NAME
mongodb_table - Postfix MongoDB client configuration
SYNOPSIS
postmap -q "string" mongodb:/etc/postfix/filename
postmap -q - mongodb:/etc/postfix/filename <inputfile
DESCRIPTION
The Postfix mail system uses optional tables for address rewriting or mail routing. These tables are usually in dbm or db format.
Alternatively,
lookup tables can be specified as MongoDB databases. In
order to use MongoDB lookups, define a MongoDB source as a
lookup table in main.cf, for example:
alias_maps = mongodb:/etc/postfix/mongodb-aliases.cf
In this example, the file /etc/postfix/mongodb-aliases.cf has the same format as the Postfix main.cf file, and can specify the parameters described below. It is also possible to have the configuration in main.cf; see "OBSOLETE MAIN.CF PARAMETERS" below.
It is strongly
recommended to use proxy:mongodb, in order to reduce the
number of database connections. For example:
alias_maps =
proxy:mongodb:/etc/postfix/mongodb-aliases.cf
Note: when using proxy:mongodb:/file, the file must be readable by the unprivileged postfix user (specified with the Postfix mail_owner configuration parameter).
MONGODB PARAMETERS
uri |
The URI of mongo server/cluster that Postfix will try to connect to and query from. Please see |
https://www.mongodb.com/docs/manual/reference/connection-string/
Example:
uri = mongodb+srv://user:pass@loclhost:27017/mail
dbname |
Name of the database to read the information from. Example: |
dbname = mail
collection
Name of the collection (table)
to read the information from. Example:
collection = mailbox
query_filter
The MongoDB query template used
to search the database, where %s is a substitute for
the email address that Postfix is trying to resolve. Please
see:
https://www.mongodb.com/docs/manual/tutorial/query-documents/
Example:
query_filter = {"$or": [{"username":
"%s"}, {"alias.address":
"%s"}], "active": 1}
This parameter supports the following ’%’ expansions:
%% |
This is replaced by a literal ’%’ character. | ||
%s |
This is replaced by the input key. The %s must appear in quotes, because all Postfix queries are strings containing (parts from) a domain or email address. Postfix makes no numerical queries. | ||
%u |
When the input key is an address of the form user@domain, %u is replaced by the local part of the address. Otherwise, %u is replaced by the entire search string. | ||
%d |
When the input key is an address of the form user@domain, %d is replaced by the domain part of the address. | ||
%[1-9] |
The patterns %1, %2, ... %9 are replaced by the corresponding most significant component of the input key’s domain. If the input key is user [AT] mail.com, then %1 is com, %2 is example and %3 is mail. |
In the above substitutions, characters will be quoted as required by RFC 4627. For example, each double quote or backslash character will be escaped with a backslash characacter.
projection
Advanced MongoDB query
projections. Please see:
https://www.mongodb.com/docs/manual/tutorial/project-fields-from-query-results/
• |
If projection is non-empty, then result_attribute must be empty. | ||
• |
This implementation can extract information only from result fields that have type string (UTF8), integer (int32, int64) and array. Other result fields will be ignored with a warning. Please see: |
https://mongoc.org/libbson/current/bson_type_t.html
• |
As with result_attribute, the top-level _id field (type OID) is automatically removed from projection results. |
result_attribute
Comma or whitespace separated list with the names of fields to be returned in a lookup result.
• |
If result_attribute is non-empty, then projection must be empty. | ||
• |
As with projection, the top-level _id field (type OID) is automatically removed from lookup results. |
result_format (default: %s)
Format template applied to the result from projection or result_attribute. Most commonly used to append (or prepend) text to the result. This parameter supports the following ’%’ expansions:
%% |
This is replaced by a literal ’%’ character. | ||
%s |
This is replaced by the value of the result attribute. When result is empty it is skipped. | ||
%u |
When the result attribute value is an address of the form user@domain, %u is replaced by the local part of the address. When the result has an empty localpart it is skipped. | ||
%d |
When a result attribute value is an address of the form user@domain, %d is replaced by the domain part of the attribute value. When the result is unqualified it is skipped. |
%[SUD1-9]
The upper-case and decimal digit expansions interpolate the parts of the input key rather than the result. Their behavior is identical to that described with query_filter, and in fact because the input key is known in advance, lookups whose key does not contain all the information specified in the result template are suppressed and return no results.
For example, using "result_format = smtp:[%s]" allows one to use a mailHost attribute as the basis of a transport(5) table. After applying the result format, multiple values are concatenated as comma separated strings. The expansion_limit parameter explained below allows one to restrict the number of values in the result, which is especially useful for maps that should return a single value.
The default value %s specifies that each attribute value should be used as is.
NOTE: DO NOT put quotes around the result format! The result is not a JSON string.
domain (default: no domain list)
This is a list of domain names,
paths to files, or "type:table" databases. When
specified, only fully qualified search keys with a
*non-empty* localpart and a matching domain are eligible for
lookup: ’user’ lookups, bare domain lookups and
"@domain" lookups are not performed. This can
significantly reduce the query load on the backend database.
Example:
domain = postfix.org, hash:/etc/postfix/searchdomains
expansion_limit (default: 0)
A limit on the total number of result elements returned (as a comma separated list) by a lookup against the map. A setting of zero disables the limit. Lookups fail with a temporary error if the limit is exceeded. Setting the limit to 1 ensures that lookups do not return multiple values.
OBSOLETE MAIN.CF PARAMETERS
MongoDB parameters can also be defined in main.cf. Specify as MongoDB source a name that doesn’t begin with a slash or a dot. The MongoDB parameters will then be accessible as the name you’ve given the source in its definition, an underscore, and the name of the parameter. For example, if a map is specified as "mongodb:mongodb_source", the "uri" parameter would be defined in main.cf as "mongodb_source_uri".
Note: with this form, passwords are written in main.cf, which is normally world-readable, and ’$’ in a mongodb parameter setting needs to be written as ’$$’.
SEE ALSO
postmap(1),
Postfix lookup table maintenance
postconf(5), configuration parameters
README FILES
Use
"postconf readme_directory" or
"postconf html_directory" to locate this
information.
DATABASE_README, Postfix lookup table overview
MONGODB_README, Postfix MONGODB client guide
LICENSE
The Secure Mailer license must be distributed with this software.
HISTORY
MongoDB support was introduced with Postfix version 3.9.
AUTHOR(S)
Hamid Maadani
(hamid [AT] dexo.tech)
Dextrous Technologies, LLC
Edited by:
Wietse Venema
porcupine.org
Based on prior
work by:
Stephan Ferraro
Aionda GmbH