configpolicy/roles/homeassistant/templates/homeassistant.service.j2

# vim: set ft=systemd :
[Unit]
Description=Home Assistant
After=network-online.target
Wants=network-online.target

[Service]
Type=notify
NotifyAccess=all
ExecStartPre=-/usr/bin/podman container rm --ignore -f homeassistant
ExecStart=/usr/bin/podman run \
    --pull never \
    --sdnotify=conmon --cgroups=no-conmon \
    --rm \
    --network=host \
    --name homeassistant \
    -v /var/lib/homeassistant:/config:Z \
    --uidmap 0:{{ homeassistant_user.uid }}:1 \
    --gidmap 0:{{ homeassistant_user.group }}:1 \
    --uidmap 1:4000000:65536 \
    --gidmap 1:4000000:65536 \
    ghcr.io/home-assistant/{{ homeassistant_image_name }}:stable
ProtectSystem=full
TemporaryFileSystem=/var/lib/homeassistant/.ssh
UMask=0077
TimeoutStartSec=5min

[Install]
WantedBy=multi-user.target