jpp/ansible-roles
1
0
Fork 0
mirror of https://git.lapiole.org/dani/ansible-roles.git synced 2025-04-16 10:13:26 +02:00
Code Issues Packages Projects Releases Wiki Activity
ansible-roles/roles/bookstack/templates/bookstack-queue.service.j2
Daniel Berteaud 489c627e9d Update to 2021-12-25 20:02
2021-12-25 20:02:20 +01:00

30 lines
773 B
Django/Jinja
Raw Blame History

[Unit]
Description=BookStack {{ bookstack_id }} Queue Worker
[Service]
User={{ bookstack_php_user }}
Group={{ bookstack_php_user }}
Restart=always
ExecStart=/bin/php{{ bookstack_php_version }} {{ bookstack_root_dir }}/app/artisan queue:work --sleep=3 --tries=1 --max-time=3600
NoNewPrivileges=true
PrivateDevices=true
ProtectControlGroups=true
ProtectHome=true
ProtectKernelModules=true
ProtectKernelTunables=true
ProtectSystem=strict
RestrictRealtime=true
RestrictNamespaces=yes
ReadWritePaths={{ bookstack_root_dir }}
PrivateTmp=true
SystemCallArchitectures=native
SystemCallFilter=@system-service
SystemCallFilter=~@privileged
SystemCallFilter=~@resources
SystemCallErrorNumber=EPERM
LockPersonality=yes
MemoryDenyWriteExecute=yes
[Install]
WantedBy=multi-user.target
Reference in New Issue View Git Blame Copy Permalink