Acasă Explorează Ajutor
Înregistrare Autentificare
root
/
apps
1
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Ramură: master
Ramuri Etichete
apps
/
ix-dev
/
stable
/
pihole
/
templates
/
docker-compose.yaml

docker-compose.yaml 2.4 KB
Permalink Istoric Crud

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 
  1. {% set tpl = ix_lib.base.render.Render(values) %}
    2. 

  2. 

  3. {% set c1 = tpl.add_container(values.consts.pihole_container_name, "image") %}
    4. 

  4. 

  5. {% do c1.set_user(0, 0) %}
    6. 

  6. {% do c1.add_caps([
    7. 

  7.   "CHOWN",
    8. 

  8.   "DAC_OVERRIDE",
    9. 

  9.   "FOWNER",
    10. 

  10.   "KILL",
    11. 

  11.   "NET_ADMIN",
    12. 

  12.   "NET_BIND_SERVICE",
    13. 

  13.   "NET_RAW",
    14. 

  14.   "SETFCAP",
    15. 

  15.   "SETGID",
    16. 

  16.   "SETPCAP",
    17. 

  17.   "SETUID",
    18. 

  18.   "SYS_NICE",
    19. 

  19.   "SYS_TIME",
    20. 

  20. ]) %}
    21. 

  21. {% do c1.remove_security_opt("no-new-privileges") %}
    22. 

  22. {% do c1.healthcheck.set_test("tcp", {"port": values.network.web_port.port_number}) %}
    23. 

  23. {% do c1.set_shm_size_mb(values.pihole.shm_size_mb) %}
    24. 

  24. 

  25. {% set web_ports = namespace(x=[values.network.web_port.port_number]) %}
    26. 

  26. {% if values.network.https_port.bind_mode %}
    27. 

  27.   {% do web_ports.x.append("%ds"|format(values.network.https_port.port_number)) %}
    28. 

  28. {% endif %}
    29. 

  29. 

  30. {% do c1.environment.add_env("FTLCONF_webserver_port", web_ports.x|join(",")) %}
    31. 

  31. {% do c1.environment.add_env("FTLCONF_webserver_api_password", values.pihole.web_password) %}
    32. 

  32. {% if values.network.get('dhcp_config', {}).get('dhcp_enabled', false) %}
    33. 

  33.   {% do c1.environment.add_env("FTLCONF_dhcp_active", "true") %}
    34. 

  34.   {% do c1.environment.add_env("FTLCONF_dhcp_start", values.network.dhcp_config.start) %}
    35. 

  35.   {% do c1.environment.add_env("FTLCONF_dhcp_end", values.network.dhcp_config.end) %}
    36. 

  36.   {% do c1.environment.add_env("FTLCONF_dhcp_router", values.network.dhcp_config.gateway) %}
    37. 

  37. {% endif %}
    38. 

  38. {% if values.network.host_network and values.network.interface_name %}
    39. 

  39.   {% do c1.environment.add_env("FTLCONF_dns_interface", values.network.interface_name) %}
    40. 

  40.   {% do c1.environment.add_env("FTLCONF_dns_listeningMode", values.network.dns_listening_mode) %}
    41. 

  41. {% else %}
    42. 

  42.   {% do c1.environment.add_env("FTLCONF_dns_listeningMode", "all") %}
    43. 

  43. {% endif %}
    44. 

  44. 

  45. {% do c1.environment.add_user_envs(values.pihole.additional_envs) %}
    46. 

  46. 

  47. {% if not values.network.host_network %}
    48. 

  48.   {% do c1.add_port(values.network.https_port) %}
    49. 

  49.   {% do c1.add_port(values.network.web_port) %}
    50. 

  50.   {% do c1.add_port(values.network.dns_port, {"container_port": 53}) %}
    51. 

  51.   {% do c1.add_port(values.network.dns_port, {"container_port": 53, "protocol": "udp"}) %}
    52. 

  52. {% endif %}
    53. 

  53. 

  54. {% do c1.add_storage("/etc/pihole", values.storage.config) %}
    55. 

  55. {% do c1.add_storage("/etc/dnsmasq.d", values.storage.dnsmasq) %}
    56. 

  56. {% for store in values.storage.additional_storage %}
    57. 

  57.   {% do c1.add_storage(store.mount_path, store) %}
    58. 

  58. {% endfor %}
    59. 

  59. 

  60. {% do tpl.portals.add(values.network.web_port, {"path": "/admin/"}) %}
    61. 

  61. 

  62. {{ tpl.render() | tojson }}
    63.