Add mailcow to terraform

modules/services/mailcow.tf

@@ -0,0 +1,17 @@
+resource "random_password" "mailcow_service_passwords" {
+  for_each = local.services_mail
+  length  = 32
+  special = false
+}
+
+resource "mailcow_mailbox" "services" {
+  for_each    = local.services_mail
+  domain      = "serguzim.me"
+  full_name   = each.value.mail
+  local_part  = each.value.mail
+  password    = random_password.mailcow_service_passwords[each.key].result
+  imap_access = false
+  pop3_access = false
+  sogo_access = false
+  quota       = 128
+}

modules/services/main.tf

@@ -4,6 +4,10 @@ terraform {
       source = "goauthentik/authentik"
       version = "~> 2024.8.0"
     }
+    mailcow = {
+      source = "l-with/mailcow"
+      version = "~> 0.7.5"
+    }
     postgresql = {
       source = "cyrilgdn/postgresql"
       version = "~> 1.23.0"
@@ -15,4 +19,5 @@ locals {
   services_auth = {for key, val in var.services : key => val if val.auth}
   services_database = {for key, val in var.services : key => val if val.database}
   services_s3 = {for key, val in var.services : key => val if val.s3}
+  services_mail = {for key, val in var.services : key => val if val.mail != null}
 }

modules/services/output.tf

@@ -19,3 +19,13 @@ output "postgresql_data" {
   }
   sensitive = true
 }
+
+output "mailcow_data" {
+  value = {
+    for key in keys(mailcow_mailbox.services) : key => {
+      "address"  = mailcow_mailbox.services[key].address
+      "password" = mailcow_mailbox.services[key].password
+    }
+  }
+  sensitive = true
+}

modules/services/variables.tf

@@ -18,5 +18,6 @@ variable "services" {
     auth_redirects = optional(list(string))
     s3 = bool
     database = bool
+    mail = optional(string)
   }))
 }