{"id":"mailserver2-postfixadmin","name":"postfixadmin","homepage":"https://hub.docker.com/r/mailserver2/postfixadmin","repo_url":"https://hub.docker.com/r/mailserver2/postfixadmin","category":"infrastructure","subcategories":[],"tags":["email","postfix","dovecot","administration","self-hosted","web-ui","virtual-domains","virtual-mailboxes"],"what_it_does":"postfixadmin is a web-based administration tool for managing an email system based on Postfix/Dovecot. It provides a UI and backend logic to create and manage virtual mail domains, mailboxes, aliases, and related settings backed by a database.","use_cases":["Provisioning and managing virtual email domains and mailboxes","Administering aliases and mailbox routing rules","Database-driven configuration of Postfix/Dovecot virtual users","Centralized web UI for email administration tasks"],"not_for":["Replacing mail transfer agents or mail delivery components (Postfix/Dovecot are still required)","Highly dynamic tenant provisioning at high API-call volume without careful engineering","Use where a browser-based admin UI is not acceptable for security/compliance reasons"],"best_when":"You want a self-hosted, database-backed web UI to administer a virtual-mail Postfix/Dovecot setup.","avoid_when":"You cannot securely expose/administer a web application (TLS, hardened hosting, restricted access) or you need an agent-friendly programmatic API surface rather than a web admin tool.","alternatives":["Mailinabox (bundled solution)","Webmin/custom admin tooling for Postfix","Direct SQL/admin workflows for Postfix/Dovecot virtual users","Other Postfix admin panels (various open-source panels)"],"af_score":23.0,"security_score":51.5,"reliability_score":27.5,"package_type":"mcp_server","discovery_source":["docker_mcp"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T21:34:09.068282+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["web session cookies (typical for admin panels)","database-backed admin users (typical for postfixadmin deployments)"],"oauth":false,"scopes":false,"notes":"No OAuth/API-scope model described in the provided prompt; authentication appears oriented around web UI/admin access rather than API tokens."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Self-hosted open-source project; hosting and operational costs apply."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":23.0,"security_score":51.5,"reliability_score":27.5,"mcp_server_quality":0.0,"documentation_accuracy":35.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":35.0,"rate_limit_clarity":10.0,"tls_enforcement":70.0,"auth_strength":55.0,"scope_granularity":25.0,"dependency_hygiene":45.0,"secret_handling":60.0,"security_notes":"As a self-hosted admin web app, security depends heavily on deployment: TLS termination, restricting admin access, secure session/cookie settings, and protecting the database. Scope/least-privilege for API access is not evident (likely coarse admin-level access). Dependency hygiene and secret-handling quality can’t be verified from the provided prompt.","uptime_documented":0.0,"version_stability":50.0,"breaking_changes_history":35.0,"error_recovery":25.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Primarily a web admin interface; programmatic agent integration (CRUD) is not standardized via REST/OpenAPI.","Operational changes (email admin actions) can be stateful and have security implications; avoid blind retries without understanding database side effects.","Authentication is likely session-based; agents may need cookie/session handling rather than simple API keys."]}}