jonas/salt-states
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

first commit

Browse Source
This commit is contained in:
Jonas Forsberg
2023-06-27 09:16:37 +02:00
commit 3ec5ce616e
77 changed files with 3044 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
pod/files/99-rfxcom-serial.rules Normal file
View File

@@ -0,0 +1 @@
SUBSYSTEM=="tty", ATTRS{idVendor}=="0403", ATTRS{idProduct}=="6001", SYMLINK+="rfxcom", MODE="0666"

1
pod/files/99-zigbee-serial.rules Normal file
View File

@@ -0,0 +1 @@
SUBSYSTEM=="tty", ATTRS{idVendor}=="0451", ATTRS{idProduct}=="16a8", SYMLINK+="zigbee-serial", MODE="0666"

10
pod/files/check_image_updates.service.jinja Normal file
View File

@@ -0,0 +1,10 @@
[Unit]
Description=Check for image updates on configured podman containers
[Service]
Type=oneshot
User=root
ExecStart=/root/bin/check_image_updates.sh
[Install]
WantedBy=default.target

35
pod/files/check_image_updates.sh.jinja Normal file
View File

@@ -0,0 +1,35 @@
#!/usr/bin/env bash
URL="{{ pillar['podman']['gotify']['url'] }}"
TOKEN="{{ pillar['podman']['gotify']['token'] }}"
TITLE="Updates on $HOSTNAME"
PRIORITY="{{ pillar['podman']['gotify']['priority'] }}"
{% raw -%}
function check_update(){
IFS=',' read -r -a container_info <<< "$(podman container inspect $1 --format '{{ .Name }},{{ .ImageName }},{{ .Image }}')"
podman pull "${container_info[1]}"
if [[ "$(podman image inspect "${container_info[1]}" --format "{{.Id}}")" != "${container_info[2]}" ]];then
containers[${#containers[@]}]="${container_info[0]}"
fi
}
IFS=$'\n'
for line in $(podman container ls -q); do
check_update "$line"
done
if [[ "${#containers[@]}" == "0" ]]; then
exit
fi
MESSAGE=$(cat << EOM
Following ${#containers[@]} container(s) has updates:
${containers[*]}
EOM
)
curl "$URL/message?token=$TOKEN" -F "title=$TITLE" -F "priority=$PRIORITY" -F "message=$MESSAGE"
echo " "
{% endraw -%}

9
pod/files/check_image_updates.timer.jinja Normal file
View File

@@ -0,0 +1,9 @@
[Unit]
Description=Restic backup timer
[Timer]
OnCalendar=Sun, 12:00
Unit=check_image_updates.service
[Install]
WantedBy=timers.target

158
pod/files/pod.sh.jinja Normal file
View File

@@ -0,0 +1,158 @@
#!/usr/bin/env bash
function pull_image(){
{%- for container, cargs in pillar['pods'][pod]['containers'].items() %}
if ! podman image exists {{ cargs['image'] }}:{{ cargs['tag'] }}; then
podman pull {{ cargs['image'] }}:{{ cargs['tag'] }}
fi
{%- endfor %}
}
function create_pod() {
if ! podman pod exists {{ pod }};then
podman pod create \
--name {{ pod }} \
--infra-name {{ pod }}-infra \
{%- if args['ports'] is defined %}
{%- for ports in args['ports'] %}
-p {{ ports['host'] }}:{{ ports['container'] }}{% if ports['protocol'] is defined %}/{{ ports['protocol'] }}{% endif %} \
{%- endfor %}
{%- endif %}
fi
{%- for container, cargs in pillar['pods'][pod]['containers'].items() %}
if ! podman container exists {{ pod }}-{{ container }};then
podman container create \
--name {{ pod }}-{{ container }} \
--pod {{ pod }} \
{%- if cargs['podman_options'] is defined %}
{%- for option, value in cargs['podman_options'].items() %}
--{{ option }} {{ value }} \
{%- endfor %}
{%- endif %}
{%- if cargs['volumes'] is defined %}
{%- for volume, mount in cargs['volumes'].items() %}
-v {{ volume }}:{{ mount }} \
{%- endfor %}
{%- endif %}
{%- if cargs['env'] is defined %}
{%- for key, value in cargs['env'].items() %}
-e {{ key }}={{ value }} \
{%- endfor %}
{%- endif %}
{%- if cargs['devices'] is defined %}
{%- for key, value in cargs['devices'].items() %}
--device {{ key }}:{{ value}} \
{%- endfor %}
{%- endif %}
{{ cargs['image'] }}:{{ cargs['tag'] }}{%- if cargs['run'] is defined %} \
{{ cargs['run'] }}
{%- endif %}
fi
{%- endfor %}
}
function generate_systemd_unit_file() {
cd /etc/systemd/system
podman generate systemd --files --name {{ pod }} --pod-prefix="" --container-prefix=""
}
function check_update() {
ImageUpdate=0
{%- for container, cargs in pillar['pods'][pod]['containers'].items() %}
podman pull {{ cargs['image'] }}:{{ cargs['tag'] }}
if [[ "$(podman image inspect {{ cargs['image'] }}:{{ cargs['tag'] }} --format "{% raw %}{{.Id}}{% endraw %}")" == "$(podman inspect {{ pod }}-{{ container }} --format "{% raw %}{{ .Image }}{% endraw %}")" ]];then
echo "No image updates available for {{ pod }}-{{ container }}"
else
echo "Image update available for {{ pod }}-{{ container }}"
ImageUpdate=1
fi
{%- endfor %}
return $ImageUpdate
}
function update() {
systemctl stop {{ pod }}
podman pod rm {{ pod }}
create_pod
generate_systemd_unit_file
systemctl daemon-reload
systemctl enable --now {{ pod }}.service
}
function printHelp(){
cat << EOF
Usage ${0##*/} [options..]
-h,-?, --help Show help and exit
-p, --pull pull container images for all containers in pod {{ pod }}
-c, --create create {{ pod }} pod
-s, --start start and enables {{ pod }} pod
-S, --stop stop {{ pod }} pod
-i, --is-running check to see if pod service is running
-u, --check-update check if there are image updates avaiable
--update perform image update if it exists
-g, --generate-systemd generate user systemd service unit file
EOF
}
while :; do
case $1 in
-h|-\?|--help)
printHelp
exit
;;
-p|--pull)
pull_image
shift
;;
-v|--volumes)
create_volumes
shift
;;
-c|--create)
create_pod
shift
;;
-s|--start)
systemctl --user enable --now {{ pod }}.service
shift
;;
-S|--stop)
systemctl --user stop {{ pod }}.service
shift
;;
-i|--is-running)
systemctl --user is-active {{ pod }}.service
exit $?
shift
;;
-g|--generate-systemd)
generate_systemd_unit_file
shift
;;
-u|--check-update)
check_update
shift
;;
--update)
update
shift
;;
--) #End of all options
shift
break
;;
-?*)
printf "'%s' is not a valid option\n" "$1" >&2
exit 1
;;
*) #Break out of case, no more options
break
esac
shift
done