{% from "macros/init.sh" import init %} {% from "macros/entrypoint.sh" import entrypoint %} {% set tpl = ix_lib.base.render.Render(values) %} {% if not tpl.funcs.url_to_dict(values.storj.domain_address).port %} {% do tpl.funcs.fail("Domain address must include a port, but got [%s]"|format(values.storj.domain_address)) %} {% endif %} {% if values.storj.wallets | length != values.storj.wallets | unique | list | length %} {% do tpl.funcs.fail("Wallets must be unique, but got [%s]"|format(values.storj.wallets | join(","))) %} {% endif %} {% set c1 = tpl.add_container(values.consts.storj_container_name, "image") %} {% set setup = tpl.add_container(values.consts.init_container_name, "image") %} {% set perm_container = tpl.deps.perms(values.consts.perms_container_name) %} {% set perms_config = {"uid": values.run_as.user, "gid": values.run_as.group, "mode": "check"} %} {% do setup.set_user(values.run_as.user, values.run_as.group) %} {% do setup.add_caps(["CHOWN", "DAC_OVERRIDE", "FOWNER"]) %} {% do setup.restart.set_policy("on-failure", 1) %} {% do setup.remove_devices() %} {% do setup.healthcheck.disable() %} {% do setup.configs.add("init.sh", init(values), "/init.sh", "0755") %} {% do setup.set_entrypoint(["/bin/sh", "-c", "/init.sh"]) %} {% do c1.set_user(values.run_as.user, values.run_as.group) %} {% do c1.healthcheck.disable() %} {% do c1.depends.add_dependency(values.consts.init_container_name, "service_started") %} {% do c1.set_grace_period(values.storj.stop_grace_period) %} {% do c1.configs.add("entrypoint.sh", entrypoint(values), "/entrypoint.sh", "0755") %} {% do c1.set_entrypoint(["/bin/sh", "-c", "/entrypoint.sh"]) %} {% set envs = { "EMAIL": values.storj.email, "STORAGE": "%dGB" | format(values.storj.storage_size_gb), "ADDRESS": values.storj.domain_address, "WALLET": values.storj.wallet_address|string, } %} {% for k, v in envs.items() %} {% do c1.environment.add_env(k, v) %} {% do setup.environment.add_env(k, v) %} {% endfor %} {% do c1.environment.add_user_envs(values.storj.additional_envs) %} {% do setup.environment.add_user_envs(values.storj.additional_envs) %} {% if not values.network.host_network %} {% do c1.add_port(values.network.web_port, {"container_port": values.consts.container_web_port}) %} {% do c1.add_port(values.network.p2p_port, {"container_port": values.consts.container_p2p_port}) %} {% do c1.add_port(values.network.p2p_port, {"container_port": values.consts.container_p2p_port, "protocol": "udp"}) %} {% endif %} {% do c1.add_storage("/tmp", {"type": "anonymous"}) %} {% do setup.add_storage("/tmp", {"type": "anonymous"}) %} {% do c1.add_storage(values.consts.identity_tool_dir_files, tpl.funcs.temp_config("identity-tools-tmp")) %} {% do setup.add_storage(values.consts.identity_tool_dir_files, tpl.funcs.temp_config("identity-tools-tmp")) %} {% do perm_container.add_or_skip_action("identity-tools-tmp", tpl.funcs.temp_config("identity-tools-tmp"), perms_config) %} {% do c1.add_storage(values.consts.identity_dir, values.storage.identity) %} {% do setup.add_storage(values.consts.identity_dir, values.storage.identity) %} {% do perm_container.add_or_skip_action(values.consts.identity_dir, values.storage.identity, perms_config) %} {% do c1.add_storage(values.consts.config_dir, values.storage.data) %} {% do setup.add_storage(values.consts.config_dir, values.storage.data) %} {% do perm_container.add_or_skip_action(values.consts.config_dir, values.storage.data, perms_config) %} {% for store in values.storage.additional_storage %} {% do c1.add_storage(store.mount_path, store) %} {% do setup.add_storage(store.mount_path, store) %} {% do perm_container.add_or_skip_action(store.mount_path, store, perms_config) %} {% endfor %} {% if perm_container.has_actions() %} {% do perm_container.activate() %} {% do c1.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %} {% do setup.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %} {% endif %} {% do tpl.portals.add(values.network.web_port, {"port": values.consts.container_web_port if values.network.host_network else None}) %} {{ tpl.render() | tojson }}