Add Podman deployment support for HMAC File Server 3.2

- Introduced Dockerfile.podman for building a Podman-compatible image. - Created deploy-podman.sh script for automated deployment and management. - Added Podman-specific README.md with quick start and configuration details. - Included example configuration file (config.toml.example) for production settings. - Implemented systemd service file for managing the HMAC File Server as a service. - Established health checks and security features in the container setup. - Documented deployment commands and troubleshooting steps in README.md.
2025-07-19 20:08:09 +00:00
parent 860761f72c
commit 9751fb9e93
9 changed files with 1806 additions and 4 deletions
--- a/dockerenv/podman/hmac-file-server.service
+++ b/dockerenv/podman/hmac-file-server.service
@ -0,0 +1,55 @@
+# HMAC File Server - Podman Systemd Service
+# Place this file at: ~/.config/systemd/user/hmac-file-server.service
+# For system-wide: /etc/systemd/system/hmac-file-server.service
+
+[Unit]
+Description=HMAC File Server 3.2 "Tremora del Terra" (Podman)
+Documentation=https://github.com/PlusOne/hmac-file-server
+Wants=network-online.target
+After=network-online.target
+RequiresMountsFor=%t/containers
+
+[Service]
+Type=notify
+NotifyAccess=all
+Environment=PODMAN_SYSTEMD_UNIT=%n
+Restart=on-failure
+RestartSec=5
+TimeoutStopSec=70
+
+# Main container execution
+ExecStart=/usr/bin/podman run \
+    --cidfile=%t/%n.ctr-id \
+    --cgroups=no-conmon \
+    --rm \
+    --sdnotify=conmon \
+    --replace \
+    --name hmac-file-server \
+    --user 1011:1011 \
+    --cap-drop=ALL \
+    --security-opt no-new-privileges \
+    --read-only \
+    --tmpfs /tmp:rw,noexec,nosuid,size=100m \
+    --publish 8888:8888 \
+    --publish 9090:9090 \
+    --volume /opt/podman/hmac-file-server/config/config.toml:/app/config.toml:ro,Z \
+    --volume /opt/podman/hmac-file-server/data:/data:rw,Z \
+    --volume /opt/podman/hmac-file-server/deduplication:/deduplication:rw,Z \
+    --volume /opt/podman/hmac-file-server/logs:/logs:rw,Z \
+    --health-cmd="curl -f http://localhost:8888/health || exit 1" \
+    --health-interval=30s \
+    --health-timeout=10s \
+    --health-retries=3 \
+    --health-start-period=40s \
+    localhost/hmac-file-server:latest -config /app/config.toml
+
+# Stop and cleanup
+ExecStop=/usr/bin/podman stop --ignore --cidfile=%t/%n.ctr-id
+ExecStopPost=/usr/bin/podman rm -f --ignore --cidfile=%t/%n.ctr-id
+
+# Reload configuration
+ExecReload=/bin/kill -HUP $MAINPID
+
+[Install]
+WantedBy=default.target
+# For system-wide installation, use: WantedBy=multi-user.target