Initial commit

2025-11-06 20:28:41 +01:00
commit 5fc4fbcef3
182 changed files with 4742 additions and 0 deletions
--- a/init/enable-all-quadlets.sh
+++ b/init/enable-all-quadlets.sh
@@ -0,0 +1,35 @@
+#!/bin/bash
+set -o errexit -o pipefail -o noclobber -o nounset -o errtrace -o functrace
+
+setsebool -P container_use_devices on
+setsebool -P openvpn_run_unconfined on
+semanage fcontext -a -t container_file_t "/mnt/nas(/.*)?"
+#semanage fcontext -a -t container_file_t "/mnt/nas/containers/.*/storage/.*(/.*)?"
+restorecon -vR /mnt/nas
+
+users=("gitea" "homeassistant" "jdownloader" "kiwix" "komga" "navidrome" "nextcloud" "nginx" "pairdrop" "paperless" "pihole" "qbittorrent" "synapse" "wallabag")
+for user in "${users[@]}"; do
+  chown -R "${user}:${user}" "/var/home/${user}"
+  secrets_file="/var/home/${user}/.secrets"
+  if [[ -f "${secrets_file}" ]];then
+    sudo -u "${user}" /opt/bin/add-secrets.sh "${secrets_file}"
+  fi
+  systemctl --user -M "${user}@" daemon-reload
+  systemctl --user -M "${user}@" enable --now "podman-auto-update.timer" || true
+  systemctl --user -M "${user}@" stop "${user}.service" || true
+  systemctl --user -M "${user}@" start "${user}.service"
+  echo "${user} done"
+done
+systemctl --user -M "arr@" daemon-reload
+systemctl --user -M "arr@" start "overseerr.service"
+systemctl --user -M "tga@" daemon-reload
+systemctl --user -M "tga@" enable --now "update-dyndns.timer"
+
+systemctl --user -M "kiwix@" enable --now "clone-zim-updater.service"
+systemctl --user -M "nextcloud@" enable --now "pre-generate-preview.timer"
+systemctl --user -M "pihole@" enable --now "update-hints.timer"
+systemctl --user -M "pihole@" enable --now "update-root.timer"
+
+/opt/bin/add-secrets.sh /root/.secrets
+systemctl daemon-reload
+systemctl start samba.service