change if style (#3361)

target/scripts/startup/setup.d/security/misc.sh

@@ -25,8 +25,7 @@ function _setup_security_stack
 
 function __setup__security__postgrey
 {
-  if [[ ${ENABLE_POSTGREY} -eq 1 ]]
-  then
+  if [[ ${ENABLE_POSTGREY} -eq 1 ]]; then
     _log 'debug' 'Enabling and configuring Postgrey'
 
     sedfile -i -E \
@@ -37,18 +36,15 @@ function __setup__security__postgrey
       "s|\"--inet=127.0.0.1:10023\"|\"--inet=127.0.0.1:10023 --delay=${POSTGREY_DELAY} --max-age=${POSTGREY_MAX_AGE} --auto-whitelist-clients=${POSTGREY_AUTO_WHITELIST_CLIENTS}\"|" \
       /etc/default/postgrey
 
-    if ! grep -i 'POSTGREY_TEXT' /etc/default/postgrey
-    then
+    if ! grep -i 'POSTGREY_TEXT' /etc/default/postgrey; then
       printf 'POSTGREY_TEXT=\"%s\"\n\n' "${POSTGREY_TEXT}" >>/etc/default/postgrey
     fi
 
-    if [[ -f /tmp/docker-mailserver/whitelist_clients.local ]]
-    then
+    if [[ -f /tmp/docker-mailserver/whitelist_clients.local ]]; then
       cp -f /tmp/docker-mailserver/whitelist_clients.local /etc/postgrey/whitelist_clients.local
     fi
 
-    if [[ -f /tmp/docker-mailserver/whitelist_recipients ]]
-    then
+    if [[ -f /tmp/docker-mailserver/whitelist_recipients ]]; then
       cp -f /tmp/docker-mailserver/whitelist_recipients /etc/postgrey/whitelist_recipients
     fi
   else
@@ -64,8 +60,7 @@ function __setup__security__postscreen
     -e "s|postscreen_greet_action = enforce|postscreen_greet_action = ${POSTSCREEN_ACTION}|" \
     -e "s|postscreen_bare_newline_action = enforce|postscreen_bare_newline_action = ${POSTSCREEN_ACTION}|" /etc/postfix/main.cf
 
-  if [[ ${ENABLE_DNSBL} -eq 0 ]]
-  then
+  if [[ ${ENABLE_DNSBL} -eq 0 ]]; then
     _log 'debug' 'Disabling Postscreen DNSBLs'
     postconf 'postscreen_dnsbl_action = ignore'
     postconf 'postscreen_dnsbl_sites = '
@@ -76,8 +71,7 @@ function __setup__security__postscreen
 
 function __setup__security__spamassassin
 {
-  if [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]]
-  then
+  if [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]]; then
     _log 'debug' 'Enabling and configuring SpamAssassin'
 
     # shellcheck disable=SC2016
@@ -94,8 +88,7 @@ function __setup__security__spamassassin
       's|invoke-rc.d spamassassin reload|/etc/init\.d/spamassassin reload|g' \
       /etc/cron.daily/spamassassin
 
-    if [[ ${SA_SPAM_SUBJECT} == 'undef' ]]
-    then
+    if [[ ${SA_SPAM_SUBJECT} == 'undef' ]]; then
       # shellcheck disable=SC2016
       sed -i -r 's|^\$sa_spam_subject_tag (.*);|\$sa_spam_subject_tag = undef;|g' /etc/amavis/conf.d/20-debian_defaults
     else
@@ -104,27 +97,23 @@ function __setup__security__spamassassin
     fi
 
     # activate short circuits when SA BAYES is certain it has spam or ham.
-    if [[ ${SA_SHORTCIRCUIT_BAYES_SPAM} -eq 1 ]]
-    then
+    if [[ ${SA_SHORTCIRCUIT_BAYES_SPAM} -eq 1 ]]; then
       # automatically activate the Shortcircuit Plugin
       sed -i -r 's|^# loadplugin Mail::SpamAssassin::Plugin::Shortcircuit|loadplugin Mail::SpamAssassin::Plugin::Shortcircuit|g' /etc/spamassassin/v320.pre
       sed -i -r 's|^# shortcircuit BAYES_99|shortcircuit BAYES_99|g' /etc/spamassassin/local.cf
     fi
 
-    if [[ ${SA_SHORTCIRCUIT_BAYES_HAM} -eq 1 ]]
-    then
+    if [[ ${SA_SHORTCIRCUIT_BAYES_HAM} -eq 1 ]]; then
       # automatically activate the Shortcircuit Plugin
       sed -i -r 's|^# loadplugin Mail::SpamAssassin::Plugin::Shortcircuit|loadplugin Mail::SpamAssassin::Plugin::Shortcircuit|g' /etc/spamassassin/v320.pre
       sed -i -r 's|^# shortcircuit BAYES_00|shortcircuit BAYES_00|g' /etc/spamassassin/local.cf
     fi
 
-    if [[ -e /tmp/docker-mailserver/spamassassin-rules.cf ]]
-    then
+    if [[ -e /tmp/docker-mailserver/spamassassin-rules.cf ]]; then
       cp /tmp/docker-mailserver/spamassassin-rules.cf /etc/spamassassin/
     fi
 
-    if [[ ${SPAMASSASSIN_SPAM_TO_INBOX} -eq 1 ]]
-    then
+    if [[ ${SPAMASSASSIN_SPAM_TO_INBOX} -eq 1 ]]; then
       _log 'trace' 'Configuring Spamassassin/Amavis to send SPAM to inbox'
       _log 'debug'  'SPAM_TO_INBOX=1 is set. SA_KILL will be ignored.'
 
@@ -137,8 +126,7 @@ function __setup__security__spamassassin
       sed -i "s|\$final_bad_header_destiny.*=.*$|\$final_bad_header_destiny = D_BOUNCE;|g" /etc/amavis/conf.d/49-docker-mailserver
     fi
 
-    if [[ ${ENABLE_SPAMASSASSIN_KAM} -eq 1 ]]
-    then
+    if [[ ${ENABLE_SPAMASSASSIN_KAM} -eq 1 ]]; then
       _log 'trace' 'Configuring Spamassassin KAM'
       local SPAMASSASSIN_KAM_CRON_FILE=/etc/cron.daily/spamassassin_kam
 
@@ -151,8 +139,7 @@ RESULT=$(sa-update --gpgkey 24C063D8 --channel kam.sa-channels.mcgrail.com 2>&1)
 EXIT_CODE=${?}
 
 # see https://spamassassin.apache.org/full/3.1.x/doc/sa-update.html#exit_codes
-if [[ ${EXIT_CODE} -ge 4 ]]
-then
+if [[ ${EXIT_CODE} -ge 4 ]]; then
   echo -e "Updating SpamAssassin KAM failed:\n${RESULT}\n" >&2
   exit 1
 fi
@@ -172,8 +159,7 @@ EOF
 
 function __setup__security__clamav
 {
-  if [[ ${ENABLE_CLAMAV} -eq 1 ]]
-  then
+  if [[ ${ENABLE_CLAMAV} -eq 1 ]]; then
     _log 'debug' 'Enabling and configuring ClamAV'
 
     local FILE
@@ -184,19 +170,16 @@ function __setup__security__clamav
       chmod 640 "${FILE}"
     done
 
-    if [[ ${CLAMAV_MESSAGE_SIZE_LIMIT} != '25M' ]]
-    then
+    if [[ ${CLAMAV_MESSAGE_SIZE_LIMIT} != '25M' ]]; then
       _log 'trace' "Setting ClamAV message scan size limit to '${CLAMAV_MESSAGE_SIZE_LIMIT}'"
 
       # do a short sanity check: ClamAV does not support setting a maximum size greater than 4000M (at all)
-      if [[ $(numfmt --from=si "${CLAMAV_MESSAGE_SIZE_LIMIT}") -gt $(numfmt --from=si 4000M) ]]
-      then
+      if [[ $(numfmt --from=si "${CLAMAV_MESSAGE_SIZE_LIMIT}") -gt $(numfmt --from=si 4000M) ]]; then
         _log 'warn' "You set 'CLAMAV_MESSAGE_SIZE_LIMIT' to a value larger than 4 Gigabyte, but the maximum value is 4000M for this value - you should correct your configuration"
       fi
       # For more details, see
       # https://github.com/docker-mailserver/docker-mailserver/pull/3341
-      if [[ $(numfmt --from=si "${CLAMAV_MESSAGE_SIZE_LIMIT}") -ge $(numfmt --from=iec 2G) ]]
-      then
+      if [[ $(numfmt --from=si "${CLAMAV_MESSAGE_SIZE_LIMIT}") -ge $(numfmt --from=iec 2G) ]]; then
         _log 'warn' "You set 'CLAMAV_MESSAGE_SIZE_LIMIT' to a value larger than 2 Gibibyte but ClamAV does not scan files larger or equal to 2 Gibibyte"
       fi
 
@@ -216,22 +199,18 @@ function __setup__security__clamav
 
 function __setup__security__fail2ban
 {
-  if [[ ${ENABLE_FAIL2BAN} -eq 1 ]]
-  then
+  if [[ ${ENABLE_FAIL2BAN} -eq 1 ]]; then
     _log 'debug' 'Enabling and configuring Fail2Ban'
 
-    if [[ -e /tmp/docker-mailserver/fail2ban-fail2ban.cf ]]
-    then
+    if [[ -e /tmp/docker-mailserver/fail2ban-fail2ban.cf ]]; then
       cp /tmp/docker-mailserver/fail2ban-fail2ban.cf /etc/fail2ban/fail2ban.local
     fi
 
-    if [[ -e /tmp/docker-mailserver/fail2ban-jail.cf ]]
-    then
+    if [[ -e /tmp/docker-mailserver/fail2ban-jail.cf ]]; then
       cp /tmp/docker-mailserver/fail2ban-jail.cf /etc/fail2ban/jail.d/user-jail.local
     fi
 
-    if [[ ${FAIL2BAN_BLOCKTYPE} != 'reject' ]]
-    then
+    if [[ ${FAIL2BAN_BLOCKTYPE} != 'reject' ]]; then
       echo -e '[Init]\nblocktype = drop' >/etc/fail2ban/action.d/nftables-common.local
     fi
 
@@ -244,11 +223,9 @@ function __setup__security__fail2ban
 
 function __setup__security__amavis
 {
-  if [[ ${ENABLE_AMAVIS} -eq 1 ]]
-  then
+  if [[ ${ENABLE_AMAVIS} -eq 1 ]]; then
     _log 'debug' 'Configuring Amavis'
-    if [[ -f /tmp/docker-mailserver/amavis.cf ]]
-    then
+    if [[ -f /tmp/docker-mailserver/amavis.cf ]]; then
       cp /tmp/docker-mailserver/amavis.cf /etc/amavis/conf.d/50-user
     fi
 
@@ -269,13 +246,11 @@ function __setup__security__amavis
     mv /etc/cron.d/amavisd-new /etc/cron.d/amavisd-new.disabled
     chmod 0 /etc/cron.d/amavisd-new.disabled
 
-    if [[ ${ENABLE_CLAMAV} -eq 1 ]] && [[ ${ENABLE_RSPAMD} -eq 0 ]]
-    then
+    if [[ ${ENABLE_CLAMAV} -eq 1 ]] && [[ ${ENABLE_RSPAMD} -eq 0 ]]; then
       _log 'warn' 'ClamAV will not work when Amavis & rspamd are disabled. Enable either Amavis or rspamd to fix it.'
     fi
 
-    if [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]]
-    then
+    if [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]]; then
       _log 'warn' 'Spamassassin will not work when Amavis is disabled. Enable Amavis to fix it.'
     fi
   fi
@@ -284,8 +259,7 @@ function __setup__security__amavis
 # We can use Sieve to move spam emails to the "Junk" folder.
 function _setup_spam_to_junk
 {
-  if [[ ${MOVE_SPAM_TO_JUNK} -eq 1 ]]
-  then
+  if [[ ${MOVE_SPAM_TO_JUNK} -eq 1 ]]; then
     _log 'debug' 'Spam emails will be moved to the Junk folder'
     cat >/usr/lib/dovecot/sieve-global/after/spam_to_junk.sieve << EOF
 require ["fileinto","mailbox"];
@@ -298,8 +272,7 @@ EOF
     sievec /usr/lib/dovecot/sieve-global/after/spam_to_junk.sieve
     chown dovecot:root /usr/lib/dovecot/sieve-global/after/spam_to_junk.{sieve,svbin}
 
-    if [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]] && [[ ${SPAMASSASSIN_SPAM_TO_INBOX} -eq 0 ]]
-    then
+    if [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]] && [[ ${SPAMASSASSIN_SPAM_TO_INBOX} -eq 0 ]]; then
       _log 'warning' "'SPAMASSASSIN_SPAM_TO_INBOX=0' but it is required to be 1 for 'MOVE_SPAM_TO_JUNK=1' to work"
     fi
   else

target/scripts/startup/setup.d/security/rspamd.sh

@@ -3,8 +3,7 @@
 # Function called during global setup to handle the complete setup of Rspamd.
 function _setup_rspamd
 {
-  if _env_var_expect_zero_or_one 'ENABLE_RSPAMD' && [[ ${ENABLE_RSPAMD} -eq 1 ]]
-  then
+  if _env_var_expect_zero_or_one 'ENABLE_RSPAMD' && [[ ${ENABLE_RSPAMD} -eq 1 ]]; then
     _log 'debug' 'Enabling and configuring Rspamd'
     __rspamd__log 'trace' '----------  Setup started  ----------'
 
@@ -44,8 +43,7 @@ function __rspamd__helper__enable_disable_module
   local LOCAL_OR_OVERRIDE=${3:-local}
   local MESSAGE='Enabling'
 
-  if [[ ! ${ENABLE_MODULE} =~ ^(true|false)$ ]]
-  then
+  if [[ ! ${ENABLE_MODULE} =~ ^(true|false)$ ]]; then
     __rspamd__log 'warn' "__rspamd__helper__enable_disable_module got non-boolean argument for deciding whether module should be enabled or not"
     return 1
   fi
@@ -75,39 +73,32 @@ function __rspamd__run_early_setup_and_checks
   mkdir -p /var/lib/rspamd/
   : >/var/lib/rspamd/stats.ucl
 
-  if [[ -d ${RSPAMD_DMS_OVERRIDE_D} ]]
-  then
+  if [[ -d ${RSPAMD_DMS_OVERRIDE_D} ]]; then
     __rspamd__log 'debug' "Found directory '${RSPAMD_DMS_OVERRIDE_D}' - linking it to '${RSPAMD_OVERRIDE_D}'"
-    if rmdir "${RSPAMD_OVERRIDE_D}" 2>/dev/null
-    then
+    if rmdir "${RSPAMD_OVERRIDE_D}" 2>/dev/null; then
       ln -s "${RSPAMD_DMS_OVERRIDE_D}" "${RSPAMD_OVERRIDE_D}"
     else
       __rspamd__log 'warn' "Could not remove '${RSPAMD_OVERRIDE_D}' (not empty? not a directory?; did you restart properly?) - not linking '${RSPAMD_DMS_OVERRIDE_D}'"
     fi
   fi
 
-  if [[ ${ENABLE_AMAVIS} -eq 1 ]] || [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]]
-  then
+  if [[ ${ENABLE_AMAVIS} -eq 1 ]] || [[ ${ENABLE_SPAMASSASSIN} -eq 1 ]]; then
     __rspamd__log 'warn' 'Running Amavis/SA & Rspamd at the same time is discouraged'
   fi
 
-  if [[ ${ENABLE_OPENDKIM} -eq 1 ]]
-  then
+  if [[ ${ENABLE_OPENDKIM} -eq 1 ]]; then
     __rspamd__log 'warn' 'Running OpenDKIM & Rspamd at the same time is discouraged - we recommend Rspamd for DKIM checks (enabled with Rspamd by default) & signing'
   fi
 
-  if [[ ${ENABLE_OPENDMARC} -eq 1 ]]
-  then
+  if [[ ${ENABLE_OPENDMARC} -eq 1 ]]; then
     __rspamd__log 'warn' 'Running OpenDMARC & Rspamd at the same time is discouraged - we recommend Rspamd for DMARC checks (enabled with Rspamd by default)'
   fi
 
-  if [[ ${ENABLE_POLICYD_SPF} -eq 1 ]]
-  then
+  if [[ ${ENABLE_POLICYD_SPF} -eq 1 ]]; then
     __rspamd__log 'warn' 'Running policyd-spf & Rspamd at the same time is discouraged - we recommend Rspamd for SPF checks (enabled with Rspamd by default)'
   fi
 
-  if [[ ${ENABLE_POSTGREY} -eq 1 ]] && [[ ${RSPAMD_GREYLISTING} -eq 1 ]]
-  then
+  if [[ ${ENABLE_POSTGREY} -eq 1 ]] && [[ ${RSPAMD_GREYLISTING} -eq 1 ]]; then
     __rspamd__log 'warn' 'Running Postgrey & Rspamd at the same time is discouraged - we recommend Rspamd for greylisting'
   fi
 }
@@ -116,8 +107,7 @@ function __rspamd__run_early_setup_and_checks
 # supply a configuration for our local Redis instance which is started later.
 function __rspamd__setup_redis
 {
-  if _env_var_expect_zero_or_one 'ENABLE_RSPAMD_REDIS' && [[ ${ENABLE_RSPAMD_REDIS} -eq 1 ]]
-  then
+  if _env_var_expect_zero_or_one 'ENABLE_RSPAMD_REDIS' && [[ ${ENABLE_RSPAMD_REDIS} -eq 1 ]]; then
     __rspamd__log 'debug' 'Internal Redis is enabled, adding configuration'
     cat >"${RSPAMD_LOCAL_D}/redis.conf" << "EOF"
 # documentation: https://rspamd.com/doc/configuration/redis.html
@@ -158,15 +148,13 @@ function __rspamd__setup_postfix
 # If ClamAV is enabled, we will integrate it into Rspamd.
 function __rspamd__setup_clamav
 {
-  if _env_var_expect_zero_or_one 'ENABLE_CLAMAV' && [[ ${ENABLE_CLAMAV} -eq 1 ]]
-  then
+  if _env_var_expect_zero_or_one 'ENABLE_CLAMAV' && [[ ${ENABLE_CLAMAV} -eq 1 ]]; then
     __rspamd__log 'debug' 'Enabling ClamAV integration'
     sedfile -i -E 's|^(enabled).*|\1 = true;|g' "${RSPAMD_LOCAL_D}/antivirus.conf"
     # Rspamd uses ClamAV's UNIX socket, and to be able to read it, it must be in the same group
     usermod -a -G clamav _rspamd
 
-    if [[ ${CLAMAV_MESSAGE_SIZE_LIMIT} != '25M' ]]
-    then
+    if [[ ${CLAMAV_MESSAGE_SIZE_LIMIT} != '25M' ]]; then
       local SIZE_IN_BYTES
       SIZE_IN_BYTES=$(numfmt --from=si "${CLAMAV_MESSAGE_SIZE_LIMIT}")
       __rspamd__log 'trace' "Adjusting maximum size for ClamAV to ${SIZE_IN_BYTES} bytes (${CLAMAV_MESSAGE_SIZE_LIMIT})"
@@ -211,8 +199,7 @@ function __rspamd__setup_default_modules
 #    from or to the "Junk" folder, and learning them as ham or spam.
 function __rspamd__setup_learning
 {
-  if _env_var_expect_zero_or_one 'RSPAMD_LEARN' && [[ ${RSPAMD_LEARN} -eq 1 ]]
-  then
+  if _env_var_expect_zero_or_one 'RSPAMD_LEARN' && [[ ${RSPAMD_LEARN} -eq 1 ]]; then
     __rspamd__log 'debug' 'Setting up intelligent learning of spam and ham'
 
     local SIEVE_PIPE_BIN_DIR='/usr/lib/dovecot/sieve-pipe'
@@ -256,8 +243,7 @@ EOF
 # https://rspamd.com/doc/modules/greylisting.html).
 function __rspamd__setup_greylisting
 {
-  if _env_var_expect_zero_or_one 'RSPAMD_GREYLISTING' && [[ ${RSPAMD_GREYLISTING} -eq 1 ]]
-  then
+  if _env_var_expect_zero_or_one 'RSPAMD_GREYLISTING' && [[ ${RSPAMD_GREYLISTING} -eq 1 ]]; then
     __rspamd__log 'debug' 'Enabling greylisting'
     sedfile -i -E "s|(enabled =).*|\1 true;|g" "${RSPAMD_LOCAL_D}/greylist.conf"
   else
@@ -272,12 +258,10 @@ function __rspamd__setup_greylisting
 function __rspamd__setup_hfilter_group
 {
   local MODULE_FILE="${RSPAMD_LOCAL_D}/hfilter_group.conf"
-  if _env_var_expect_zero_or_one 'RSPAMD_HFILTER' && [[ ${RSPAMD_HFILTER} -eq 1 ]]
-  then
+  if _env_var_expect_zero_or_one 'RSPAMD_HFILTER' && [[ ${RSPAMD_HFILTER} -eq 1 ]]; then
     __rspamd__log 'debug' 'Hfilter (group) module is enabled'
     # Check if we received a number first
-    if _env_var_expect_integer 'RSPAMD_HFILTER_HOSTNAME_UNKNOWN_SCORE' && [[ ${RSPAMD_HFILTER_HOSTNAME_UNKNOWN_SCORE} -ne 6 ]]
-    then
+    if _env_var_expect_integer 'RSPAMD_HFILTER_HOSTNAME_UNKNOWN_SCORE' && [[ ${RSPAMD_HFILTER_HOSTNAME_UNKNOWN_SCORE} -ne 6 ]]; then
       __rspamd__log 'trace' "Adjusting score for 'HFILTER_HOSTNAME_UNKNOWN' in Hfilter group module to ${RSPAMD_HFILTER_HOSTNAME_UNKNOWN_SCORE}"
       sed -i -E \
         "s|(.*score =).*(# __TAG__HFILTER_HOSTNAME_UNKNOWN)|\1 ${RSPAMD_HFILTER_HOSTNAME_UNKNOWN_SCORE}; \2|g" \
@@ -321,8 +305,7 @@ function __rspamd__handle_user_modules_adjustments
     local FILE="${RSPAMD_OVERRIDE_D}/${MODULE_FILE}"
     [[ -f ${FILE} ]] || touch "${FILE}"
 
-    if grep -q -E "${OPTION}.*=.*" "${FILE}"
-    then
+    if grep -q -E "${OPTION}.*=.*" "${FILE}"; then
       __rspamd__log 'trace' "Overwriting option '${OPTION}' with value '${VALUE}' for ${MODULE_LOG_NAME}"
       sed -i -E "s|([[:space:]]*${OPTION}).*|\1 = ${VALUE};|g" "${FILE}"
     else
@@ -336,15 +319,13 @@ function __rspamd__handle_user_modules_adjustments
 
   # We check for usage of the previous location of the commands file.
   # This can be removed after the release of v14.0.0.
-  if [[ -f ${RSPAMD_CUSTOM_COMMANDS_FILE_OLD} ]]
-  then
+  if [[ -f ${RSPAMD_CUSTOM_COMMANDS_FILE_OLD} ]]; then
     __rspamd__log 'warn' "Detected usage of old file location for modules adjustment ('${RSPAMD_CUSTOM_COMMANDS_FILE_OLD}') - please use the new location ('${RSPAMD_CUSTOM_COMMANDS_FILE}')"
     __rspamd__log 'warn' "Using old file location now (deprecated) - this will prevent startup in v13.0.0"
     RSPAMD_CUSTOM_COMMANDS_FILE=${RSPAMD_CUSTOM_COMMANDS_FILE_OLD}
   fi
 
-  if [[ -f "${RSPAMD_CUSTOM_COMMANDS_FILE}" ]]
-  then
+  if [[ -f "${RSPAMD_CUSTOM_COMMANDS_FILE}" ]]; then
     __rspamd__log 'debug' "Found file '${RSPAMD_CUSTOM_COMMANDS_FILE}' - parsing and applying it"
 
     while read -r COMMAND ARGUMENT1 ARGUMENT2 ARGUMENT3

target/scripts/startup/setup.d/security/spoofing.sh

@@ -2,21 +2,17 @@
 
 function _setup_spoof_protection
 {
-  if [[ ${SPOOF_PROTECTION} -eq 1 ]]
-  then
+  if [[ ${SPOOF_PROTECTION} -eq 1 ]]; then
     _log 'trace' 'Enabling and configuring spoof protection'
 
-    if [[ ${ACCOUNT_PROVISIONER} == 'LDAP' ]]
-    then
-      if [[ -z ${LDAP_QUERY_FILTER_SENDERS} ]]
-      then
+    if [[ ${ACCOUNT_PROVISIONER} == 'LDAP' ]]; then
+      if [[ -z ${LDAP_QUERY_FILTER_SENDERS} ]]; then
         postconf 'smtpd_sender_login_maps = ldap:/etc/postfix/ldap-users.cf ldap:/etc/postfix/ldap-aliases.cf ldap:/etc/postfix/ldap-groups.cf'
       else
         postconf 'smtpd_sender_login_maps = ldap:/etc/postfix/ldap-senders.cf'
       fi
     else
-      if [[ -f /etc/postfix/regexp ]]
-      then
+      if [[ -f /etc/postfix/regexp ]]; then
         postconf 'smtpd_sender_login_maps = unionmap:{ texthash:/etc/postfix/virtual, hash:/etc/aliases, pcre:/etc/postfix/maps/sender_login_maps.pcre, pcre:/etc/postfix/regexp }'
       else
         postconf 'smtpd_sender_login_maps = texthash:/etc/postfix/virtual, hash:/etc/aliases, pcre:/etc/postfix/maps/sender_login_maps.pcre'