43 lines
1.1 KiB
Bash
Executable File
43 lines
1.1 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
. ./env.sh
|
|
set -e
|
|
|
|
mkdir -p $DATA_FOLDER
|
|
|
|
if systemctl --user list-units --full --all | grep -q "container-${CONTAINER_NAME}.service"; then
|
|
systemctl --user stop container-${CONTAINER_NAME}.service
|
|
fi
|
|
|
|
# if podman container exists "$CONTAINER_NAME"; then
|
|
# echo "Stop and delete existing container $CONTAINER_NAME"
|
|
# if podman inspect -f '{{.State.Running}}' "$CONTAINER_NAME" | grep -q true; then
|
|
# podman stop "$CONTAINER_NAME"
|
|
# fi
|
|
# podman rm "$CONTAINER_NAME"
|
|
# fi
|
|
|
|
podman create \
|
|
--name vaultwarden \
|
|
--restart=unless-stopped \
|
|
-e DOMAIN=$DOMAIN \
|
|
-e SHOW_PASSWORD_HINT=false \
|
|
-p $PORT:80 \
|
|
-v $DATA_FOLDER:/data \
|
|
docker.io/vaultwarden/server:latest
|
|
|
|
podman generate systemd \
|
|
--new \
|
|
--name $CONTAINER_NAME \
|
|
--files \
|
|
--restart-policy=always
|
|
|
|
USER_SYSTEMD="$HOME/.config/systemd/user"
|
|
mkdir -p $USER_SYSTEMD
|
|
cp container-$CONTAINER_NAME.service $USER_SYSTEMD
|
|
systemctl --user daemon-reload
|
|
systemctl --user enable --now container-$CONTAINER_NAME.service
|
|
|
|
sudo loginctl enable-linger $USER
|
|
|
|
# on local, allow ufw port from wireguard |