puppet-prod

unkin/puppet-prod

Fork 0

Commit Graph

Author	SHA1	Message	Date
Ben Vincent	9eff241003	feat: add SMTP submission listener and enhance stalwart configuration (#425 ) - add SMTP submission listener on port 587 with TLS requirement - configure HAProxy frontend/backend for submission with send-proxy-v2 support - add send-proxy-v2 support to all listeners - add dynamic HAProxy node discovery for proxy trusted networks - use service hostname instead of node FQDN for autoconfig/autodiscover - remove redundant IMAP/IMAPS/SMTP alt-names from TLS certificates - update VRRP CNAME configuration to use mail.main.unkin.net Reviewed-on: #425	2025-11-09 18:48:06 +11:00
Ben Vincent	9dd74013ea	feat: create stalwart module (#418 ) - add stalwart module - add psql database on the shared patroni instance - add ceph-rgw credentials to eyaml - ensure psql pass and s3 access key are converted to sensitive Reviewed-on: #418	2025-11-08 19:09:30 +11:00

Author

SHA1

Message

Date

Ben Vincent

9eff241003

feat: add SMTP submission listener and enhance stalwart configuration (#425 )

- add SMTP submission listener on port 587 with TLS requirement
- configure HAProxy frontend/backend for submission with send-proxy-v2 support
- add send-proxy-v2 support to all listeners
- add dynamic HAProxy node discovery for proxy trusted networks
- use service hostname instead of node FQDN for autoconfig/autodiscover
- remove redundant IMAP/IMAPS/SMTP alt-names from TLS certificates
- update VRRP CNAME configuration to use mail.main.unkin.net

Reviewed-on: #425

2025-11-09 18:48:06 +11:00

Ben Vincent

9dd74013ea

feat: create stalwart module (#418 )

- add stalwart module
- add psql database on the shared patroni instance
- add ceph-rgw credentials to eyaml
- ensure psql pass and s3 access key are converted to sensitive

Reviewed-on: #418

2025-11-08 19:09:30 +11:00

2 Commits