Главная Обзор Помощь
Регистрация Вход
root
/
apps
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: cc8356e297
Ветки Метки
apps
/
ix-dev
/
community
/
vaultwarden
/
templates
/
docker-compose.yaml

docker-compose.yaml 2.8 KB
История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. {% set tpl = ix_lib.base.render.Render(values) %}
    2. 

  2. 

  3. {% set c1 = tpl.add_container(values.consts.vaultwarden_container_name, "image") %}
    4. 

  4. {% set perm_container = tpl.deps.perms(values.consts.perms_container_name) %}
    5. 

  5. 

  6. {% set pg_config = {
    7. 

  7.   "user": values.consts.db_user,
    8. 

  8.   "password": values.vaultwarden.db_password,
    9. 

  9.   "database": values.consts.db_name,
    10. 

  10.   "volume": values.storage.postgres_data,
    11. 

  11. } %}
    12. 

  12. {% set postgres = tpl.deps.postgres(
    13. 

  13.   values.consts.postgres_container_name,
    14. 

  14.   values.vaultwarden.postgres_image_selector,
    15. 

  15.   pg_config, perm_container
    16. 

  16. ) %}
    17. 

  17. 

  18. {% do c1.set_user(values.run_as.user, values.run_as.group) %}
    19. 

  19. {% do c1.depends.add_dependency(values.consts.postgres_container_name, "service_healthy") %}
    20. 

  20. {% do c1.healthcheck.set_custom_test("/healthcheck.sh") %}
    21. 

  21. 

  22. {% do c1.environment.add_env("ROCKET_PORT", values.network.web_port.port_number) %}
    23. 

  23. {% do c1.environment.add_env("ENABLE_WEBSOCKET", values.vaultwarden.enable_websocket) %}
    24. 

  24. {% do c1.environment.add_env("ADMIN_TOKEN", values.vaultwarden.admin_token) %}
    25. 

  25. {% do c1.environment.add_env("DATABASE_URL", postgres.get_url("postgres")) %}
    26. 

  26. {% if values.network.domain %}
    27. 

  27.   {% do c1.environment.add_env("DOMAIN", values.network.domain) %}
    28. 

  28. {% endif %}
    29. 

  29. {% if values.network.certificate_id %}
    30. 

  30.   {% do c1.environment.add_env("ROCKET_TLS", '{certs="%s",key="%s"}'|format(values.consts.ssl_cert_path, values.consts.ssl_key_path)) %}
    31. 

  31.   {% do c1.configs.add("private", values.ix_certificates[values.network.certificate_id].privatekey, values.consts.ssl_key_path) %}
    32. 

  32.   {% do c1.configs.add("public", values.ix_certificates[values.network.certificate_id].certificate, values.consts.ssl_cert_path) %}
    33. 

  33. {% endif %}
    34. 

  34. 

  35. {% do c1.environment.add_user_envs(values.vaultwarden.additional_envs) %}
    36. 

  36. 

  37. {% set perms_config = {"uid": values.run_as.user, "gid": values.run_as.group, "mode": "check"} %}
    38. 

  38. {% do c1.add_storage("/data", values.storage.data) %}
    39. 

  39. {% do perm_container.add_or_skip_action("data", values.storage.data, perms_config) %}
    40. 

  40. {% for store in values.storage.additional_storage %}
    41. 

  41.   {% do c1.add_storage(store.mount_path, store) %}
    42. 

  42.   {% do perm_container.add_or_skip_action(store.mount_path, store, perms_config) %}
    43. 

  43. {% endfor %}
    44. 

  44. 

  45. {% do c1.add_port(values.network.web_port) %}
    46. 

  46. 

  47. {% if perm_container.has_actions() %}
    48. 

  48.   {% do perm_container.activate() %}
    49. 

  49.   {% do c1.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    50. 

  50.   {% do postgres.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    51. 

  51. {% endif %}
    52. 

  52. 

  53. {% set portal_scheme = "https" if values.network.certificate_id else "http" %}
    54. 

  54. {% do tpl.portals.add(values.network.web_port, {"scheme": portal_scheme}) %}
    55. 

  55. {% if values.vaultwarden.admin_token %}
    56. 

  56.   {% do tpl.portals.add(values.network.web_port, {"name": "Admin Portal", "path": "/admin", "scheme": portal_scheme}) %}
    57. 

  57. {% endif %}
    58. 

  58. 

  59. {{ tpl.render() | tojson }}
    60.