generate dkim keys

1 files changed, 24 insertions, 1 deletions

diff --git a/mail/mail/manifests/mailu.pp b/mail/mail/manifests/mailu.pp
index 9e468a1..ef48876 100644
--- a/mail/mail/manifests/mailu.pp
+++ b/mail/mail/manifests/mailu.pp
@@ -2,7 +2,10 @@ class mail::mailu {
   include mail::persistent
   include docker
 
-  package { "haveged":
+  package { [
+    "haveged",
+    "opendkim-tools",
+  ]:
     ensure => installed;
   }
 
@@ -16,6 +19,9 @@ class mail::mailu {
     "/mailu/certs":
       ensure => directory,
       require => Class["mail::persistent"];
+    "/mailu/dkim":
+      ensure => directory,
+      require => Class["mail::persistent"];
     "/mailu/certs/dhparam.pem":
       source => "puppet:///modules/mail/dhparam.pem",
       require => File["/mailu/certs"];
@@ -33,6 +39,23 @@ class mail::mailu {
     ]
   }
 
+  exec { "generate dkim keys":
+    provider => shell,
+    command => "
+      opendkim-genkey -s dkim -d tozt.net
+      mv dkim.private /mailu/dkim/tozt.net.dkim.key
+      mv dkim.txt /mailu/dkim/tozt.net.dkim.pub
+    ",
+    cwd => "/mailu",
+    creates => "/mailu/dkim/tozt.net.dkim.key",
+    require => [
+      Package["haveged"],
+      Package["opendkim-tools"],
+      Class["mail::persistent"],
+      File["/mailu/dkim"],
+    ];
+  }
+
   exec { "create env file":
     provider => shell,
     command => "