blackicedbear/dms
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

zertifikat fix

Browse Source
This commit is contained in:
Nicolas
2026-04-28 15:57:03 +02:00
parent b1dd4186ea
commit 07c4decf1b
2 changed files with 26 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docker-compose.yml
+22
View File
@@ -1,7 +1,28 @@
services:
ssl-init:
image: alpine/openssl
container_name: ssl-init
volumes:
- ./docker-data/dms/ssl/:/certs/
entrypoint: /bin/sh
command: >
-c "if [ ! -f /certs/cert.pem ]; then
openssl req -x509 -nodes -days 3650 -newkey rsa:4096
-keyout /certs/key.pem -out /certs/cert.pem
-subj '/CN=mail.byte.trail'
-addext 'subjectAltName=DNS:mail.byte.trail,DNS:byte.trail';
echo '[+] Zertifikat erstellt';
else
echo '[i] Zertifikat existiert bereits';
fi"
restart: "no"
mailserver:
image: ghcr.io/docker-mailserver/docker-mailserver:latest
container_name: mailserver
depends_on:
ssl-init:
condition: service_completed_successfully
# Provide the FQDN of your mail server here (Your DNS MX record should point to this value)
hostname: mail.byte.trail
env_file: mailserver.env
@@ -18,6 +39,7 @@ services:
- ./docker-data/dms/mail-state/:/var/mail-state/
- ./docker-data/dms/mail-logs/:/var/log/mail/
- ./docker-data/dms/config/:/tmp/docker-mailserver/
- ./docker-data/dms/ssl/:/tmp/dms-ssl/:ro
- /etc/localtime:/etc/localtime:ro
restart: always
stop_grace_period: 1m
mailserver.env
+3 -3
View File
@@ -240,12 +240,12 @@ SMTP_ONLY=
# custom => Enables custom certificates
# manual => Let's you manually specify locations of your SSL certificates for non-standard cases
# self-signed => Enables self-signed certificates
SSL_TYPE=letsencrypt
SSL_TYPE=manual
# These are only supported with `SSL_TYPE=manual`.
# Provide the path to your cert and key files that you've mounted access to within the container.
SSL_CERT_PATH=
SSL_KEY_PATH=
SSL_CERT_PATH=/tmp/dms-ssl/cert.pem
SSL_KEY_PATH=/tmp/dms-ssl/key.pem
# Optional: A 2nd certificate can be supported as fallback (dual cert support), eg ECDSA with an RSA fallback.
# Useful for additional compatibility with older MTA and MUA (eg pre-2015).
SSL_ALT_CERT_PATH=