41 lines
1.1 KiB
Django/Jinja
41 lines
1.1 KiB
Django/Jinja
[Unit]
|
|
Description=Vaultwarden
|
|
|
|
[Container]
|
|
ContainerName=vaultwarden-{{ vaultwarden_identifier }}
|
|
Image=docker.io/vaultwarden/server:{{ vaultwarden_version }}
|
|
|
|
Environment=TZ=Europe/Berlin
|
|
Environment=DOMAIN=https://{{ vaultwarden_url }}
|
|
|
|
Network=traefik.network
|
|
|
|
Volume=/var/vaultwarden/{{ vaultwarden_identifier }}:/data
|
|
|
|
|
|
NoNewPrivileges=true
|
|
DropCapability=All
|
|
|
|
#UserNS=keep-id
|
|
# Required to access the Podman Socket
|
|
#SecurityLabelDisable=true
|
|
PodmanArgs=--userns=keep-id --security-opt label=disable
|
|
|
|
Label="traefik.http.routers.vaultwarden-{{ vaultwarden_identifier }}.tls.certresolver=resolver"
|
|
Label="traefik.http.routers.vaultwarden-{{ vaultwarden_identifier }}.tls=true"
|
|
Label="traefik.http.routers.vaultwarden-{{ vaultwarden_identifier }}.rule=Host(`{{ vaultwarden_url }}`)"
|
|
Label="traefik.http.routers.vaultwarden-{{ vaultwarden_identifier }}.loadbalancer.server.port=80"
|
|
|
|
[Service]
|
|
Restart=on-failure
|
|
# Restart Delay
|
|
RestartSec=30
|
|
# Allowed time for the service to start.
|
|
TimeoutStartSec=90
|
|
# Allowed time for the service to stop.
|
|
TimeoutStopSec=90
|
|
|
|
|
|
[Install]
|
|
WantedBy=default.target
|