mirror of
https://github.com/openclaw/openclaw.git
synced 2026-03-12 07:20:45 +00:00
bd1fe4d8b4
* fix(run-openclaw-podman): add SELinux :Z mount option on Linux with enforcing/permissive SELinux * fix(quadlet): add SELinux :Z label to openclaw.container.in volume mount * fix(podman): add SELinux :Z mount option for Fedora/RHEL hosts Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: sallyom <somalley@redhat.com> --------- Signed-off-by: sallyom <somalley@redhat.com> Co-authored-by: sallyom <somalley@redhat.com> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
29 lines
767 B
Plaintext
29 lines
767 B
Plaintext
# OpenClaw gateway — Podman Quadlet (rootless)
|
|
# Installed by setup-podman.sh into openclaw's ~/.config/containers/systemd/
|
|
# {{OPENCLAW_HOME}} is replaced at install time.
|
|
|
|
[Unit]
|
|
Description=OpenClaw gateway (rootless Podman)
|
|
|
|
[Container]
|
|
Image=openclaw:local
|
|
ContainerName=openclaw
|
|
UserNS=keep-id
|
|
# Keep container UID/GID aligned with the invoking user so mounted config is readable.
|
|
User=%U:%G
|
|
Volume={{OPENCLAW_HOME}}/.openclaw:/home/node/.openclaw:Z
|
|
EnvironmentFile={{OPENCLAW_HOME}}/.openclaw/.env
|
|
Environment=HOME=/home/node
|
|
Environment=TERM=xterm-256color
|
|
PublishPort=18789:18789
|
|
PublishPort=18790:18790
|
|
Pull=never
|
|
Exec=node dist/index.js gateway --bind lan --port 18789
|
|
|
|
[Service]
|
|
TimeoutStartSec=300
|
|
Restart=on-failure
|
|
|
|
[Install]
|
|
WantedBy=default.target
|