diff options
author | elijah <elijah@riseup.net> | 2016-02-13 23:48:48 -0800 |
---|---|---|
committer | elijah <elijah@riseup.net> | 2016-02-23 09:49:42 -0800 |
commit | 685642e8bfdaff16a4f02bd40b5d2aef15b68d94 (patch) | |
tree | 6e069cf87709f43f00b915735da0c6b18b3bed4c /provider_base/services | |
parent | 170dfcfc219471dcc4ae58949457f251fd4e067d (diff) |
get dkim working, closes #5924
Diffstat (limited to 'provider_base/services')
-rw-r--r-- | provider_base/services/mx.json | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/provider_base/services/mx.json b/provider_base/services/mx.json index 70acf5cb..676e075b 100644 --- a/provider_base/services/mx.json +++ b/provider_base/services/mx.json @@ -4,7 +4,15 @@ // these are in *addition* to the standard reserved aliases for root and postmaster, etc. "aliases": {}, // this is the domain that is used for the OpenPGP header - "key_lookup_domain": "= global.services[:webapp].webapp.domain" + "key_lookup_domain": "= global.services[:webapp].webapp.domain", + "dkim": { + // bit sizes larger than 2048 are not necessarily supported + "bit_size": 2048, + "public_key": "= remote_file_path(:dkim_pub_key) { generate_dkim_key(mx.dkim.bit_size) }", + "private_key": "= remote_file_path(:dkim_priv_key) { generate_dkim_key(mx.dkim.bit_size) }", + // generate selector based on first ten digits of pub key fingerprint: + "selector": "= fingerprint(local_file_path(:dkim_pub_key) { generate_dkim_key(mx.dkim.bit_size) }, :mode => :rsa).slice(0,10)" + } }, "stunnel": { "clients": { |