config: Add 'mail suffix' for POSIX accounts to derive e-mail

certidude/config.py

@@ -13,6 +13,7 @@ AUTHENTICATION_BACKENDS = set([j for j in
     cp.get("authentication", "backends").split(" ") if j])   # kerberos, pam, ldap
 AUTHORIZATION_BACKEND = cp.get("authorization", "backend")  # whitelist, ldap, posix
 ACCOUNTS_BACKEND = cp.get("accounts", "backend")             # posix, ldap
+MAIL_SUFFIX = cp.get("accounts", "mail suffix")
 
 KERBEROS_KEYTAB = cp.get("authentication", "kerberos keytab")
 LDAP_AUTHENTICATION_URI = cp.get("authentication", "ldap uri")

certidude/templates/server/server.conf

@@ -21,6 +21,8 @@ kerberos keytab = FILE:{{ kerberos_keytab }}
 # updated automatically by /etc/cron.hourly/certidude
 
 backend = posix
+mail suffix = example.lan
+
 ;backend = ldap
 ldap gssapi credential cache = /run/certidude/krb5cc
 ldap uri = ldap://dc.example.lan

certidude/user.py

@@ -39,7 +39,7 @@ class PosixUserManager(object):
         _, _, _, _, gecos, _, _ = pwd.getpwnam(username)
         gecos = gecos.split(",")
         full_name = gecos[0]
-        mail = "%s@%s" % ("tteearu", "k-space.ee") # username, "k-space.ee") # const.DOMAIN)
+        mail = "%s@%s" % (username, config.MAIL_SUFFIX)
         if full_name and " " in full_name:
             given_name, surname = full_name.split(" ", 1)
             return User(username, mail, given_name, surname)