vps/roles/mailserver/tasks/setup.yml

- name: "(Re)Create {{ project_dir }} project directory"
  file:
    path: "{{ project_dir }}"
    state: "{{ item }}"
  loop:
    - absent
    - directory

- name: Template docker-compose.yaml & config.toml to project directory
  template:
    src: "{{ item }}"
    dest: "{{ project_dir }}/{{ item }}"
    owner: "{{ host_uid }}"
    group: "{{ users['mailserver'] + uid_shift }}"
    mode: '660'
  loop:
    - docker-compose.yaml
    - config.toml
  become: true

- name: Set limited permissions on certificate directories
  file:
    path: "/etc/{{ item }}"
    state: directory
    owner: root
    group: root
    mode: '751'
  become: true
  loop:
    - letsencrypt
    - letsencrypt/live
    - letsencrypt/archive

- name: Set limited permissions on certificate directories
  file:
    path: "/etc/letsencrypt/{{ item }}/mail.{{ domain }}"
    state: directory
    owner: root
    group: "{{ host_uid }}"
    mode: '550'
  become: true
  loop:
    - live
    - archive

- name: Set limited permissions on certificate key file
  file:
    path: "/etc/letsencrypt/live/mail.{{ domain }}/privkey.pem"
    owner: root
    group: "{{ host_uid }}"
    mode: '640'
  become: true
Split setup & updates tasks to allow running only update ones. 2024-04-20 12:17:10 +02:00			`- name: "(Re)Create {{ project_dir }} project directory"`
			`file:`
			`path: "{{ project_dir }}"`
			`state: "{{ item }}"`
			`loop:`
			`- absent`
			`- directory`

Update Stalwart mailserver to 0.7.3 from 0.6.0. 2024-05-02 22:49:00 +02:00			`- name: Template docker-compose.yaml & config.toml to project directory`
Split setup & updates tasks to allow running only update ones. 2024-04-20 12:17:10 +02:00			`template:`
Update Stalwart mailserver to 0.7.3 from 0.6.0. 2024-05-02 22:49:00 +02:00			`src: "{{ item }}"`
			`dest: "{{ project_dir }}/{{ item }}"`
Split setup & updates tasks to allow running only update ones. 2024-04-20 12:17:10 +02:00			`owner: "{{ host_uid }}"`
			`group: "{{ users['mailserver'] + uid_shift }}"`
Update Stalwart mailserver to 0.7.3 from 0.6.0. 2024-05-02 22:49:00 +02:00			`mode: '660'`
			`loop:`
			`- docker-compose.yaml`
			`- config.toml`
Split setup & updates tasks to allow running only update ones. 2024-04-20 12:17:10 +02:00			`become: true`

			`- name: Set limited permissions on certificate directories`
			`file:`
			`path: "/etc/{{ item }}"`
			`state: directory`
			`owner: root`
			`group: root`
			`mode: '751'`
			`become: true`
			`loop:`
			`- letsencrypt`
			`- letsencrypt/live`
			`- letsencrypt/archive`

			`- name: Set limited permissions on certificate directories`
			`file:`
			`path: "/etc/letsencrypt/{{ item }}/mail.{{ domain }}"`
			`state: directory`
			`owner: root`
			`group: "{{ host_uid }}"`
			`mode: '550'`
			`become: true`
			`loop:`
			`- live`
			`- archive`

			`- name: Set limited permissions on certificate key file`
			`file:`
			`path: "/etc/letsencrypt/live/mail.{{ domain }}/privkey.pem"`
			`owner: root`
			`group: "{{ host_uid }}"`
			`mode: '640'`
			`become: true`