---
container_user: containers
container_uid: 1001
container_group: "{{ container_user }}"
container_gid: "{{ container_uid }}"

backups: containers

users:
  - name: gogs
    uid: 1000
    shell: /sbin/nologin

global_env_vars:
  - PUID={{ container_uid }}
  - PGID={{ container_gid }}
  - TZ=America/Los_Angeles

firewall_ports:
  - 80/tcp
  - 443/tcp
  - 10022/tcp

container_networks:
  - name: shareunderware
    driver: bridge
    subnet: 172.21.10.0/24
    ip_range: 172.21.10.0/24
    gateway: 172.21.10.1

containers:
  - name: swag
    active: true
    image: linuxserver/swag
    cap_add:
      - NET_ADMIN # required for fail2ban to modify iptables
    ports:
      - 80:80
      - 443:443
    volumes:
      - /opt/swag:/config
    restart: unless-stopped
    include_global_env_vars: true
    environment:
      - URL=shareunderware.com
      - VALIDATION=http
      - SUBDOMAINS=git,news,pasta,
      - EMAIL=certbot@blainestory.com
    mem_limit: 100m
    networks:
      - shareunderware

  - name: gogs
    active: true
    image: gogs/gogs
    ports:
      - "10022:22" # https://github.com/go-yaml/yaml/issues/34#issuecomment-55772666
    volumes:
      - /opt/gogs:/data
    mem_limit: 200m
    networks:
      - shareunderware

  - name: pasta
    active: true
    image: danielszabo99/microbin
    command:
      - --public-path
      - https://pasta.shareunderware.com/
      - --qr
      - --editable
      - --highlightsyntax
      - --private
    volumes:
      - /opt/pasta:/app/pasta_data
    mem_limit: 100m
    networks:
      - shareunderware