1 files changed, 34 insertions, 0 deletions

diff --git a/manifests/tls.pp b/manifests/tls.pp
new file mode 100644
index 0000000..79147dd
--- /dev/null
+++ b/manifests/tls.pp
@@ -0,0 +1,34 @@
+# See http://www.exim.org/exim-html-current/doc/html/spec_html/ch39.html
+class exim::tls inherits exim {
+  file { "/etc/exim4/conf.d/router/195_exim4_config_tls_verify":
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0644,
+    source => "puppet:///modules/exim/195_exim4_config_tls_verify",
+    notify => Service["exim4"],
+  }
+
+  file { "/etc/exim4/conf.d/transport/30_exim4-config_remote_smtp_tls_verify":
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0644,
+    source => "puppet:///modules/exim/30_exim4-config_remote_smtp_tls_verify",
+    notify => Service["exim4"],
+  }
+
+  $exim_tls_verify_relay_to_domains = hiera('exim::tls_verify_relay_to_domains', '')
+
+  file { '/etc/exim4/conf.d/main/00_local_settings':
+    ensure  => $exim_tls_verify_relay_to_domains ? {
+      ''      => absent,
+      default => present,
+    },
+    owner   => root,
+    group   => root,
+    mode    => 0644,
+    content => "domainlist tls_verify_relay_to_domains = $exim_tls_verify_relay_to_domains\n",
+    notify  => Service["exim4"],
+  }
+}