---

- name: Install needed packages
  become: true
  ansible.builtin.apt:
    name: postfix

- name: Copy main.cf
  become: true
  ansible.builtin.template:
    src: main.cf.j2
    dest: /etc/postfix/main.cf
    owner: root
    group: root
    mode: 0644
  notify: Reload postfix service

- name: Copy /etc/aliases
  become: true
  ansible.builtin.template:
    src: aliases.j2
    dest: /etc/aliases
    owner: root
    group: root
    mode: "644"
  notify: Run newaliases

- name: Allow SMTP/submission to relayhost
  become: true
  ansible.builtin.template:
    src: nftables/output.d/postfix.conf.j2
    dest: /etc/nftables/output.d/postfix.conf
    owner: root
    group: root
    mode: 0640
  notify: Reload nftables service