63dbc331a1
Some checks failed
Build smtp-relay / build (push) Failing after 53s
Manual chmod 1730 on maildrop caused postsuper scan_dir_push failures because the group (postdrop) lacked read permission. Let Postfix set the exact permissions it expects via set-permissions. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
26 lines
787 B
Bash
26 lines
787 B
Bash
#!/usr/bin/env bash
|
|
set -euo pipefail
|
|
|
|
# Required (from ExternalSecret)
|
|
: "${RELAY_AUTH_USER:?Missing RELAY_AUTH_USER}"
|
|
: "${RELAY_AUTH_PASS:?Missing RELAY_AUTH_PASS}"
|
|
: "${RELAY_AUTH_DOMAIN:?Missing RELAY_AUTH_DOMAIN}"
|
|
|
|
# Optional hostname override
|
|
if [ -n "${POSTFIX_MYHOSTNAME:-}" ]; then
|
|
echo "${POSTFIX_MYHOSTNAME}" > /etc/mailname
|
|
postconf -e "myhostname=${POSTFIX_MYHOSTNAME}"
|
|
fi
|
|
|
|
# Create SASL user in sasldb2
|
|
echo "${RELAY_AUTH_PASS}" | saslpasswd2 -p -c -u "${RELAY_AUTH_DOMAIN}" "${RELAY_AUTH_USER}"
|
|
|
|
chown root:sasl /etc/sasldb2 2>/dev/null || true
|
|
chmod 640 /etc/sasldb2 2>/dev/null || true
|
|
|
|
# Postfix spool and state directories (required inside container)
|
|
mkdir -p /var/spool/postfix /var/lib/postfix
|
|
postfix set-permissions 2>/dev/null || true
|
|
|
|
exec postfix start-fg
|