#!/usr/bin/env ansible-playbook
---
# Deploy Mailman
- hosts: redisdead.adm.crans.org
  vars:
    mailman:
      site_list: "nounou"
      default_url: "https://lists.crans.org/"
      default_host: "lists.crans.org"
      default_language: "fr"
      auth_basic: |
        "On n'aime pas les spambots, donc on a mis un mot de passe. Le login est Stop et le mot de passe est Spam.";
    spamassassin: "SpamAssassin_crans"
    smtphost: "smtp.adm.crans.org"
    mynetworks: ['138.231.0.0/16', '185.230.76.0/22', '2a0c:700:0::/40']
    nginx:
      ssl:
        cert: /etc/letsencrypt/live/crans.org/fullchain.pem
        key: /etc/letsencrypt/live/crans.org/privkey.pem
        trusted_cert: /etc/letsencrypt/live/crans.org/chain.pem
  roles:
    - mailman
    - nginx-mailman

# Deploy Mailman3
- hosts: mailman.adm.crans.org
  vars:
    mailman3:
      site_owner: root@crans.org
      database_pass: "{{ vault_mailman3_database_pass }}"
      restadmin_pass: "{{ vault_mailman3_restadmin_pass }}"
      archiver_key: "{{ vault_mailman3_archiver_key }}"
      web_secret_key: "{{ vault_mailman3_web_secret_key }}"
      web_database_pass: "{{ vault_mailman3_web_database_pass }}"
      web_domain: "mailman.crans.org"
  roles:
    - mailman3
    - postfix-mailman3