Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
root
/
apps
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: a3086849e0
Branche Tagy
apps
/
ix-dev
/
community
/
restic-rest-server
/
templates
/
docker-compose.yaml

docker-compose.yaml 2.9 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. {% set tpl = ix_lib.base.render.Render(values) %}
    2. 

  2. 

  3. {% do tpl.funcs.require_no_reserved(values.rest_server.extra_options, "Extra Options", values.consts.reserved_options, starts_with=true) %}
    4. 

  4. 

  5. {% set c1 = tpl.add_container(values.consts.restic_rest_container_name, "image") %}
    6. 

  6. {% set perm_container = tpl.deps.perms(values.consts.perms_container_name) %}
    7. 

  7. {% set perms_config = {"uid": values.run_as.user, "gid": values.run_as.group, "mode": "check"} %}
    8. 

  8. {% set scheme = "https" if values.network.certificate_id else "http" %}
    9. 

  9. 

  10. {% do c1.set_user(values.run_as.user, values.run_as.group) %}
    11. 

  11. {% do c1.healthcheck.set_custom_test("pgrep rest-server") %}
    12. 

  12. 

  13. {% set options = namespace(x=[
    14. 

  14.   "--listen=:%d"|format(values.network.web_port.port_number),
    15. 

  15.   "--append-only=%s"|format(values.rest_server.append_only|string|lower),
    16. 

  16.   "--group-accessible-repos=%s"|format(values.rest_server.group_accessible_repos|string|lower),
    17. 

  17.   "--private-repos=%s"|format(values.rest_server.private_repos|string|lower),
    18. 

  18. ]) %}
    19. 

  19. 

  20. {% if values.network.certificate_id %}
    21. 

  21.   {% set cert = values.ix_certificates[values.network.certificate_id] %}
    22. 

  22.   {% do c1.configs.add("private", cert.privatekey, values.consts.ssl_key_path) %}
    23. 

  23.   {% do c1.configs.add("public", cert.certificate, values.consts.ssl_cert_path) %}
    24. 

  24.   {% do options.x.extend(["--tls=true", "--tls-key=%s"|format(values.consts.ssl_key_path), "--tls-cert=%s"|format(values.consts.ssl_cert_path)]) %}
    25. 

  25. {% endif %}
    26. 

  26. 

  27. {% if values.rest_server.no_auth %}
    28. 

  28.   {% do options.x.append("--no-auth") %}
    29. 

  29. {% elif values.rest_server.users %}
    30. 

  30.   {% set users = namespace(x=[]) %}
    31. 

  31.   {% for user in values.rest_server.users %}
    32. 

  32.     {% do users.x.append(tpl.funcs.htpasswd(user.username, user.password)) %}
    33. 

  33.   {% endfor %}
    34. 

  34. 

  35.   {% do c1.configs.add("htpasswd", users.x | join("\n"), values.consts.htpasswd_path) %}
    36. 

  36.   {% do c1.environment.add_env("PASSWORD_FILE", values.consts.htpasswd_path) %}
    37. 

  37. {% elif values.rest_server.proxy_auth_username %}
    38. 

  38.   {% do options.x.extend(["--proxy-auth-username", values.rest_server.proxy_auth_username]) %}
    39. 

  39. {% endif %}
    40. 

  40. 

  41. {% do options.x.extend(values.rest_server.extra_options) %}
    42. 

  42. {% do c1.environment.add_env("OPTIONS", options.x | join(" ")) %}
    43. 

  43. {% do c1.environment.add_env("DATA_DIRECTORY", values.consts.data_path) %}
    44. 

  44. 

  45. {% do c1.add_port(values.network.web_port) %}
    46. 

  46. 

  47. {% do c1.add_storage(values.consts.data_path, values.storage.data) %}
    48. 

  48. {% do perm_container.add_or_skip_action("data", values.storage.data, perms_config) %}
    49. 

  49. 

  50. {% for store in values.storage.additional_storage %}
    51. 

  51.   {% do c1.add_storage(store.mount_path, store) %}
    52. 

  52.   {% do perm_container.add_or_skip_action(store.mount_path, store, perms_config) %}
    53. 

  53. {% endfor %}
    54. 

  54. 

  55. {% if perm_container.has_actions() %}
    56. 

  56.   {% do perm_container.activate() %}
    57. 

  57.   {% do c1.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    58. 

  58. {% endif %}
    59. 

  59. 

  60. {{ tpl.render() | tojson }}
    61.