43 lines
1.2 KiB
YAML
43 lines
1.2 KiB
YAML
---
|
|
- name: Ensure registries are configured for containers
|
|
lineinfile:
|
|
path: /etc/containers/registries.conf
|
|
line: unqualified-search-registries = ["quay.io", "docker.io"]
|
|
regexp: '^unqualified-search-registries'
|
|
backup: yes
|
|
|
|
- name: Ensure Signal API container is running
|
|
containers.podman.podman_container:
|
|
name: signal-api
|
|
image: "{{ signal_container_image }}"
|
|
state: started
|
|
recreate: false
|
|
restart_policy: always
|
|
publish:
|
|
- "{{ signal_api_port }}:{{ signal_api_port }}"
|
|
volume:
|
|
- "{{ signal_data_folder }}:/home/.local/share/signal-cli"
|
|
env:
|
|
MODE: native
|
|
PORT: "{{ signal_api_port }}"
|
|
#AUTO_RECEIVE_SCHEDULE: "0 22 * * *"
|
|
register: container
|
|
ignore_errors: true
|
|
|
|
- name: Ensure UFW allow traffic to exposed port
|
|
ufw:
|
|
rule: allow
|
|
route: true
|
|
to_port: "{{ signal_api_port }}"
|
|
|
|
- name: Generate service unit
|
|
shell: podman generate systemd --new --name podman_signal_api > /etc/systemd/system/podman_signal_api.service
|
|
args:
|
|
creates: /etc/systemd/system/podman_signal_api.service
|
|
|
|
- name: Enable service unit
|
|
systemd:
|
|
name: podman_signal_api.service
|
|
daemon_reload: true
|
|
enabled: true
|
|
masked: false
|