탐색 도움말
로그인
mirrors
/
mailcow-dockerized
의 미러 https://github.com/mailcow/mailcow-dockerized
2
0
포크 0
파일 이슈 0 위키
트리: f3dfe346bf
브랜치 태그
mailcow-dockeri...
/
data
/
Dockerfiles
/
dovecot
/
docker-entrypoint.sh

docker-entrypoint.sh 6.0 KB
히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. #!/bin/bash
    2. 

  2. set -e
    3. 

  3. 

  4. # Wait for MySQL to warm-up
    5. 

  5. while ! mysqladmin status --socket=/var/run/mysqld/mysqld.sock -u${DBUSER} -p${DBPASS} --silent; do
    6. 

  6.   echo "Waiting for database to come up..."
    7. 

  7.   sleep 2
    8. 

  8. done
    9. 

  9. 

  10. # Hard-code env vars to scripts due to cron not passing them to the perl script
    11. 

  11. sed -i "/^\$DBUSER/c\\\$DBUSER='${DBUSER}';" /usr/local/bin/imapsync_cron.pl
    12. 

  12. sed -i "/^\$DBPASS/c\\\$DBPASS='${DBPASS}';" /usr/local/bin/imapsync_cron.pl
    13. 

  13. sed -i "/^\$DBNAME/c\\\$DBNAME='${DBNAME}';" /usr/local/bin/imapsync_cron.pl
    14. 

  14. sed -i "s/LOG_LINES/${LOG_LINES}/g" /usr/local/bin/trim_logs.sh
    15. 

  15. 

  16. # Create missing directories
    17. 

  17. [[ ! -d /usr/local/etc/dovecot/sql/ ]] && mkdir -p /usr/local/etc/dovecot/sql/
    18. 

  18. [[ ! -d /var/vmail/_garbage ]] && mkdir -p /var/vmail/_garbage
    19. 

  19. [[ ! -d /var/vmail/sieve ]] && mkdir -p /var/vmail/sieve
    20. 

  20. [[ ! -d /etc/sogo ]] && mkdir -p /etc/sogo
    21. 

  21. [[ ! -d /var/volatile ]] && mkdir -p /var/volatile
    22. 

  22. 

  23. # Set Dovecot sql config parameters, escape " in db password
    24. 

  24. DBPASS=$(echo ${DBPASS} | sed 's/"/\\"/g')
    25. 

  25. 

  26. # Create quota dict for Dovecot
    27. 

  27. cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-quota.conf
    28. 

  28. connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
    29. 

  29. map {
    30. 

  30.   pattern = priv/quota/storage
    31. 

  31.   table = quota2
    32. 

  32.   username_field = username
    33. 

  33.   value_field = bytes
    34. 

  34. }
    35. 

  35. map {
    36. 

  36.   pattern = priv/quota/messages
    37. 

  37.   table = quota2
    38. 

  38.   username_field = username
    39. 

  39.   value_field = messages
    40. 

  40. }
    41. 

  41. EOF
    42. 

  42. 

  43. # Create dict used for sieve pre and postfilters
    44. 

  44. cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-sieve_before.conf
    45. 

  45. connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
    46. 

  46. map {
    47. 

  47.   pattern = priv/sieve/name/\$script_name
    48. 

  48.   table = sieve_before
    49. 

  49.   username_field = username
    50. 

  50.   value_field = id
    51. 

  51.   fields {
    52. 

  52.     script_name = \$script_name
    53. 

  53.   }
    54. 

  54. }
    55. 

  55. map {
    56. 

  56.   pattern = priv/sieve/data/\$id
    57. 

  57.   table = sieve_before
    58. 

  58.   username_field = username
    59. 

  59.   value_field = script_data
    60. 

  60.   fields {
    61. 

  61.     id = \$id
    62. 

  62.   }
    63. 

  63. }
    64. 

  64. EOF
    65. 

  65. 

  66. cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-sieve_after.conf
    67. 

  67. connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
    68. 

  68. map {
    69. 

  69.   pattern = priv/sieve/name/\$script_name
    70. 

  70.   table = sieve_after
    71. 

  71.   username_field = username
    72. 

  72.   value_field = id
    73. 

  73.   fields {
    74. 

  74.     script_name = \$script_name
    75. 

  75.   }
    76. 

  76. }
    77. 

  77. map {
    78. 

  78.   pattern = priv/sieve/data/\$id
    79. 

  79.   table = sieve_after
    80. 

  80.   username_field = username
    81. 

  81.   value_field = script_data
    82. 

  82.   fields {
    83. 

  83.     id = \$id
    84. 

  84.   }
    85. 

  85. }
    86. 

  86. EOF
    87. 

  87. 

  88. echo -n ${ACL_ANYONE} > /usr/local/etc/dovecot/acl_anyone
    89. 

  89. 

  90. # Create userdb dict for Dovecot
    91. 

  91. cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-userdb.conf
    92. 

  92. driver = mysql
    93. 

  93. connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
    94. 

  94. user_query = SELECT CONCAT(JSON_UNQUOTE(JSON_EXTRACT(attributes, '$.mailbox_format')), mailbox_path_prefix, '%d/%n/:VOLATILEDIR=/var/volatile/%u') AS mail, 5000 AS uid, 5000 AS gid, concat('*:bytes=', quota) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1'
    95. 

  95. iterate_query = SELECT username FROM mailbox WHERE active='1';
    96. 

  96. EOF
    97. 

  97. 

  98. # Create pass dict for Dovecot
    99. 

  99. cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-passdb.conf
    100. 

  100. driver = mysql
    101. 

  101. connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
    102. 

  102. default_pass_scheme = SSHA256
    103. 

  103. password_query = SELECT password FROM mailbox WHERE active = '1' AND username = '%u' AND domain IN (SELECT domain FROM domain WHERE domain='%d' AND active='1') AND JSON_EXTRACT(attributes, '$.force_pw_update') NOT LIKE '%%1%%'
    104. 

  104. EOF
    105. 

  105. 

  106. # Create global sieve_after script
    107. 

  107. cat /usr/local/etc/dovecot/sieve_after > /var/vmail/sieve/global.sieve
    108. 

  108. 

  109. # Check permissions of vmail/attachments directory.
    110. 

  110. # Do not do this every start-up, it may take a very long time. So we use a stat check here.
    111. 

  111. if [[ $(stat -c %U /var/vmail/) != "vmail" ]] ; then chown -R vmail:vmail /var/vmail ; fi
    112. 

  112. if [[ $(stat -c %U /var/vmail/_garbage) != "vmail" ]] ; then chown -R vmail:vmail /var/vmail/_garbage ; fi
    113. 

  113. if [[ $(stat -c %U /var/attachments) != "vmail" ]] ; then chown -R vmail:vmail /var/attachments ; fi
    114. 

  114. 

  115. # Create random master for SOGo sieve features
    116. 

  116. RAND_USER=$(cat /dev/urandom | tr -dc 'a-z0-9' | fold -w 16 | head -n 1)
    117. 

  117. RAND_PASS=$(cat /dev/urandom | tr -dc 'a-z0-9' | fold -w 24 | head -n 1)
    118. 

  118. 

  119. echo ${RAND_USER}@mailcow.local:{SHA1}$(echo -n ${RAND_PASS} | sha1sum | awk '{print $1}') > /usr/local/etc/dovecot/dovecot-master.passwd
    120. 

  120. echo ${RAND_USER}@mailcow.local::5000:5000:::: > /usr/local/etc/dovecot/dovecot-master.userdb
    121. 

  121. echo ${RAND_USER}@mailcow.local:${RAND_PASS} > /etc/sogo/sieve.creds
    122. 

  122. 

  123. # 401 is user dovecot
    124. 

  124. if [[ ! -s /mail_crypt/ecprivkey.pem || ! -s /mail_crypt/ecpubkey.pem ]]; then
    125. 

  125. 	openssl ecparam -name prime256v1 -genkey | openssl pkey -out /mail_crypt/ecprivkey.pem
    126. 

  126. 	openssl pkey -in /mail_crypt/ecprivkey.pem -pubout -out /mail_crypt/ecpubkey.pem
    127. 

  127. 	chown 401 /mail_crypt/ecprivkey.pem /mail_crypt/ecpubkey.pem
    128. 

  128. else
    129. 

  129. 	chown 401 /mail_crypt/ecprivkey.pem /mail_crypt/ecpubkey.pem
    130. 

  130. fi
    131. 

  131. 

  132. # Compile sieve scripts
    133. 

  133. sievec /var/vmail/sieve/global.sieve
    134. 

  134. sievec /usr/local/lib/dovecot/sieve/report-spam.sieve
    135. 

  135. sievec /usr/local/lib/dovecot/sieve/report-ham.sieve
    136. 

  136. 

  137. # Fix permissions
    138. 

  138. chown root:root /usr/local/etc/dovecot/sql/*.conf
    139. 

  139. chown root:dovecot /usr/local/etc/dovecot/sql/dovecot-dict-sql-sieve* /usr/local/etc/dovecot/sql/dovecot-dict-sql-quota*
    140. 

  140. chmod 640 /usr/local/etc/dovecot/sql/*.conf
    141. 

  141. chown -R vmail:vmail /var/vmail/sieve
    142. 

  142. chown -R vmail:vmail /var/volatile
    143. 

  143. adduser vmail tty
    144. 

  144. chmod g+rw /dev/console
    145. 

  145. 

  146. # Fix more than 1 hardlink issue
    147. 

  147. touch /etc/crontab /etc/cron.*/*
    148. 

  148. 

  149. # Clean old PID if any
    150. 

  150. [[ -f /usr/local/var/run/dovecot/master.pid ]] && rm /usr/local/var/run/dovecot/master.pid
    151. 

  151. 

  152. # Clean stopped imapsync jobs
    153. 

  153. rm -f /tmp/imapsync_busy.lock
    154. 

  154. IMAPSYNC_TABLE=$(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SHOW TABLES LIKE 'imapsync'" -Bs)
    155. 

  155. [[ ! -z ${IMAPSYNC_TABLE} ]] && mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "UPDATE imapsync SET is_running='0'"
    156. 

  156. 

  157. # Envsubst maildir_gc
    158. 

  158. envsubst < /usr/local/bin/maildir_gc.sh > /usr/local/bin/maildir_gc.sh
    159. 

  159. 

  160. # Collect SA rules once now
    161. 

  161. /usr/local/bin/sa-rules.sh
    162. 

  162. 

  163. exec "$@"
    164.