Dustin C. Hatch
22c085b35d
When`ProtectSystem` is enabled, systemd sets up a separate mount namespace for the service. Unfortunately, this appears to interfere with Podman and prevents it from cleaning up containers on shutdown.
29 lines
662 B
Plaintext
29 lines
662 B
Plaintext
[Unit]
|
|
Description=Frigate NVR
|
|
Wants=network-online.target
|
|
After=network-online.target
|
|
Requires=dev-apex_0.device
|
|
After=dev-apex_0.device
|
|
|
|
[Container]
|
|
Image=ghcr.io/blakeblackshear/frigate:0.12.1
|
|
PodmanArgs=--uidmap 0:209:1
|
|
PodmanArgs=--gidmap 0:209:1
|
|
PodmanArgs=--uidmap 1:6000001:65536
|
|
PodmanArgs=--gidmap 1:6000001:65536
|
|
PodmanArgs=--shm-size 256m
|
|
EnvironmentFile=/etc/sysconfig/frigate
|
|
Volume=/var/lib/frigate/media:/media/frigate:rw,z
|
|
Volume=/var/lib/frigate/tmp:/tmp:rw,z
|
|
Volume=/var/lib/frigate/config:/config:rw,z
|
|
AddDevice=/dev/apex_0
|
|
AddDevice=/dev/dri/renderD128
|
|
Network=host
|
|
|
|
[Service]
|
|
UMask=0077
|
|
Restart=always
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|