||||||
|
postfix: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_postfix" | sha1sum | quote }}
|
||||||
openproject: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_openproject" | sha1sum | quote }}
|
openproject: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_openproject" | sha1sum | quote }}
|
||||||
xwiki: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_xwiki" | sha1sum | quote }}
|
xwiki: {{ derivePassword 1 "long" (env "MASTER_PASSWORD" | default "sovereign-workplace") "nubus" "ldapsearch_xwiki" | sha1sum | quote }}
|
||||||
systemAccounts:
|
systemAccounts:
|
||||||
|
|||||||
Reference in New Issue
Block a user