From 35083be06df3bce3c66b11458f598ee38a97c7b5 Mon Sep 17 00:00:00 2001
From: Brian Lee <blee@satstack.cloud>
Date: Tue, 18 Jul 2023 14:46:06 -0700
Subject: [PATCH] Dial back directory permissions just enough so that
 containers can read the generated onion service hostname file.

---
 defaults/main.yml | 2 +-
 tasks/podman.yml  | 4 +++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/defaults/main.yml b/defaults/main.yml
index a1230b6..5d8eb1d 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -2,7 +2,7 @@
 samourai_dojo_version: "1.20.0"
 samourai_dojo_onion_address: "{{ lookup('ansible.builtin.env', 'SAMOURAI_DOJO_ONION') | default('_') }}"
 samourai_dojo_onion_port: 80
-
+onion_services_path: data-tor
 #samourai_dojo_https_port: 4480
 samourai_dojo_ws_http_port: 8080
 samourai_dojo_pushtx_http_port: 8081
diff --git a/tasks/podman.yml b/tasks/podman.yml
index 99490d8..2bce1c1 100644
--- a/tasks/podman.yml
+++ b/tasks/podman.yml
@@ -22,6 +22,7 @@
     state: present
     name: data-tor
     recreate: no
+  when: not onion_services_path.startswith('/')
 
 - name: Dojo | Create container
   register: podman_container_output
@@ -35,7 +36,8 @@
     env: "{{ samourai_dojo_config }}"
     ports: "{{ samourai_dojo_ports }}"
     volume:
-      - data-tor:/var/lib/tor
+      - /var/lib/tor/hsv3dojo/hostname:/var/lib/tor/hsv3dojo/hostname
+#     - "{{ onion_services_path }}:/var/lib/tor"
     command: /home/node/app/restart.sh
 #   command: "/home/node/app/wait-for-it.sh host.containers.internal:3306 --timeout=720 --strict -- /home/node/app/restart.sh"