Feat: Add the posibility to automatically set hostname on run

Author: bokysan

README.md

@@ -19,6 +19,7 @@ Feel free to pick your favourite distro.
     - [General options](#general-options)
       - [Inbound debugging](#inbound-debugging)
       - [`ALLOWED_SENDER_DOMAINS` and `ALLOW_EMPTY_SENDER_DOMAINS`](#allowed_sender_domains-and-allow_empty_sender_domains)
+      - [`AUTOSET_HOSTNAME` and `AUTOSET_HOSTNAME_SERVICES`](#autoset_hostname-and-autoset_hostname_services)
       - [Log format](#log-format)
     - [Postfix-specific options](#postfix-specific-options)
       - [`RELAYHOST`, `RELAYHOST_USERNAME` and `RELAYHOST_PASSWORD`](#relayhost-relayhost_username-and-relayhost_password)
@@ -167,6 +168,7 @@ Available for all your favourite architectures. Run in your server cluster. Run
 * `INBOUND_DEBUGGING` = Set to `1` to enable detailed debugging in the logs
 * `ALLOWED_SENDER_DOMAINS` = domains which are allowed to send email via this server
 * `ALLOW_EMPTY_SENDER_DOMAINS` = if value is set (i.e: `true`), `ALLOWED_SENDER_DOMAINS` can be unset
+* `AUTOSET_HOSTNAME` and `AUTOSET_HOSTNAME_SERVICES` - use to automatically resolve hostname
 * `LOG_FORMAT` = Set your log format (JSON or plain)
 
 #### Inbound debugging
@@ -190,6 +192,26 @@ If you want to set the restrictions on the recipient and not on the sender (anyo
 for instance), set `ALLOW_EMPTY_SENDER_DOMAINS` to a non-empty value (e.g. `true`) and `ALLOWED_SENDER_DOMAINS` to an empty
 string. Then extend this image through custom scripts to configure Postfix further.
 
+#### `AUTOSET_HOSTNAME` and `AUTOSET_HOSTNAME_SERVICES`
+
+This image can automatically set  postfix variable `myhostname` based on reverse DNS resolution of your public IP. To use this
+feature, set `AUTOSET_HOSTNAME` to `1`. The image will then:
+
+- use an external service to get the public IP address of the image
+- do a reverse DNS lookup to get the hostname associated with that IP
+
+The image will, by default, try to get the public IP from any of these services, which will be queried in the order defined below:
+
+1. https://ipinfo.io/ip
+2. https://ifconfig.me/ip
+3. https://icanhazip.com
+4. https://ipecho.net/plain
+5. https://ifconfig.co
+6. https://myexternalip.com/raw
+
+The first service to return a non-empty, non-error response will be deemed successful. If you have a preference of another order
+and/or wish to use a different service, you can do that by setting the bash array `AUTOSET_HOSTNAME_SERVICES`.
+
 #### Log format
 
 The image will by default output logs in human-readable (`plain`) format. If you are deploying the image to Kubernetes, it might

build-scripts/postfix-install.sh

@@ -22,7 +22,21 @@ do_alpine() {
     apk add --upgrade cyrus-sasl cyrus-sasl-static cyrus-sasl-digestmd5 cyrus-sasl-crammd5 cyrus-sasl-login cyrus-sasl-ntlm libsasl
     apk add postfix postfix-pcre postfix-ldap ${architecture_specific_packages}
     apk add opendkim
-    apk add --upgrade ca-certificates tzdata supervisor rsyslog musl musl-utils bash opendkim-utils libcurl jsoncpp lmdb logrotate netcat-openbsd
+    apk add --upgrade \
+        bash \
+        bind-tools \
+        ca-certificates \
+        jsoncpp \
+        libcurl \
+        lmdb \
+        logrotate \
+        musl \
+        musl-utils \
+        netcat-openbsd \
+        opendkim-utils \
+        rsyslog \
+        supervisor \
+        tzdata
 }
 
 
@@ -51,7 +65,25 @@ do_ubuntu() {
     if [ "$(apt-cache search --names-only '^libcurl4t64$')" != "" ]; then
         libcurl="libcurl4t64"
     fi
-    apt-get install -y ca-certificates tzdata supervisor rsyslog bash opendkim-tools curl ${libcurl} libjsoncpp25 sasl2-bin postfix-lmdb procps logrotate cron net-tools colorized-logs netcat-openbsd ${RELEASE_SPECIFIC_PACKAGES}
+    apt-get install -y \
+        ${libcurl} ${RELEASE_SPECIFIC_PACKAGES} \
+        bash \
+        ca-certificates \
+        colorized-logs \
+        cron \
+        curl \
+        dnsutils \
+        libjsoncpp25 \
+        logrotate \
+        net-tools \
+        netcat-openbsd \
+        opendkim-tools \
+        postfix-lmdb \
+        procps \
+        rsyslog \
+        sasl2-bin \
+        supervisor \
+        tzdata \
     apt-get clean
     rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*    
 }

scripts/common-run.sh

@@ -228,8 +228,8 @@ postfix_upgrade_daemon_directory() {
 	local dir_alpine="/usr/libexec/postfix"  # Alpine
 
 
-	# Some people will keep the configuration of postfix on an external drive, although this is not strictly neccessary by this
-	# image. And when they switch between different distrubtions (Alpine -> Debian and vice versa), the image will fail with the
+	# Some people will keep the configuration of postfix on an external drive, although this is not strictly necessary by this
+	# image. And when they switch between different distributions (Alpine -> Debian and vice versa), the image will fail with the
 	# old configuration. This is a quick and dirty check to solve this issue so we don't get issues like these:
 	# https://github.com/bokysan/docker-postfix/issues/147
 	local daemon_directory="$(get_postconf "daemon_directory")"
@@ -307,9 +307,22 @@ postfix_reject_invalid_helos() {
 }
 
 postfix_set_hostname() {
+    local ip
+    local hostname
 	do_postconf -# myhostname
+	if [[ -z "$POSTFIX_myhostname" ]] && [[ "${AUTOSET_HOSTNAME}" == "1" ]]; then
+		warn "Both ${emphasis}POSTFIX_myhostname${reset} and ${emphasis}AUTOSET_HOSTNAME${reset} are set. ${emphasis}POSTFIX_myhostname${reset} will take precedence and ${emphasis}AUTOSET_HOSTNAME${reset} will be ignored."
+	fi
+
 	if [[ -z "$POSTFIX_myhostname" ]]; then
 		POSTFIX_myhostname="${HOSTNAME}"
+	elif [[ "${AUTOSET_HOSTNAME}" == "1" ]]; then
+		ip=$(get_public_ip)
+		hostname=$(dig +short -x $IP)
+		# Remove the trailing dot
+		hostname="${hostname%.}"
+		notice "Automatically setting Postfix hostname to ${emphasis}${hostname}${reset} based on your public IP address ${emphasis}${ip}${reset}..."
+		POSTFIX_myhostname="${hostname}"
 	fi
 }
 

scripts/common.sh

@@ -242,7 +242,7 @@ trim() {
 }
 
 ###################################################################
-# Potential fix for #180. Plugin names do not neccessarily match 
+# Potential fix for #180. Plugin names do not necessarily match 
 # filter names.
 #
 # This is an utility method which converts SASL plugin names into
@@ -284,4 +284,33 @@ convert_plugin_names_to_filter_names() {
 	done
 }
 
+###################################################################
+# Get the public IP of the server. Try different services to ensure
+# that at least one works
+###################################################################
+get_public_ip() {
+    local services=(https://ipinfo.io/ip https://ifconfig.me/ip https://icanhazip.com https://ipecho.net/ip https://ifconfig.co https://myexternalip.com/raw)
+	local ip
+    if [[ -n "${AUTOSET_HOSTNAME_SERVICES}" ]]; then
+        services=("${AUTOSET_HOSTNAME_SERVICES}")
+        notice "Using user defined ${emphasis}AUTOSET_HOSTNAME_SERVICES${reset}=${emphasis}${AUTOSET_HOSTNAME_SERVICES}${reset} for IP detection"
+    else
+        debug "Public IP detection will use ${emphasis}${services}${reset} to detect the IP."
+    fi
+
+    for service in "${services[@]}"; do
+        if ip="$(curl --fail-early --retry-max-time 30 --retry 10 --connect-timeout 5 --max-time 10 -s)"; then
+            # Some services, such as ifconfig.co will return a line feed at the end of the response.
+            ip="$(printf "%s" "${ip}" | trim)"
+            if [[ -n "${ip}" ]]; then
+                info "Detected public IP address as ${emphasis}${services}${ip}${reset}."
+                break
+            fi
+        fi
+    done
+
+    error "Unable to detect public IP. Please check your internet connection and firewall settings."
+    return 1
+}
+
 export reset green yellow orange orange_emphasis lightblue red gray emphasis underline

scripts/run.sh

@@ -32,7 +32,7 @@ postfix_setup_xoauth2_post_setup        # (Post) Setup XOAUTH2 authentication
 postfix_setup_networks                  # Set MYNETWORKS
 postfix_setup_debugging                 # Enable debugging, if defined
 postfix_setup_sender_domains            # Configure allowed sender domains
-postfix_setup_masquarading              # Setup masquaraded domains
+postfix_setup_masquarading              # Setup masqueraded domains
 postfix_setup_header_checks             # Enable SMTP header checks, if defined
 postfix_setup_dkim                      # Configure DKIM, if enabled
 postfix_setup_smtpd_sasl_auth           # Enable sender SASL auth, if defined

unit-tests/028_check_get_public_ip.bats

@@ -0,0 +1,21 @@
+#!/usr/bin/env bats
+
+load /code/scripts/common.sh
+
+assert_equals() {
+	local expected="$1"
+	local actual="$2"
+	if [[ "${expected}" != "${actual}" ]]; then
+		echo "Expected: \"${expected}\". Got: \"${actual}\"." >&2
+		exit 1
+	fi
+}
+
+@test "check if get_public_ip works" {
+	local ip1
+	local ip2
+	ip1=get_public_ip
+	AUTOSET_HOSTNAME_SERVICES=(https://ifconfig.co) ip2=get_public_ip
+	assert_equals "${ip1}" "${ip2}"
+}
+