# Auto-generated by compose2nix. { pkgs, lib, ... }: { # Runtime virtualisation.docker = { enable = true; autoPrune.enable = true; }; virtualisation.oci-containers.backend = "docker"; # Containers virtualisation.oci-containers.containers."passbolt-db" = { image = "mariadb:10.11"; environment = { "MYSQL_DATABASE" = "passbolt"; "MYSQL_PASSWORD" = "P4ssb0lt"; "MYSQL_RANDOM_ROOT_PASSWORD" = "true"; "MYSQL_USER" = "passbolt"; }; volumes = [ "passbolt_database_volume:/var/lib/mysql:rw" ]; log-driver = "journald"; extraOptions = [ "--network-alias=db" "--network=passbolt_default" ]; }; systemd.services."docker-passbolt-db" = { serviceConfig = { Restart = lib.mkOverride 90 "always"; RestartMaxDelaySec = lib.mkOverride 90 "1m"; RestartSec = lib.mkOverride 90 "100ms"; RestartSteps = lib.mkOverride 90 9; }; after = [ "docker-network-passbolt_default.service" "docker-volume-passbolt_database_volume.service" ]; requires = [ "docker-network-passbolt_default.service" "docker-volume-passbolt_database_volume.service" ]; partOf = [ "docker-compose-passbolt-root.target" ]; wantedBy = [ "docker-compose-passbolt-root.target" ]; }; virtualisation.oci-containers.containers."passbolt-passbolt" = { image = "passbolt/passbolt:latest-ce"; environment = { "APP_FULL_BASE_URL" = "https://passbolt.local"; "DATASOURCES_DEFAULT_DATABASE" = "passbolt"; "DATASOURCES_DEFAULT_HOST" = "db"; "DATASOURCES_DEFAULT_PASSWORD" = "P4ssb0lt"; "DATASOURCES_DEFAULT_USERNAME" = "passbolt"; }; volumes = [ "passbolt_gpg_volume:/etc/passbolt/gpg:rw" "passbolt_jwt_volume:/etc/passbolt/jwt:rw" ]; ports = [ "80:80/tcp" "443:443/tcp" ]; cmd = [ "/usr/bin/wait-for.sh" "-t" "0" "db:3306" "--" "/docker-entrypoint.sh" ]; dependsOn = [ "passbolt-db" ]; log-driver = "journald"; extraOptions = [ "--network-alias=passbolt" "--network=passbolt_default" ]; }; systemd.services."docker-passbolt-passbolt" = { serviceConfig = { Restart = lib.mkOverride 90 "always"; RestartMaxDelaySec = lib.mkOverride 90 "1m"; RestartSec = lib.mkOverride 90 "100ms"; RestartSteps = lib.mkOverride 90 9; }; after = [ "docker-network-passbolt_default.service" "docker-volume-passbolt_gpg_volume.service" "docker-volume-passbolt_jwt_volume.service" ]; requires = [ "docker-network-passbolt_default.service" "docker-volume-passbolt_gpg_volume.service" "docker-volume-passbolt_jwt_volume.service" ]; partOf = [ "docker-compose-passbolt-root.target" ]; wantedBy = [ "docker-compose-passbolt-root.target" ]; }; # Networks systemd.services."docker-network-passbolt_default" = { path = [ pkgs.docker ]; serviceConfig = { Type = "oneshot"; RemainAfterExit = true; ExecStop = "docker network rm -f passbolt_default"; }; script = '' docker network inspect passbolt_default || docker network create passbolt_default ''; partOf = [ "docker-compose-passbolt-root.target" ]; wantedBy = [ "docker-compose-passbolt-root.target" ]; }; # Volumes systemd.services."docker-volume-passbolt_database_volume" = { path = [ pkgs.docker ]; serviceConfig = { Type = "oneshot"; RemainAfterExit = true; }; script = '' docker volume inspect passbolt_database_volume || docker volume create passbolt_database_volume ''; partOf = [ "docker-compose-passbolt-root.target" ]; wantedBy = [ "docker-compose-passbolt-root.target" ]; }; systemd.services."docker-volume-passbolt_gpg_volume" = { path = [ pkgs.docker ]; serviceConfig = { Type = "oneshot"; RemainAfterExit = true; }; script = '' docker volume inspect passbolt_gpg_volume || docker volume create passbolt_gpg_volume ''; partOf = [ "docker-compose-passbolt-root.target" ]; wantedBy = [ "docker-compose-passbolt-root.target" ]; }; systemd.services."docker-volume-passbolt_jwt_volume" = { path = [ pkgs.docker ]; serviceConfig = { Type = "oneshot"; RemainAfterExit = true; }; script = '' docker volume inspect passbolt_jwt_volume || docker volume create passbolt_jwt_volume ''; partOf = [ "docker-compose-passbolt-root.target" ]; wantedBy = [ "docker-compose-passbolt-root.target" ]; }; # Root service # When started, this will automatically create all resources and start # the containers. When stopped, this will teardown all resources. systemd.targets."docker-compose-passbolt-root" = { unitConfig = { Description = "Root target generated by compose2nix."; }; wantedBy = [ "multi-user.target" ]; }; }