homelab/nomad-job/radicale.nomad
2022-09-09 17:19:07 +02:00

80 lines
2.0 KiB
HCL

job "radicale" {
datacenters = ["hetzner"]
type = "service"
meta {
forcedeploy = "0"
}
group "radicale"{
network {
mode = "host"
port "http" {
to = 5232
}
}
vault{
policies= ["access-tables"]
}
task "radicale" {
driver = "docker"
service {
name = "radicale"
port = "http"
tags = [
"homer.enable=true",
"homer.name=Radicale",
"homer.service=Application",
"homer.logo=https://radicale.org/assets/logo.svg",
"homer.target=_blank",
"homer.url=https://www.ducamps.win/${NOMAD_JOB_NAME}",
"traefik.enable=true",
"traefik.http.routers.${NOMAD_JOB_NAME}.rule=Host(`www.ducamps.win`)&&PathPrefix(`/radicale`)",
"traefik.http.routers.${NOMAD_JOB_NAME}.tls.domains[0].sans=www.ducamps.win",
"traefik.http.routers.${NOMAD_JOB_NAME}.tls.certresolver=myresolver",
"traefik.http.routers.${NOMAD_JOB_NAME}.middlewares=radicaleHeader,radicalestrip",
"traefik.http.middlewares.radicaleHeader.headers.customrequestheaders.X-Script-Name=/radicale",
"traefik.http.middlewares.radicalestrip.stripprefix.prefixes=/radicale",
]
}
config {
image = "tomsquest/docker-radicale"
ports = ["http"]
volumes = [
"local/config:/config/config",
"/mnt/diskstation/CardDav:/data"
]
}
env {
TAKE_FILE_OWNERSHIP=false
}
template {
data = <<EOH
[server]
hosts = 0.0.0.0:5232
[auth]
type = htpasswd
htpasswd_encryption = md5
htpasswd_filename = /data/users.htpasswd
delay = 1
[rights]
type = from_file
file = /data/rights.conf
[storage]
type = multifilesystem
filesystem_folder = /data/collections
EOH
destination = "local/config"
}
resources {
memory = 100
}
}
}
}