From 4be795509b0e033b6ba1e0f10329cead6abb6039 Mon Sep 17 00:00:00 2001
From: Ralf Becker <rb@egroupware.org>
Date: Fri, 17 Sep 2021 09:30:38 +0200
Subject: [PATCH] Updated EGroupwareMail (markdown)

---
 EGroupwareMail.md | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/EGroupwareMail.md b/EGroupwareMail.md
index feef81e..ed96162 100644
--- a/EGroupwareMail.md
+++ b/EGroupwareMail.md
@@ -54,21 +54,23 @@ password = your-secret-password
 ```
 services:
   mail:
+    # to use a recognized (not self-signed) certificate, add it here (certificate.pem is the certificate plus the chain!)
+    # eg. to use the one created by LetsEncrypt's Certbot for the webserver use the following (replace your domain!)
     hostname: <fully-qualified-hostname-as-used-in-certificate>
     volumes:
-      # to use a recognized (not self-signed) certificate, add it here (certificate.pem is the certificate plus the chain!)
-      # eg. to use the one created by LetsEncrypt's Certbot for the webserver use the following (replace your domain!)
       - /etc/letsencrypt:/etc/letsencrypt
       - /etc/letsencrypt/live/egw.example.org/privkey.pem:/etc/dovecot/certificate.key
       - /etc/letsencrypt/live/egw.example.org/fullchain.pem:/etc/dovecot/certificate.pem
   smtp:
+    # to use a recognized (not self-signed) certificate, add it here (certificate.pem is the certificate plus the chain!)
+    # eg. to use the one created by LetsEncrypt's Certbot for the webserver use the following (replace your domain!)
     hostname: <fully-qualified-hostname-as-used-in-certificate>
     volumes:
-      # to use a recognized (not self-signed) certificate, add it here (certificate.pem is the certificate plus the chain!)
-      # eg. to use the one created by LetsEncrypt's Certbot for the webserver use the following (replace your domain!)
       - /etc/letsencrypt:/etc/letsencrypt
       - /etc/letsencrypt/live/egw.example.org/privkey.pem:/etc/postfix/certificate.key
       - /etc/letsencrypt/live/egw.example.org/fullchain.pem:/etc/postfix/certificate.pem
+    # run the following command once to make sure mail-services get restarted on certificate renewal:
+    # certbot renew --force-renew --post-hook "docker-compose -f /etc/egroupware-mail/docker-compose.yml restart"
 ```
   * run the following command once to make sure mail-services get restarted on certificate renewal:
 ```