---
interfaces:
  disable: true

loc_needrestart:
  override: []

loc_borg:
  to_exclude:
    - /var/mail
    - /var/lib/lxcfs

loc_service_home:
  name: home
  install_dir: /var/local/services/home
  cron:
    frequency: "* * * * *"
  dependencies:
    - python3-jinja2
    - python3-ldap
  git:
    remote: https://gitlab.adm.crans.org/nounous/home.git
    version: master
  config:
    ldap:
      server: "ldap://{{ query('ldap', 'ip4', 'yson-partou', 'adm') }}/"
      binddn: "{{ vault.services.home.ldap.binddn }}"
      basedn: cn=Utilisateurs,dc=crans,dc=org
      password: "{{ vault.services.home.ldap.bindpass }}"
    home:
      path: /pool/home
      quota: 30G
    mail:
      path: /pool/mail
      quota: 10G

loc_service_borg:
  name: borg
  install_dir: /var/local/services/borg
  cron:
    frequency: "06-51/15 * * * *"
  dependencies:
    - python3-jinja2
    - python3-ldap
  generated: yes
  git:
    remote: https://gitlab.adm.crans.org/nounous/borg.git
    version: main
  config:
    ldap:
      server: "ldap://{{ query('ldap', 'ip4', 'yson-partou', 'adm') }}"
      binddn: "{{ vault.services.home.ldap.binddn }}"
      rootdn: cn=Utilisateurs,dc=crans,dc=org
      password: "{{ vault.services.home.ldap.bindpass }}"
    borg_key: "{{ vault.borg.encryption_passphrase }}"
    count: 50
    processes: 4