X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/7e5e5ba26f4a5b06fad5d1a1049df947e8a9cf00..d6a7b1ff202f827f02addc259a5c9dbc3638d056:/cookbooks/docker/recipes/default.rb?ds=inline diff --git a/cookbooks/docker/recipes/default.rb b/cookbooks/docker/recipes/default.rb index 80fd15b3f..1c8643d03 100644 --- a/cookbooks/docker/recipes/default.rb +++ b/cookbooks/docker/recipes/default.rb @@ -17,12 +17,13 @@ # limitations under the License. # -include_recipe "apt" +include_recipe "apt::docker" package %w[ docker-ce docker-ce-cli containerd.io + docker-compose-plugin ] directory "/etc/docker" do @@ -38,8 +39,34 @@ template "/etc/docker/daemon.json" do mode "644" end +service "containerd" do + action [:enable, :start] + subscribes :restart, "template[/etc/docker/daemon.json]" +end + service "docker" do action [:enable, :start] subscribes :restart, "template[/etc/docker/daemon.json]" - not_if { kitchen? } +end + +systemd_service "docker-system-prune" do + description "Cleanup up unused docker images and containers" + after ["docker.service"] + wants ["docker.service"] + user "root" + exec_start "/usr/bin/docker system prune --all --force" + sandbox :enable_network => true + memory_deny_write_execute false + restrict_address_families "AF_UNIX" +end + +systemd_timer "docker-system-prune" do + description "Cleanup up unused docker images and containers" + on_boot_sec "2h" + on_unit_active_sec "7d" + randomized_delay_sec "4h" +end + +service "docker-system-prune.timer" do + action [:enable, :start] end