Secrets now working. Try to get disks to mount correctly.
This commit is contained in:
Raphaël Numbus
@@ -13,6 +13,7 @@
|
||||
settings = {
|
||||
keyFile = "/etc/secrets/disks/content-${j}";
|
||||
allowDiscards = ${ALLOW_DISCARDS:-false};
|
||||
options = [ "noauto" ];
|
||||
};
|
||||
content = {
|
||||
type = "filesystem";
|
||||
|
||||
@@ -13,6 +13,7 @@
|
||||
settings = {
|
||||
keyFile = "/etc/secrets/disks/parity-${j}";
|
||||
allowDiscards = ${ALLOW_DISCARDS:-false};
|
||||
options = [ "noauto" ];
|
||||
};
|
||||
content = {
|
||||
type = "filesystem";
|
||||
|
||||
@@ -55,8 +55,8 @@ in
|
||||
|
||||
systemd.services.frigate = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -69,8 +69,8 @@ in
|
||||
|
||||
systemd.services.gitea = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -55,8 +55,8 @@ in
|
||||
|
||||
systemd.services.hass = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -91,8 +91,8 @@ in
|
||||
|
||||
systemd.services.immich = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -34,8 +34,8 @@ in
|
||||
|
||||
systemd.services.it-tools = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -57,8 +57,8 @@ in
|
||||
|
||||
systemd.services.nextcloud = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -86,8 +86,8 @@ in
|
||||
|
||||
systemd.services.passbolt = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -63,8 +63,8 @@ in
|
||||
|
||||
systemd.services.pihole = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "traefik.service" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "traefik.service" "podman.socket" ];
|
||||
wantedBy = ["multi-user.target"];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -133,8 +133,8 @@ in
|
||||
|
||||
systemd.services.traefik = {
|
||||
description = "Podman container : ${container_name}";
|
||||
after = [ "network.target" "docker.socket" ];
|
||||
requires = [ "network.target" ];
|
||||
requires = [ "podman.socket" ];
|
||||
after = [ "network.target" "podman.socket" ];
|
||||
wantedBy = [ "multi-user.target" ];
|
||||
path = [ pkgs.podman-compose ];
|
||||
|
||||
|
||||
@@ -1,68 +1,68 @@
|
||||
ssh_public_keys: "$SSH_PUBLIC_KEY"
|
||||
sender_email_address_password: "$SENDER_EMAIL_ADDRESS_PASSWORD"
|
||||
ssh_public_keys: $SSH_PUBLIC_KEY
|
||||
sender_email_address_password: $SENDER_EMAIL_ADDRESS_PASSWORD
|
||||
|
||||
podman:
|
||||
frigate: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
FRIGATE_MQTT_USER="$HOME_ASSISTANT_MQTT_USER"
|
||||
FRIGATE_MQTT_PASSWORD="$HOME_ASSISTANT_MQTT_PASSWORD"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
FRIGATE_MQTT_USER=$HOME_ASSISTANT_MQTT_USER
|
||||
FRIGATE_MQTT_PASSWORD=$HOME_ASSISTANT_MQTT_PASSWORD
|
||||
gitea: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
DB_NAME="$GITEA_DB_NAME"
|
||||
DB_USERNAME="$GITEA_DB_USERNAME"
|
||||
DB_PASSWORD="$GITEA_DB_PASSWORD"
|
||||
POSTGRES_HOST="gitea-database"
|
||||
POSTGRES_PORT="5432"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
DB_NAME=$GITEA_DB_NAME
|
||||
DB_USERNAME=$GITEA_DB_USERNAME
|
||||
DB_PASSWORD=$GITEA_DB_PASSWORD
|
||||
POSTGRES_HOST=gitea-database
|
||||
POSTGRES_PORT=5432
|
||||
home_assistant: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
HOME_ASSISTANT_MQTT_USER="$HOME_ASSISTANT_MQTT_USER"
|
||||
HOME_ASSISTANT_MQTT_PASSWORD="$HOME_ASSISTANT_MQTT_PASSWORD"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
HOME_ASSISTANT_MQTT_USER=$HOME_ASSISTANT_MQTT_USER
|
||||
HOME_ASSISTANT_MQTT_PASSWORD=$HOME_ASSISTANT_MQTT_PASSWORD
|
||||
immich: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
DB_DATABASE_NAME="$IMMICH_DB_NAME"
|
||||
DB_USERNAME="$IMMICH_DB_USERNAME"
|
||||
DB_PASSWORD="$IMMICH_DB_PASSWORD"
|
||||
IMMICH_VERSION="release"
|
||||
IMMICH_TRUSTED_PROXIES="172.16.50.253"
|
||||
REDIS_HOSTNAME="immich-redis"
|
||||
DB_HOSTNAME="immich-database"
|
||||
UPLOAD_LOCATION="/mnt/data/immich"
|
||||
DB_DATA_LOCATION="/mnt/config/immich/database"
|
||||
TZ="Europe/Paris"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
DB_DATABASE_NAME=$IMMICH_DB_NAME
|
||||
DB_USERNAME=$IMMICH_DB_USERNAME
|
||||
DB_PASSWORD=$IMMICH_DB_PASSWORD
|
||||
IMMICH_VERSION=release
|
||||
IMMICH_TRUSTED_PROXIES=172.16.50.253
|
||||
REDIS_HOSTNAME=immich-redis
|
||||
DB_HOSTNAME=immich-database
|
||||
UPLOAD_LOCATION=/mnt/data/immich
|
||||
DB_DATA_LOCATION=/mnt/config/immich/database
|
||||
TZ=Europe/Paris
|
||||
it_tools: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
nextcloud: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
NEXTCLOUD_ENABLE_DRI_DEVICE="$TARGET_GRAPHICS"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
NEXTCLOUD_ENABLE_DRI_DEVICE=$TARGET_GRAPHICS
|
||||
passbolt: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
PASSBOLT_MYSQL_DATABASE="$PASSBOLT_DB_NAME"
|
||||
PASSBOLT_MYSQL_USER="$PASSBOLT_DB_USERNAME"
|
||||
PASSBOLT_MYSQL_PASSWORD="$PASSBOLT_DB_PASSWORD"
|
||||
SENDER_EMAIL_ADDRESS="$SENDER_EMAIL_ADDRESS"
|
||||
SENDER_EMAIL_ADDRESS_PASSWORD="$SENDER_EMAIL_ADDRESS_PASSWORD"
|
||||
SENDER_EMAIL_DOMAIN="$SENDER_EMAIL_DOMAIN"
|
||||
SENDER_EMAIL_PORT="$SENDER_EMAIL_PORT"
|
||||
EMAIL_ADDRESS="$EMAIL_ADDRESS"
|
||||
TZ="Europe/Paris"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
PASSBOLT_MYSQL_DATABASE=$PASSBOLT_DB_NAME
|
||||
PASSBOLT_MYSQL_USER=$PASSBOLT_DB_USERNAME
|
||||
PASSBOLT_MYSQL_PASSWORD=$PASSBOLT_DB_PASSWORD
|
||||
SENDER_EMAIL_ADDRESS=$SENDER_EMAIL_ADDRESS
|
||||
SENDER_EMAIL_ADDRESS_PASSWORD=$SENDER_EMAIL_ADDRESS_PASSWORD
|
||||
SENDER_EMAIL_DOMAIN=$SENDER_EMAIL_DOMAIN
|
||||
SENDER_EMAIL_PORT=$SENDER_EMAIL_PORT
|
||||
EMAIL_ADDRESS=$EMAIL_ADDRESS
|
||||
TZ=Europe/Paris
|
||||
pi_hole: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
HOME_ROUTER_SUBNET="$HOME_ROUTER_SUBNET"
|
||||
HOME_ROUTER_IP="$HOME_ROUTER_IP"
|
||||
HOME_SERVER_IP="$HOME_SERVER_IP"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
HOME_ROUTER_SUBNET=$HOME_ROUTER_SUBNET
|
||||
HOME_ROUTER_IP=$HOME_ROUTER_IP
|
||||
HOME_SERVER_IP=$HOME_SERVER_IP
|
||||
FTLCONF_webserver_api_password=$FTLCONF_WEBSERVER_PASSWORD
|
||||
TZ="Europe/Paris"
|
||||
TZ=Europe/Paris
|
||||
traefik: |
|
||||
DOMAIN_NAME="$DOMAIN_NAME"
|
||||
CF_DNS_API_TOKEN="$CF_DNS_API_TOKEN"
|
||||
DOMAIN_NAME=$DOMAIN_NAME
|
||||
CF_DNS_API_TOKEN=$CF_DNS_API_TOKEN
|
||||
|
||||
disks:
|
||||
content-disk-1: "$CONTENT_DISK_1_KEY"
|
||||
content-disk-2: "$CONTENT_DISK_2_KEY"
|
||||
content-disk-3: "$CONTENT_DISK_3_KEY"
|
||||
content-disk-4: "$CONTENT_DISK_4_KEY"
|
||||
content-disk-5: "$CONTENT_DISK_5_KEY"
|
||||
content-disk-6: "$CONTENT_DISK_6_KEY"
|
||||
parity-disk-1: "$PARITY_DISK_1_KEY"
|
||||
parity-disk-2: "$PARITY_DISK_2_KEY"
|
||||
parity-disk-3: "$PARITY_DISK_3_KEY"
|
||||
content-disk-1: $CONTENT_DISK_1_KEY
|
||||
content-disk-2: $CONTENT_DISK_2_KEY
|
||||
content-disk-3: $CONTENT_DISK_3_KEY
|
||||
content-disk-4: $CONTENT_DISK_4_KEY
|
||||
content-disk-5: $CONTENT_DISK_5_KEY
|
||||
content-disk-6: $CONTENT_DISK_6_KEY
|
||||
parity-disk-1: $PARITY_DISK_1_KEY
|
||||
parity-disk-2: $PARITY_DISK_2_KEY
|
||||
parity-disk-3: $PARITY_DISK_3_KEY
|
||||
|
||||
Reference in New Issue
Block a user