noticket - reorganized podman

2024-02-01 15:35:11 -05:00
parent 27942f9178
commit 184cd2574d
25 changed files with 102 additions and 98 deletions
--- a/ansible/roles/podman/tasks/containers/base/nginx.yml
+++ b/ansible/roles/podman/tasks/containers/base/nginx.yml
@@ -0,0 +1,32 @@
+---
+- import_tasks: podman/podman-check.yml
+  vars:
+    container_name: nginx
+    container_image: "{{ image }}"
+
+- name: create nginx container
+  become: true
+  become_user: "{{ podman_user }}"
+  containers.podman.podman_container:
+    name: nginx
+    image: "{{ image }}"
+    entrypoint: ""
+    command: ["nginx", "-g", "daemon off;"]
+    restart_policy: on-failure:3
+    log_driver: journald
+    network:
+      - host
+    cap_add:
+      - CAP_NET_BIND_SERVICE
+    ports:
+      - 80:80
+      - 443:443
+    volumes:
+      - "{{ nginx_path }}/etc:/etc/nginx:ro"
+      - "/srv/http/letsencrypt:/srv/http/letsencrypt:z"
+      - "/etc/letsencrypt:/etc/letsencrypt:ro"
+
+- name: create systemd startup job for nginx
+  include_tasks: podman/systemd-generate.yml
+  vars:
+    container_name: nginx