diff --git a/Dockerfile b/Dockerfile index 35cfed6..e0104b2 100644 --- a/Dockerfile +++ b/Dockerfile @@ -3,6 +3,7 @@ FROM debian:stable-slim ENTRYPOINT ["/docker-entrypoint.sh"] CMD ["/usr/sbin/saslauthd", "-d", "-a", "ldap", "-O", "/etc/sasl2/saslauthd.conf"] +COPY smtpd.conf /etc/sasl2/smtpd.conf COPY entrypoint.sh /docker-entrypoint.sh -RUN apt update && DEBIAN_FRONTEND=noninteractive apt install -y sasl2-bin libsasl2-modules-ldap && rm -rf /var/lib/apt/lists/* +RUN apt update && DEBIAN_FRONTEND=noninteractive apt install -y ca-certificates sasl2-bin libsasl2-modules-ldap && rm -rf /var/lib/apt/lists/* diff --git a/entrypoint.sh b/entrypoint.sh index 04274cd..4386fe4 100755 --- a/entrypoint.sh +++ b/entrypoint.sh @@ -1,7 +1,5 @@ #!/bin/sh -mkdir -p /etc/sasl2/ - cat < /etc/sasl2/saslauthd.conf ldap_servers: ${LDAP_SERVERS} ldap_search_base: ${LDAP_SEARCH_BASE} @@ -12,7 +10,7 @@ ldap_bind_pw: ${LDAP_BIND_PW} ldap_auth_method: ${LDAP_AUTH_METHOD:-bind} ldap_deref: ${LDAP_DEREF:-find} ldap_ssl: ${LDAP_SSL:-on} -ldap_tls_cacert_dir: ${LDAP_TLS_CACERT_DIR:-/usr/share/ca-certificates/mozilla/ISRG_Root_X1.crt} +ldap_tls_cacert_file: ${LDAP_TLS_CACERT_FILE:-/usr/share/ca-certificates/mozilla/ISRG_Root_X1.crt} ldap_group_attr: ${LDAP_GROUP_ATTR:-member} ldap_group_dn: ${LDAP_GROUP_DN} diff --git a/smtpd.conf b/smtpd.conf new file mode 100644 index 0000000..1290b6a --- /dev/null +++ b/smtpd.conf @@ -0,0 +1,2 @@ +pwcheck_method:saslauthd +mech_list: PLAIN LOGIN