aboutsummaryrefslogtreecommitdiff
path: root/infrastructure/roles
diff options
context:
space:
mode:
Diffstat (limited to 'infrastructure/roles')
-rw-r--r--infrastructure/roles/podman/tasks/main.yaml10
-rw-r--r--infrastructure/roles/vaultwarden/tasks/main.yaml5
2 files changed, 14 insertions, 1 deletions
diff --git a/infrastructure/roles/podman/tasks/main.yaml b/infrastructure/roles/podman/tasks/main.yaml
index e804aca..66be760 100644
--- a/infrastructure/roles/podman/tasks/main.yaml
+++ b/infrastructure/roles/podman/tasks/main.yaml
@@ -6,3 +6,13 @@
name: podman-auto-update.timer
enabled: true
state: started
+- name: configure containers subuids
+ ansible.builtin.copy:
+ dest: /etc/subuid
+ content: |
+ containers:2147483647:2147483648
+- name: configure containers subgids
+ ansible.builtin.copy:
+ dest: /etc/subgid
+ content: |
+ containers:2147483647:2147483648
diff --git a/infrastructure/roles/vaultwarden/tasks/main.yaml b/infrastructure/roles/vaultwarden/tasks/main.yaml
index 96eb64f..313b48b 100644
--- a/infrastructure/roles/vaultwarden/tasks/main.yaml
+++ b/infrastructure/roles/vaultwarden/tasks/main.yaml
@@ -10,8 +10,9 @@
Image=ghcr.io/dani-garcia/vaultwarden:latest
Exec=/start.sh
EnvironmentFile=vaultwarden.environment
- Volume=/var/lib/vaultwarden/:/data/
+ Volume=/var/lib/vaultwarden/:/data/:idmap
Network=host
+ UserNS=auto
[Install]
WantedBy=default.target
@@ -36,6 +37,8 @@
ansible.builtin.file:
name: /var/lib/vaultwarden
state: directory
+ notify:
+ - restart quadlet
- meta: flush_handlers
- name: enable quadlet
ansible.builtin.systemd_service:
generated by cgit v1.2.3 (git 2.46.0) at 2026-02-01 22:16:43 +0000