# Auto-generated using compose2nix v0.3.1.
{ pkgs, lib, ... }:

{
  # Runtime
  virtualisation.podman = {
    enable = true;
    autoPrune.enable = true;
    dockerCompat = true;
    defaultNetwork.settings = {
      # Required for container networking to be able to use names.
      dns_enabled = true;
    };
  };

  # Enable container name DNS for non-default Podman networks.
  # https://github.com/NixOS/nixpkgs/issues/226365
  networking.firewall.interfaces."podman+".allowedUDPPorts = [ 53 ];

  virtualisation.oci-containers.backend = "podman";

  # Containers
  virtualisation.oci-containers.containers."caddy" = {
    image = "docker.io/library/caddy:latest";
    volumes = [
      "/home/don/podman/caddy/Caddyfile:/etc/caddy/Caddyfile:rw"
      "/home/don/podman/caddy/config:/config/caddy:rw"
      "/home/don/podman/caddy/data:/data/caddy:rw"
      "/home/don/www/p365:/srv/p365:rw"
      "/home/don/www/travel.donaldharper.com:/srv/travel:rw"
      "/home/don/www/www.donaldharper.com:/srv/donaldharper:rw"
      "/home/don/www/www.donharper.org:/srv/donharper:rw"
      "/home/don/www/www.duckland.org:/srv/duckland:rw"
    ];
    ports = [ "443:443/tcp" "80:80/tcp" "2020:2020/tcp" ];
    user = "1000";
    log-driver = "journald";
    extraOptions = [
      "--hostname=caddy"
      "--network-alias=caddy"
      "--network=websites_default"
    ];
  };
  systemd.services."podman-caddy" = {
    serviceConfig = { Restart = lib.mkOverride 90 "no"; };
    after = [ "podman-network-websites_default.service" ];
    requires = [ "podman-network-websites_default.service" ];
    partOf = [ "podman-compose-websites-root.target" ];
    wantedBy = [ "podman-compose-websites-root.target" ];
    unitConfig.RequiresMountsFor = [
      "/home/don/podman/caddy/Caddyfile"
      "/home/don/podman/caddy/config"
      "/home/don/podman/caddy/data"
      "/home/don/www/p365"
      "/home/don/www/travel.donaldharper.com"
      "/home/don/www/www.donaldharper.com"
      "/home/don/www/www.donharper.org"
      "/home/don/www/www.duckland.org"
    ];
  };

  # Networks
  systemd.services."podman-network-websites_default" = {
    path = [ pkgs.podman ];
    serviceConfig = {
      Type = "oneshot";
      RemainAfterExit = true;
      ExecStop = "podman network rm -f websites_default";
    };
    script = ''
      podman network inspect websites_default || podman network create websites_default
    '';
    partOf = [ "podman-compose-websites-root.target" ];
    wantedBy = [ "podman-compose-websites-root.target" ];
  };

  # Root service
  # When started, this will automatically create all resources and start
  # the containers. When stopped, this will teardown all resources.
  systemd.targets."podman-compose-websites-root" = {
    unitConfig = { Description = "Root target generated by compose2nix."; };
    wantedBy = [ "multi-user.target" ];
  };
}