Forge Home

opendkim

Manage an OpenDKIM configuration
Project URLRSS FeedReport issues

108,633 downloads

47 latest version

5.0 quality score

We run a couple of automated
scans to help you access a
module's quality. Each module is
given a score based on how well
the author has formatted their
code and documentation and
modules are also checked for
malware using VirusTotal.

Please note, the information below
is for guidance only and neither of
these methods should be considered
an endorsement by Puppet.

Version information

  • 0.4.3 (latest)
  • 0.4.2
  • 0.3.0
  • 0.2.9
  • 0.2.8
  • 0.2.7
  • 0.2.6
  • 0.2.5
  • 0.2.4
  • 0.2.3
  • 0.1.2
  • 0.1.1
  • 0.1.0
  • 0.0.9
  • 0.0.8
  • 0.0.7
  • 0.0.6
  • 0.0.5
  • 0.0.4
  • 0.0.3
  • 0.0.2
  • 0.0.1
released Mar 24th 2025
This version is compatible with:
  • Puppet Enterprise 2023.2.x, 2023.1.x, 2023.0.x, 2021.7.x, 2021.6.x, 2021.5.x, 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x, 2019.8.x
  • Puppet >= 6.24.0 < 8.0.0
  • , , , ,

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'lvicainne-opendkim', '0.4.3'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add lvicainne-opendkim
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install lvicainne-opendkim --version 0.4.3

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Download
Tags: mail, smtp, dkim, opendkim

Documentation

lvicainne/opendkim — version 0.4.3 Mar 24th 2025

OpenDKIM

Puppet Forge Build Status

Table of Contents

  1. Description
  2. Setup - The basics of getting started with OpenDKIM
  3. Usage - Configuration options and additional functionality
  4. Reference - An under-the-hood peek at what the module is doing and how
  5. Limitations - OS compatibility, etc.
  6. Development - Guide for contributing to the module

Description

A Puppet module to install and manage OpenDKIM

Setup

What OpenDKIM affects {#what-opendkim-module-affects}

  • install OpenDKIM package
  • modify the configuration file /etc/opendkim.conf
  • add and modify files in /etc/opendkim
  • purge /etc/opendkim and /etc/dkim from all unuseful files

Warning : this package will replace all your RSA keys ! Before using it, be sure to add all your keys in Hiera !

Beginning with OpenDKIM

A basic example is as follows:

class { '::opendkim':
  socket        => 'inet:8891@127.0.0.1',
  trusted_hosts => ['::1','127.0.0.1','localhost'],
  keys          => [
      { 
          domain         => 'mydomain.com',
          selector       => 'default',
          publickey      => 'p=yourPublicKey',
          privatekey     => 'Your Private Key',
          signingdomains => ['*@mydomain.com', '*@subdomain.mydomain.com'],
      }
  ]
}

Usage

You can also use natively Hiera :

include ::opendkim

opendkim::socket: 'inet:8891@127.0.0.1'
opendkim::trusted_hosts:
    - '::1'
    - '127.0.0.1'
    - 'localhost'
opendkim::keys:
    - domain: mydomain.com
      selector: default
      hash_algorithms: "sha1256"
      publickey: "p=yourPublicKey"
      publickeyextended: "secondLineofPublicKey"
      privatekey: | 
        -----BEGIN RSA PRIVATE KEY-----
        Your Private Key
        -----END RSA PRIVATE KEY-----
      signingdomains: 
          - '*@mydomain.com'
          - '*@subdomain.mydomain.com'

If you want to use OpenDKIM though a UNIX socket with postfix for example, you should configure the socket like this :

opendkim::socket: 'local:/var/run/opendkim/opendkim.sock'
opendkim::umask: '0111'

Reference

Public Classes

Class: opendkim

A class for installing the OpenDKIM package and manipulate settings in the configuration file.

Attributes

configdir
configfile
keys
gid
group
homedir
uid
umask
user
log_why
package_name
service_ensure
service_enable
service_name
socket
subdomains
sysconfigfile
trusted_hosts
mode
canonicalization
removeoldsignatures
maximum_signed_bytes
trustanchorfile

Limitations

This module has only been tested on my Debian and Centos servers. I can not guarantee for any other Operating System

Development

You are pleased to fork this module and adapt it for you needs. I am open to any Pull Request :-)