From 0084cd71699b4ad55c2912647f93afa32bbf7671 Mon Sep 17 00:00:00 2001 From: Guilhem Moulin Date: Sat, 28 May 2016 13:52:48 +0200 Subject: Remove the IMAP caching proxy. Dovecot imapc requires two authentication rounds to the IMAP backend for each connection. It seems suboptimal that Roundcube keeps connecting to the IMAP server for each new connection, but benchmarks shows little advantage in caching the IMAP sessions with imapproxy: http://www.dovecot.org/list/dovecot/2012-February/133544.html --- roles/IMAP-proxy/tasks/main.yml | 99 ----------------------------------------- 1 file changed, 99 deletions(-) delete mode 100644 roles/IMAP-proxy/tasks/main.yml (limited to 'roles/IMAP-proxy/tasks') diff --git a/roles/IMAP-proxy/tasks/main.yml b/roles/IMAP-proxy/tasks/main.yml deleted file mode 100644 index 50cfc2d..0000000 --- a/roles/IMAP-proxy/tasks/main.yml +++ /dev/null @@ -1,99 +0,0 @@ -- name: Install Dovecot - # WARNING: "The destination servers don't need to be running Dovecot, - # but you should make sure that the Dovecot proxy doesn't advertise - # more capabilities than the destination server can handle." - # http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/Proxy - apt: pkg={{ item }} default_release={{ ansible_lsb.codename }}-backports - with_items: - - dovecot-core - - dovecot-imapd - -- name: Create a user 'imapproxy' - user: name=imapproxy system=yes - createhome=no - home=/var/lib/imapproxy - shell=/usr/sbin/nologin - password=! - state=present - -- name: Create a home directory for user 'imapproxy' - file: path=/var/lib/imapproxy - state=directory - owner=imapproxy group=imapproxy - mode=0700 - -- name: Configure Dovecot - copy: src=etc/dovecot/conf.d/{{ item }} - dest=/etc/dovecot/conf.d/{{ item }} - owner=root group=root - mode=0644 - register: r1 - with_items: - - 10-auth.conf - - 10-logging.conf - - 10-mail.conf - - 10-master.conf - - 15-mailboxes.conf - notify: - - Restart Dovecot - -- name: Configure Dovecot (2) - template: src=etc/dovecot/conf.d/{{ item }}.j2 - dest=/etc/dovecot/conf.d/{{ item }} - owner=root group=root - mode=0644 - register: r2 - with_items: - - 20-imapc.conf - - auth-imap.conf.ext - notify: - - Restart Dovecot - -- name: Start Dovecot - service: name=dovecot state=started - when: not (r1.changed or r2.changed) - -- meta: flush_handlers - - -- name: Create /etc/stunnel/certs - file: path=/etc/stunnel/certs - state=directory - owner=root group=root - mode=0755 - -- name: Copy Dovecot's X.509 certificate - copy: src=certs/public/imap.fripost.org.pem - dest=/etc/stunnel/certs/imap.fripost.org.pem - owner=root group=root - mode=0644 - register: r1 - notify: - - Restart stunnel@roundcube - -- name: Copy slapd's X.509 certificate - copy: src=certs/ldap/ldap.fripost.org.pem - dest=/etc/stunnel/certs/ldap.fripost.org.pem - owner=root group=root - mode=0644 - register: r2 - notify: - - Restart stunnel@roundcube - -- name: Configure stunnel - copy: src=etc/stunnel/roundcube.conf - dest=/etc/stunnel/roundcube.conf - owner=root group=root - mode=0644 - register: r3 - notify: - - Restart stunnel@roundcube - -- name: Enable stunnel@roundcube - service: name=stunnel4@roundcube enabled=yes - -- name: Start stunnel@roundcube - service: name=stunnel4@roundcube state=started - when: not (r1.changed or r2.changed or r3.changed) - -- meta: flush_handlers -- cgit v1.2.3