Add Vaultwarden (#320)

author: alexpdp7 <alex@pdp7.net> 2025-01-26 10:26:52 +0100
committer: GitHub <noreply@github.com> 2025-01-26 10:26:52 +0100
commit: 28e31c610ae7abcd8662a506a28e883715599a13 (patch)
tree: a10e8f752020e265d8a1fb36f1e4d005da39478b /personal_infra/puppet/modules
parent: 15a69894b8ac53e898723a311df54c41dd6fb712 (diff)
1 files changed, 31 insertions, 0 deletions
diff --git a/personal_infra/puppet/modules/vaultwarden/manifests/init.pp b/personal_infra/puppet/modules/vaultwarden/manifests/init.pp
new file mode 100644
index 00000000..d92e38f0
--- /dev/null
+++ b/personal_infra/puppet/modules/vaultwarden/manifests/init.pp
@@ -0,0 +1,31 @@
+class vaultwarden {
+  package {['vaultwarden', 'vaultwarden-web']:}
+  ->
+  file {'/var/lib/vaultwarden/data':
+    ensure => directory,
+    owner => 'vaultwarden',
+    group => 'vaultwarden',
+    mode => '700',
+  }
+  ->
+  service {'vaultwarden':
+    ensure => running,
+    enable => true,
+  }
+
+  Package['vaultwarden']
+  ->
+  file {'/etc/vaultwarden/vaultwarden.cfg':
+    content => @(EOT)
+    # see https://src.fedoraproject.org/rpms/vaultwarden/blob/rawhide/f/vaultwarden.cfg
+
+    # uncomment temporarily
+    SIGNUPS_ALLOWED=false
+    WEB_VAULT_FOLDER=/usr/share/vaultwarden-web
+    ROCKET_ADDRESS=0.0.0.0
+    | EOT
+    ,
+  }
+  ~>
+  Service['vaultwarden']
+}
author	alexpdp7 <alex@pdp7.net>	2025-01-26 10:26:52 +0100
committer	GitHub <noreply@github.com>	2025-01-26 10:26:52 +0100
commit	28e31c610ae7abcd8662a506a28e883715599a13 (patch)
tree	a10e8f752020e265d8a1fb36f1e4d005da39478b /personal_infra/puppet/modules
parent	15a69894b8ac53e898723a311df54c41dd6fb712 (diff)