From 59238d2c60fcb18884e9d0dac750271fa79b54aa Mon Sep 17 00:00:00 2001
From: WilliamMiceli <git@williammiceli.me>
Date: Tue, 4 Jun 2019 13:59:10 -0400
Subject: [PATCH] First test config of sysPass

---
 templates/sysPass/0/README.md           |  1 +
 templates/sysPass/0/docker-compose.yml  | 58 +++++++++++++++++++++++++
 templates/sysPass/0/rancher-compose.yml | 49 +++++++++++++++++++++
 templates/sysPass/config.yml            |  8 ++++
 4 files changed, 116 insertions(+)
 create mode 100644 templates/sysPass/0/README.md
 create mode 100644 templates/sysPass/0/docker-compose.yml
 create mode 100644 templates/sysPass/0/rancher-compose.yml
 create mode 100644 templates/sysPass/config.yml

diff --git a/templates/sysPass/0/README.md b/templates/sysPass/0/README.md
new file mode 100644
index 0000000..eced9de
--- /dev/null
+++ b/templates/sysPass/0/README.md
@@ -0,0 +1 @@
+# sysPass
\ No newline at end of file
diff --git a/templates/sysPass/0/docker-compose.yml b/templates/sysPass/0/docker-compose.yml
new file mode 100644
index 0000000..f288e73
--- /dev/null
+++ b/templates/sysPass/0/docker-compose.yml
@@ -0,0 +1,58 @@
+version: '2'
+
+services:
+  syspass:
+    image: syspass/syspass:3.0.5
+    dns: # Using Cloudflare DNS
+      - 1.1.1.1
+      - 1.0.0.1
+      - 2606:4700:4700::1111
+      - 2606:4700:4700::1001
+    labels:
+      io.rancher.container.pull_image: always
+      {{- if .Values.HOST_LABEL}}
+      io.rancher.scheduler.affinity:host_label: ${HOST_LABEL}
+      {{- end}}
+      traefik.enable: true
+      ### Start Web Segment
+      traefik.frontend.entryPoints: http,https
+      traefik.frontend.headers.forceSTSHeader: true
+      traefik.frontend.headers.referrerPolicy: no-referrer # Security enhancement (Prevents leaking of referer information)
+      traefik.frontend.headers.SSLRedirect: true
+      traefik.frontend.headers.STSPreload: true
+      traefik.frontend.headers.STSSeconds: 15552000
+      traefik.frontend.passHostHeader: true
+      traefik.frontend.rule: Host:${TRAEFIK_HOST}
+      traefik.port: "80"
+      ### End Web Segment
+    links:
+      - mysql
+    restart: on-failure
+    volumes:
+      - /etc/localtime:/etc/localtime:ro # Syncronize time of container with the host system
+      - /etc/timezone:/etc/timezone:ro # Syncronize timezone of container with the host system
+      - /Rancher/${DATA_DIR}/Configuration:/var/www/html/sysPass/app/config # sysPass configuration files
+      - /Rancher/${DATA_DIR}/Backups:/var/www/html/sysPass/app/backup # sysPass backups
+  mysql:
+    image: mysql:5
+    dns: # Using Cloudflare DNS
+      - 1.1.1.1
+      - 1.0.0.1
+      - 2606:4700:4700::1111
+      - 2606:4700:4700::1001
+    environment:
+      MYSQL_DATABASE: syspass_db
+      MYSQL_ROOT_PASSWORD: ${DB_ROOT_PASS}
+      MYSQL_USER: syspass_user
+      MYSQL_PASSWORD: ${DB_USER_PASS}
+    labels:
+      io.rancher.container.pull_image: always
+      {{- if .Values.HOST_LABEL}}
+      io.rancher.scheduler.affinity:host_label: ${HOST_LABEL}
+      {{- end}}
+      traefik.enable: false
+    restart: on-failure
+    volumes:
+      - /etc/localtime:/etc/localtime:ro # Syncronize time of container with the host system
+      - /etc/timezone:/etc/timezone:ro # Syncronize timezone of container with the host system
+      - /Rancher/${DATA_DIR}/Database:/var/lib/mysql # MySQL database files
diff --git a/templates/sysPass/0/rancher-compose.yml b/templates/sysPass/0/rancher-compose.yml
new file mode 100644
index 0000000..5c6b3bc
--- /dev/null
+++ b/templates/sysPass/0/rancher-compose.yml
@@ -0,0 +1,49 @@
+version: '2'
+catalog:
+  name: sysPass
+  version: latest
+  # description:
+  # minimum_rancher_version:
+  # maximum_rancher_version:
+  # upgrade_from:
+  questions:
+
+    - variable: "HOST_LABEL"
+      label: "Host Label Key/Value Pair"
+      description: |
+        The Label Key/Value pair of the host which containers should be deployed
+      default: "host.id=Host1"
+      required: false
+      type: string
+
+    - variable: "TRAEFIK_HOST"
+      label: "Public Host Domain"
+      description: |
+        The host that Traefik will use to provide public access.
+      default: "subdomain.domain.tld"
+      required: true
+      type: string
+
+    - variable: "DB_ROOT_PASS"
+      label: "Database Root Password"
+      description: |
+        A secure password to be used by the "root" database user.
+      # default:
+      required: true
+      type: password
+
+    - variable: "DB_USER_PASS"
+      label: "Database User Password"
+      description: |
+        A secure password to be used by the "syspass_user" database user.
+      # default:
+      required: true
+      type: password
+
+    - variable: "DATA_DIR"
+      label: "Data Directory"
+      description: |
+        The directory to store persistent data for the stack.
+      default: "Personal/sysPass"
+      required: true
+      type: string
\ No newline at end of file
diff --git a/templates/sysPass/config.yml b/templates/sysPass/config.yml
new file mode 100644
index 0000000..da454ce
--- /dev/null
+++ b/templates/sysPass/config.yml
@@ -0,0 +1,8 @@
+name: sysPass
+description: |
+  
+version: latest
+# category:
+maintainer: WilliamMiceli
+# license:
+# projectURL:
\ No newline at end of file