From de4b527d0f2884178aaa25e331937821191f8d77 Mon Sep 17 00:00:00 2001
From: Marknl <mark@e-rave.nl>
Date: Thu, 27 Aug 2015 11:10:45 +0200
Subject: [PATCH] Added more ssl options

Added ssl_protocol and ssl_dh_parameters_length
---
 manifests/ssl.pp | 29 +++++++++++++++++++++++------
 1 file changed, 23 insertions(+), 6 deletions(-)

diff --git a/manifests/ssl.pp b/manifests/ssl.pp
index 73336fa..cc22f7b 100644
--- a/manifests/ssl.pp
+++ b/manifests/ssl.pp
@@ -1,12 +1,15 @@
 # 10-ssl.conf
 class dovecot::ssl (
-  $ssl               = 'no',
-  $ssl_certfile      = false,
-  $ssl_keyfile       = false,
-  $ssl_ca            = false,
-  $ssl_key_pass_file = false,
-  $ssl_cipher_list   = false,
+  $ssl                       = 'no',
+  $ssl_certfile              = false,
+  $ssl_keyfile               = false,
+  $ssl_ca                    = false,
+  $ssl_key_pass_file         = false,
+  $ssl_cipher_list           = false,
   $ssl_prefer_server_ciphers = false,
+  $ssl_dh_parameters_length  = false,
+  $ssl_protocols             = false,
+
 ) {
   include dovecot
 
@@ -55,4 +58,18 @@
       value       => $ssl_prefer_server_ciphers,
     }
   }
+
+  if $ssl_dh_parameters_length != false {
+    dovecot::config::dovecotcfsingle { 'ssl_dh_parameters_length':
+      config_file => 'conf.d/10-ssl.conf',
+      value       => $ssl_dh_parameters_length,
+    }
+  }
+
+  if $ssl_protocols != false {
+    dovecot::config::dovecotcfsingle { 'ssl_protocols':
+      config_file => 'conf.d/10-ssl.conf',
+      value       => $ssl_protocols,
+    }
+  }
 }