-
Notifications
You must be signed in to change notification settings - Fork 2
/
boundary.tf
40 lines (34 loc) · 883 Bytes
/
boundary.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
data "linuxkit_image" "boundary" {
name = "boundary"
image = "hashicorp/boundary:${var.boundary_version}"
command = ["/usr/bin/runsv", "/service/boundary"]
binds = [
"/run/config:/run/config",
"/run/runit:/run/runit:rshared",
"/etc/resolv.conf:/etc/resolv.conf",
"/service:/service",
"/usr/bin/runsv:/usr/bin/runsv",
]
capabilities = [
"CAP_IPC_LOCK",
"CAP_SETFCAP",
"CAP_SETGID",
"CAP_SETUID",
]
runtime {
mkdir = [
"/run/runit/supervise.boundary",
]
}
}
data "linuxkit_file" "boundary_svc" {
path = "service/boundary/run"
contents = "#!/bin/sh\nexec boundary server -config /run/config/boundary/boundary.hcl\n"
mode = "0755"
optional = false
}
data "linuxkit_file" "boundary_spr" {
path = "service/boundary/supervise"
symlink = "/run/runit/supervise.boundary"
optional = false
}