# vim: ft=yaml.ansible
---
- name: Deploy Tor Docker container
community.docker.docker_container:
name: tor
state: "{{ 'absent' if down is defined and down else 'started' }}"
restart: "{{ restart is defined and restart }}"
recreate: "{{ recreate is defined and recreate }}"
image: goldy/tor-hidden-service:{{ services.tor.version }}
restart_policy: always
env:
# Required by SMP/XFTP server (we're not hosting anonymous services anyway)
TOR_EXTRA_OPTIONS: |
HiddenServiceNonAnonymousMode 1
HiddenServiceSingleHopMode 1
SAMSAPTIDEV_TOR_SERVICE_HOSTS: 80:samsapti:80
SAMSAPTIDEV_TOR_SERVICE_VERSION: '3'
SAMSAPTIDEV_TOR_SERVICE_KEY: "{{ secrets.tor.samsapti_dev_key }}"
SMPSERVER_TOR_SERVICE_HOSTS: 5223:smp-server:5223
SMPSERVER_TOR_SERVICE_VERSION: '3'
SMPSERVER_TOR_SERVICE_KEY: "{{ secrets.tor.simplexmq_smp_key }}"
XFTPSERVER_TOR_SERVICE_HOSTS: 5443:xftp-server:443
XFTPSERVER_TOR_SERVICE_VERSION: '3'
XFTPSERVER_TOR_SERVICE_KEY: "{{ secrets.tor.simplexmq_xftp_key }}"
networks:
- name: tor