From 478142f35236d17364155ab501087a8195e23a66 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Julian-Samuel=20Geb=C3=BChr?= <julian-samuel@gebuehr.net>
Date: Mon, 5 Sep 2022 00:07:33 +0200
Subject: [PATCH] Add tmp path to allow container writing there

Background why I did this: https://docs.gunicorn.org/en/stable/settings.html#worker-tmp-dir
---
 roles/matrix-cactus-comments/defaults/main.yml                  | 2 ++
 roles/matrix-cactus-comments/tasks/setup_install.yml            | 1 +
 .../templates/systemd/matrix-cactus-comments.service.j2         | 1 +
 3 files changed, 4 insertions(+)

diff --git a/roles/matrix-cactus-comments/defaults/main.yml b/roles/matrix-cactus-comments/defaults/main.yml
index 21dec3d56..8ff32a592 100644
--- a/roles/matrix-cactus-comments/defaults/main.yml
+++ b/roles/matrix-cactus-comments/defaults/main.yml
@@ -9,6 +9,8 @@ matrix_cactus_comments_docker_src_files_path: "{{ matrix_cactus_comments_base_pa
 
 
 matrix_cactus_comments_base_path: "{{ matrix_base_data_path }}/cactus-comments"
+matrix_cactus_comments_container_tmp_path: "{{ matrix_cactus_comments_base_path }}/tmp"
+
 matrix_cactus_comments_app_service_config_file: "{{ matrix_cactus_comments_base_path }}/cactus_appservice.yaml"
 matrix_cactus_comments_app_service_env_file: "{{ matrix_cactus_comments_base_path }}/cactus.env"
 matrix_synapse_app_service_config_files: "{{ matrix_cactus_comments_app_service_config_file }}"
diff --git a/roles/matrix-cactus-comments/tasks/setup_install.yml b/roles/matrix-cactus-comments/tasks/setup_install.yml
index f8908e1c2..e55f07e34 100644
--- a/roles/matrix-cactus-comments/tasks/setup_install.yml
+++ b/roles/matrix-cactus-comments/tasks/setup_install.yml
@@ -9,6 +9,7 @@
     group: "{{ matrix_user_groupname }}"
   with_items:
     - {path: "{{ matrix_cactus_comments_base_path }}", when: true}
+    - {path: "{{ matrix_cactus_comments_container_tmp_path }}", when: true}
     - {path: "{{ matrix_cactus_comments_docker_src_files_path }}", when: true}
   when: "item.when | bool"
 
diff --git a/roles/matrix-cactus-comments/templates/systemd/matrix-cactus-comments.service.j2 b/roles/matrix-cactus-comments/templates/systemd/matrix-cactus-comments.service.j2
index 1b26b63d1..8d87aa633 100644
--- a/roles/matrix-cactus-comments/templates/systemd/matrix-cactus-comments.service.j2
+++ b/roles/matrix-cactus-comments/templates/systemd/matrix-cactus-comments.service.j2
@@ -22,6 +22,7 @@ ExecStart={{ matrix_host_command_docker }} run --rm --name matrix-cactus-comment
 			--user={{ matrix_user_uid }}:{{ matrix_user_gid }} \
 			--read-only \
 			--env-file {{ matrix_cactus_comments_app_service_env_file }} \
+            --mount type=bind,src={{ matrix_cactus_comments_container_tmp_path }},dst=/tmp \
 			--network={{ matrix_docker_network }} \
 			{{ matrix_cactus_comments_docker_image }}