Adopt new hierarchy pattern

2022-12-28 21:59:34 +01:00
parent e19e325c65
commit 7ce6a968c7
21 changed files with 24 additions and 23 deletions
--- a/services/.gitignore
+++ b/services/.gitignore
@@ -0,0 +1,6 @@
+*/volumes/*/*
+!*/volumes/*/README.md
+!*/volumes/*/.gitkeep
+*/secrets/*
+!*/secrets/README.md
+!.gitignore
--- a/services/ddclient/configs/ddclient.conf.tpl
+++ b/services/ddclient/configs/ddclient.conf.tpl
@@ -0,0 +1,19 @@
+daemon=300              # check every 300 seconds
+syslog=yes              # log update msgs to syslog
+pid=/var/run/ddclient/ddclient.pid # record PID in file.
+ssl=yes                 # use ssl-support.  Works with
+                        # ssl-library
+postscript=/data/postscript_gotify.sh # run script after updating.  The
+                        # new IP is added as argument.
+use=web
+web=googledomains
+
+##
+## CloudFlare (www.cloudflare.com)
+##
+protocol=cloudflare,       \
+zone=dedicated.contact,    \
+ttl=1,                     \
+login=token,               \
+password=$CLOUDFLARE_TOKEN \
+$CLOUDFLARE_DOMAIN
--- a/services/ddclient/secrets/README.md
+++ b/services/ddclient/secrets/README.md
@@ -0,0 +1,5 @@
+Contains the file `gotify_token`
+Loadded in the postscript_gotify.sh to send a notification when a new IP is found
+
+Contains the file `clourflare_token`
+Token required to access the DNS API of cloudflare
--- a/services/ddclient/volumes/data/.gitignore
+++ b/services/ddclient/volumes/data/.gitignore
@@ -0,0 +1 @@
+!postscript_gotify.sh
--- a/services/ddclient/volumes/data/postscript_gotify.sh
+++ b/services/ddclient/volumes/data/postscript_gotify.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+if [ "$(cat /data/gotify_previous_ip || true)" != "$1" ]; then
+    echo -n "$1" > /data/gotify_previous_ip
+
+    curl -s "${GOTIFY_ADDRESS%/}/message" \
+        -X POST \
+        -H "X-Gotify-Key: $GOTIFY_TOKEN" \
+        -F "title=IP Address updated" \
+        -F "message=IP address detected as $1" \
+        -F "priority=5"
+fi
--- a/services/ddclient/volumes/init/.gitignore
+++ b/services/ddclient/volumes/init/.gitignore
@@ -0,0 +1 @@
+!entrypoint.sh
--- a/services/ddclient/volumes/init/entrypoint.sh
+++ b/services/ddclient/volumes/init/entrypoint.sh
@@ -0,0 +1,29 @@
+#!/bin/bash
+
+# usage: file_env VAR [DEFAULT]
+#    ie: file_env 'XYZ_DB_PASSWORD' 'example'
+# (will allow for "$XYZ_DB_PASSWORD_FILE" to fill in the value of
+#  "$XYZ_DB_PASSWORD" from a file, especially for Docker's secrets feature)
+file_env() {
+	local var="$1"
+	local fileVar="${var}_FILE"
+	local def="${2:-}"
+	if [ "${!var:-}" ] && [ "${!fileVar:-}" ]; then
+		mysql_error "Both $var and $fileVar are set (but are exclusive)"
+	fi
+	local val="$def"
+	if [ "${!var:-}" ]; then
+		val="${!var}"
+	elif [ "${!fileVar:-}" ]; then
+		val="$(< "${!fileVar}")"
+	fi
+	export "$var"="$val"
+	unset "$fileVar"
+}
+
+apk add --update gettext
+
+file_env 'GOTIFY_TOKEN'
+file_env 'CLOUDFLARE_TOKEN'
+
+envsubst < /config/ddclient.conf.tpl > /ddclient.conf
--- a/services/gotify/secrets/README.md
+++ b/services/gotify/secrets/README.md
@@ -0,0 +1,4 @@
+Contains the file `admin_password`
+
+Envirnonment variable file for the default admin password, this is because gotify doesn't support docker secrets yet
+https://github.com/gotify/server/issues/392
--- a/services/gotify/volumes/data/.gitignore
+++ b/services/gotify/volumes/data/.gitignore
@@ -0,0 +1 @@
+!entrypoint.sh
--- a/services/gotify/volumes/data/entrypoint.sh
+++ b/services/gotify/volumes/data/entrypoint.sh
@@ -0,0 +1,28 @@
+#!/bin/bash
+
+# usage: file_env VAR [DEFAULT]
+#    ie: file_env 'XYZ_DB_PASSWORD' 'example'
+# (will allow for "$XYZ_DB_PASSWORD_FILE" to fill in the value of
+#  "$XYZ_DB_PASSWORD" from a file, especially for Docker's secrets feature)
+file_env() {
+	local var="$1"
+	local fileVar="${var}_FILE"
+	local def="${2:-}"
+	if [ "${!var:-}" ] && [ "${!fileVar:-}" ]; then
+		mysql_error "Both $var and $fileVar are set (but are exclusive)"
+	fi
+	local val="$def"
+	if [ "${!var:-}" ]; then
+		val="${!var}"
+	elif [ "${!fileVar:-}" ]; then
+		val="$(< "${!fileVar}")"
+	fi
+	export "$var"="$val"
+	unset "$fileVar"
+}
+
+cd /app
+
+file_env 'GOTIFY_DEFAULTUSER_PASS'
+
+./gotify-app "$@"
--- a/services/portainer/secrets/README.md
+++ b/services/portainer/secrets/README.md
@@ -0,0 +1,2 @@
+Contains the file `portainer_password`
+More on https://docs.portainer.io/advanced/cli#method-2-creating-the-account-using-a-file
--- a/services/portainer/volumes/data/.gitkeep
+++ b/services/portainer/volumes/data/.gitkeep
--- a/services/smokeping/volumes/data/.gitkeep
+++ b/services/smokeping/volumes/data/.gitkeep
--- a/services/traefik/configs/traefik.yml
+++ b/services/traefik/configs/traefik.yml
@@ -0,0 +1,29 @@
+providers:
+  docker:
+    endpoint: tcp://docker:2375
+    exposedByDefault: false
+    network: traefik
+
+serverstransport:
+  insecureskipverify: true
+
+api:
+  insecure: true
+
+accessLog: {}
+
+entryPoints:
+  web:
+    address: :80
+    http:
+#      redirections:
+#        entryPoint:
+#          to: websecure
+#          scheme: https
+  websecure:
+    address: :443
+    http:
+      tls: {}
+
+global:
+  sendAnonymousUsage: false
--- a/services/watchtower/secrets/README.md
+++ b/services/watchtower/secrets/README.md
@@ -0,0 +1,2 @@
+Contains the file `gotify_token`
+More on https://crazymax.dev/diun/notif/gotify/