43 lines
793 B
Nix
43 lines
793 B
Nix
{
|
|
pkgs,
|
|
inputs,
|
|
system,
|
|
...
|
|
}:
|
|
let
|
|
selfPkgs = inputs.self.packages.${system};
|
|
in
|
|
pkgs.dockerTools.buildImage {
|
|
name = "oidcwarden";
|
|
fromImage = import ../base { inherit pkgs; };
|
|
|
|
copyToRoot = pkgs.buildEnv {
|
|
name = "root";
|
|
paths = with selfPkgs; [
|
|
oidcwarden
|
|
oidcwarden.webvault
|
|
];
|
|
pathsToLink = [
|
|
"/bin"
|
|
"/share"
|
|
];
|
|
};
|
|
|
|
config = {
|
|
Entrypoint = [ "oidcwarden" ];
|
|
Env = [
|
|
"WEB_VAULT_FOLDER=${selfPkgs.oidcwarden.webvault}/share/vaultwarden/vault"
|
|
"DATA_FOLDER=/var/lib/vaultwarden"
|
|
"ROCKET_PROFILE=release"
|
|
"ROCKET_ADDRESS=0.0.0.0"
|
|
];
|
|
WorkingDir = "/var/lib/vaultwarden";
|
|
Volumes = {
|
|
"/var/lib/vaultwarden" = { };
|
|
};
|
|
ExposedPorts = {
|
|
"8000/tcp" = { };
|
|
};
|
|
};
|
|
}
|