{% set tpl = ix_lib.base.render.Render(values) %}

{% set c1 = tpl.add_container(values.consts.tianji_container_name, "image") %}
{% set perm_container = tpl.deps.perms(values.consts.perms_container_name) %}

{% set pg_config = {
  "user": values.consts.db_user,
  "password": values.tianji.db_password,
  "database": values.consts.db_name,
  "volume": values.storage.postgres_data,
} %}
{% set postgres = tpl.deps.postgres(
  values.consts.postgres_container_name,
  values.tianji.postgres_image_selector,
  pg_config, perm_container
) %}

{% do c1.set_user(0, 0) %}
{% do c1.healthcheck.set_test("wget", {"port": values.network.web_port.port_number, "path": "/health"}) %}
{% do c1.depends.add_dependency(values.consts.postgres_container_name, "service_healthy") %}

{% do c1.environment.add_env("PORT", values.network.web_port.port_number) %}
{% do c1.environment.add_env("NODE_ENV", "production") %}
{% do c1.environment.add_env("JWT_SECRET", values.tianji.jwt_secret) %}
{% do c1.environment.add_env("DATABASE_URL", postgres.get_url("postgresql")) %}
{% do c1.environment.add_env("ALLOW_OPENAPI", true) %}
{% do c1.environment.add_env("ALLOW_REGISTER", values.tianji.allow_register) %}
{% do c1.environment.add_user_envs(values.tianji.additional_envs) %}

{% do c1.add_port(values.network.web_port) %}
{% for store in values.storage.additional_storage %}
  {% do c1.add_storage(store.mount_path, store) %}
{% endfor %}

{% if perm_container.has_actions() %}
  {% do perm_container.activate() %}
  {% do postgres.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
{% endif %}

{% do tpl.portals.add(values.network.web_port) %}
{% do tpl.notes.set_body(values.consts.notes_body) %}

{{ tpl.render() | tojson }}