daemonless
diff --git a/‎.daemonless/config.yml‎ ‎.daemonless/config.yaml‎.daemonless/config.yml renamed to .daemonless/config.yaml b/‎.daemonless/config.yml‎ ‎.daemonless/config.yaml‎.daemonless/config.yml renamed to .daemonless/config.yaml
diff --git a/‎.github/workflows/build.yml‎ ‎.github/workflows/build.yaml‎.github/workflows/build.yml renamed to .github/workflows/build.yaml b/‎.github/workflows/build.yml‎ ‎.github/workflows/build.yaml‎.github/workflows/build.yml renamed to .github/workflows/build.yaml
diff --git a/‎.woodpecker.yml‎ ‎.woodpecker.yaml‎.woodpecker.yml renamed to .woodpecker.yaml b/‎.woodpecker.yml‎ ‎.woodpecker.yaml‎.woodpecker.yml renamed to .woodpecker.yaml
diff --git a/‎Containerfile‎
Lines changed: 23 additions & 15 deletions b/‎Containerfile‎
Lines changed: 23 additions & 15 deletions
diff --git a/‎Containerfile.j2‎
Lines changed: 78 additions & 0 deletions b/‎Containerfile.j2‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 68 additions & 128 deletions b/‎README.md‎
Lines changed: 68 additions & 128 deletions
@@ -8,20 +8,25 @@ ARG PACKAGES="postgresql${PG_VERSION}-server postgresql${PG_VERSION}-client post
 ARG UPSTREAM_URL="https://www.postgresql.org/docs/release/"
 ARG HEALTHCHECK_ENDPOINT="pg_isready -q"
 
+ENV HEALTHCHECK_URL="${HEALTHCHECK_ENDPOINT}"
+
+# --- Metadata (Injected by Generator) ---
 LABEL org.opencontainers.image.title="PostgreSQL ${PG_VERSION}" \
-    org.opencontainers.image.description="PostgreSQL ${PG_VERSION} on FreeBSD" \
-    org.opencontainers.image.source="https://github.com/daemonless/postgres" \
-    org.opencontainers.image.url="https://www.postgresql.org/" \
-    org.opencontainers.image.documentation="https://www.postgresql.org/docs/${PG_VERSION}/" \
-    org.opencontainers.image.licenses="PostgreSQL" \
-    org.opencontainers.image.vendor="daemonless" \
-    org.opencontainers.image.authors="daemonless" \
-    io.daemonless.port="5432" \
-    io.daemonless.arch="${FREEBSD_ARCH}" \
-    io.daemonless.category="Databases" \
-    io.daemonless.upstream-url="${UPSTREAM_URL}" \
-    io.daemonless.packages="${PACKAGES}" \
-    org.freebsd.jail.allow.sysvipc="required"
+      org.opencontainers.image.description="The World's Most Advanced Open Source Relational Database on FreeBSD." \
+      org.opencontainers.image.source="https://github.com/daemonless/postgres" \
+      org.opencontainers.image.url="https://www.postgresql.org/" \
+      org.opencontainers.image.documentation="https://www.postgresql.org/docs/${PG_VERSION}/" \
+      org.opencontainers.image.licenses="PostgreSQL" \
+      org.opencontainers.image.vendor="daemonless" \
+      org.opencontainers.image.authors="daemonless" \
+      io.daemonless.category="Databases" \
+      io.daemonless.port="5432" \
+      io.daemonless.volumes="/var/lib/postgresql/data" \
+      org.freebsd.jail.allow.sysvipc="required" \
+      io.daemonless.arch="${FREEBSD_ARCH}" \
+      io.daemonless.pkg-source="containerfile" \
+      io.daemonless.upstream-url="${UPSTREAM_URL}" \
+      io.daemonless.packages="${PACKAGES}"
 
 # Install PostgreSQL
 RUN pkg update && \
@@ -38,7 +43,7 @@ RUN mkdir -p /var/lib/postgresql/data /var/run/postgresql /run/secrets /docker-e
 COPY root/ /
 
 # Make scripts executable
-RUN chmod +x /etc/services.d/*/run /etc/cont-init.d/* 2>/dev/null || true
+RUN chmod +x /etc/services.d/*/run /etc/cont-init.d/* /healthz 2>/dev/null || true
 
 # Store PG version for scripts
 RUN mkdir -p /var/db/postgres && echo "${PG_VERSION}" > /var/db/postgres/pg_version
@@ -55,5 +60,8 @@ ENV PGDATA="/var/lib/postgresql/data" \
     POSTGRES_INITDB_ARGS="" \
     POSTGRES_HOST_AUTH_METHOD="scram-sha-256"
 
+# --- Expose (Injected by Generator) ---
 EXPOSE 5432
-VOLUME /var/lib/postgresql/data
+
+# --- Volumes (Injected by Generator) ---
+VOLUME /var/lib/postgresql/data
@@ -0,0 +1,78 @@
+ARG BASE_VERSION=15
+ARG PG_VERSION=17
+FROM ghcr.io/daemonless/base:${BASE_VERSION}
+ARG PG_VERSION
+
+ARG FREEBSD_ARCH=amd64
+ARG PACKAGES="postgresql${PG_VERSION}-server postgresql${PG_VERSION}-client postgresql${PG_VERSION}-contrib"
+ARG UPSTREAM_URL="https://www.postgresql.org/docs/release/"
+ARG HEALTHCHECK_ENDPOINT="pg_isready -q"
+
+ENV HEALTHCHECK_URL="${HEALTHCHECK_ENDPOINT}"
+
+# --- Metadata (Injected by Generator) ---
+LABEL org.opencontainers.image.title="{{ title }} ${PG_VERSION}" \
+      org.opencontainers.image.description="{{ description }}" \
+      org.opencontainers.image.source="{{ repo_url }}" \
+      org.opencontainers.image.url="{{ web_url }}" \
+      org.opencontainers.image.documentation="https://www.postgresql.org/docs/${PG_VERSION}/" \
+      org.opencontainers.image.licenses="PostgreSQL" \
+      org.opencontainers.image.vendor="daemonless" \
+      org.opencontainers.image.authors="daemonless" \
+      io.daemonless.category="{{ category }}" \
+{%- if ports %}
+      io.daemonless.port="{{ ports[0].port }}" \
+{%- endif %}
+{%- if volumes %}
+      io.daemonless.volumes="{{ volumes | map(attribute='path') | join(',') }}" \
+{%- endif %}
+{%- if mlock %}
+      org.freebsd.jail.allow.mlock="required" \
+{%- endif %}
+      org.freebsd.jail.allow.sysvipc="required" \
+      io.daemonless.arch="${FREEBSD_ARCH}" \
+      io.daemonless.pkg-source="containerfile" \
+      io.daemonless.upstream-url="${UPSTREAM_URL}" \
+      io.daemonless.packages="${PACKAGES}"
+
+# Install PostgreSQL
+RUN pkg update && \
+    pkg install -y ${PACKAGES} && \
+    pkg clean -ay && \
+    rm -rf /var/cache/pkg/* /var/db/pkg/repos/*
+
+# Create directories (use Linux-compatible paths for drop-in replacement)
+RUN mkdir -p /var/lib/postgresql/data /var/run/postgresql /run/secrets /docker-entrypoint-initdb.d && \
+    chmod 755 /var/lib && \
+    chown -R bsd:bsd /var/lib/postgresql /var/run/postgresql /run/secrets /docker-entrypoint-initdb.d
+
+# Copy service definitions and init scripts
+COPY root/ /
+
+# Make scripts executable
+RUN chmod +x /etc/services.d/*/run /etc/cont-init.d/* /healthz 2>/dev/null || true
+
+# Store PG version for scripts
+RUN mkdir -p /var/db/postgres && echo "${PG_VERSION}" > /var/db/postgres/pg_version
+
+# Extract package version for tagging (e.g., 17.7 or 14.20)
+RUN mkdir -p /app && \
+    pkg query '%v' postgresql${PG_VERSION}-server | sed 's/_.*$//' > /app/version
+
+ENV PGDATA="/var/lib/postgresql/data" \
+    PG_VERSION="${PG_VERSION}" \
+    POSTGRES_USER="postgres" \
+    POSTGRES_PASSWORD="" \
+    POSTGRES_DB="postgres" \
+    POSTGRES_INITDB_ARGS="" \
+    POSTGRES_HOST_AUTH_METHOD="scram-sha-256"
+
+# --- Expose (Injected by Generator) ---
+{%- if ports %}
+EXPOSE {{ ports | map(attribute='port') | join(' ') }}
+{%- endif %}
+
+# --- Volumes (Injected by Generator) ---
+{%- if volumes %}
+VOLUME {{ volumes | map(attribute='path') | join(' ') }}
+{%- endif %}
@@ -1,161 +1,101 @@
 # PostgreSQL
 
-PostgreSQL database server on FreeBSD. **Drop-in replacement** for the official `postgres` Docker image.
+The World's Most Advanced Open Source Relational Database on FreeBSD.
 
-> **Requires [patched ocijail](https://github.com/daemonless/daemonless#ocijail-patch)** for SysV IPC support (`org.freebsd.jail.allow.sysvipc=true`)
+| | |
+|---|---|
+| **Port** | 5432 |
+| **Registry** | `ghcr.io/daemonless/postgres` |
+| **Source** | [https://www.postgresql.org/](https://www.postgresql.org/) |
+| **Website** | [https://www.postgresql.org/](https://www.postgresql.org/) |
 
-## Quick Start
+## Deployment
 
-```bash
-podman run -d --name postgres \
-  -p 5432:5432 \
-  -e POSTGRES_PASSWORD=mysecretpassword \
-  -v /path/to/data:/var/lib/postgresql/data \
-  --annotation 'org.freebsd.jail.allow.sysvipc=true' \
-  ghcr.io/daemonless/postgres:17
-```
-
-## podman-compose
+### Podman Compose
 
 ```yaml
 services:
   postgres:
-    image: ghcr.io/daemonless/postgres:17
+    image: ghcr.io/daemonless/postgres:latest
     container_name: postgres
     environment:
       - POSTGRES_USER=postgres
-      - POSTGRES_PASSWORD=mysecretpassword
-      - POSTGRES_DB=mydb
+      - POSTGRES_PASSWORD=postgres
+      - POSTGRES_DB=postgres
+      - PUID=1000
+      - PGID=1000
+      - TZ=UTC
     volumes:
-      - /data/postgres:/var/lib/postgresql/data
+      - /path/to/containers/postgres/var/lib/postgresql/data:/var/lib/postgresql/data
     ports:
       - 5432:5432
-    annotations:
-      org.freebsd.jail.allow.sysvipc: "true"
     restart: unless-stopped
 ```
 
-## Tags
-
-| Tag | Base | Description |
-|-----|------|-------------|
-| `:17` | quarterly | PostgreSQL 17 |
-| `:17-pkg` | quarterly | Alias for `:17` |
-| `:17-pkg-latest` | latest | PostgreSQL 17 (latest packages) |
-| `:14` | quarterly | PostgreSQL 14 |
-| `:14-pkg` | quarterly | Alias for `:14` |
-| `:14-pkg-latest` | latest | PostgreSQL 14 (latest packages) |
-| `:latest` | quarterly | Alias for `:17` |
-| `:pkg` | quarterly | Alias for `:17` |
-| `:pkg-latest` | latest | Alias for `:17-pkg-latest` |
+### Podman CLI
 
-## Environment Variables
-
-| Variable | Default | Description |
-|----------|---------|-------------|
-| `POSTGRES_USER` | `postgres` | Database superuser name |
-| `POSTGRES_PASSWORD` | (empty) | Superuser password |
-| `POSTGRES_DB` | `postgres` | Default database name |
-| `PGDATA` | `/var/lib/postgresql/data` | Data directory |
-| `POSTGRES_INITDB_ARGS` | (empty) | Extra args for initdb (e.g., `--data-checksums`) |
-| `POSTGRES_HOST_AUTH_METHOD` | `scram-sha-256` | Auth method (`scram-sha-256`, `md5`, `trust`) |
-
-### Docker Secrets
-
-Secrets can be passed via `*_FILE` environment variables:
+```bash
+podman run -d --name postgres \
+  -p 5432:5432 \
+  -e POSTGRES_USER=postgres \
+  -e POSTGRES_PASSWORD=postgres \
+  -e POSTGRES_DB=postgres \
+  -e PUID=@PUID@ \
+  -e PGID=@PGID@ \
+  -e TZ=@TZ@ \
+  -v /path/to/containers/postgres/var/lib/postgresql/data:/var/lib/postgresql/data \ 
+  ghcr.io/daemonless/postgres:latest
+```
+Access at: `http://localhost:5432`
 
-| Variable | Description |
-|----------|-------------|
-| `POSTGRES_PASSWORD_FILE` | Path to file containing password |
+### Ansible
 
-## Initialization Scripts
+```yaml
+- name: Deploy postgres
+  containers.podman.podman_container:
+    name: postgres
+    image: ghcr.io/daemonless/postgres:latest
+    state: started
+    restart_policy: always
+    env:
+      POSTGRES_USER: "postgres"
+      POSTGRES_PASSWORD: "postgres"
+      POSTGRES_DB: "postgres"
+      PUID: "1000"
+      PGID: "1000"
+      TZ: "UTC"
+    ports:
+      - "5432:5432"
+    volumes:
+      - "/path/to/containers/postgres/var/lib/postgresql/data:/var/lib/postgresql/data"
+```
 
-Place scripts in `/docker-entrypoint-initdb.d/` to run on first startup:
+## Configuration
 
-| Extension | Behavior |
-|-----------|----------|
-| `*.sh` | Executed if executable, sourced otherwise |
-| `*.sql` | Run via psql against `$POSTGRES_DB` |
-| `*.sql.gz` | Decompressed and run via psql |
+### Environment Variables
 
-Scripts run in sorted filename order after database creation.
+| Variable | Default | Description |
+|----------|---------|-------------|
+| `POSTGRES_USER` | `postgres` | Database superuser name (default: postgres) |
+| `POSTGRES_PASSWORD` | `postgres` | Database superuser password |
+| `POSTGRES_DB` | `postgres` | Default database to create (default: same as user) |
+| `PUID` | `1000` |  |
+| `PGID` | `1000` |  |
+| `TZ` | `UTC` |  |
 
-## Volumes
+### Volumes
 
 | Path | Description |
 |------|-------------|
-| `/var/lib/postgresql/data` | PostgreSQL data directory |
+| `/var/lib/postgresql/data` | Database data directory |
 
-## Ports
+### Ports
 
-| Port | Description |
-|------|-------------|
-| 5432 | PostgreSQL |
+| Port | Protocol | Description |
+|------|----------|-------------|
+| `5432` | TCP | PostgreSQL port |
 
 ## Notes
 
-- **User:** `bsd` (UID/GID 1000)
-
-## Migrating from Linux
-
-**You cannot copy a Linux postgres data directory directly to FreeBSD.** PostgreSQL stores locale information (`en_US.utf8`) in the database cluster, and FreeBSD uses a different locale format (`en_US.UTF-8`). Attempting to use copied data will fail with:
-
-```
-FATAL: database locale is incompatible with operating system
-DETAIL: The database was initialized with LC_COLLATE "en_US.utf8", which is not recognized by setlocale().
-```
-
-### Migration Steps
-
-1. **Dump from Linux** (while postgres is running):
-   ```bash
-   podman exec postgres pg_dump -U myuser mydb > mydb.sql
-   ```
-
-2. **Start fresh FreeBSD postgres**:
-   ```bash
-   podman run -d --name postgres \
-     -e POSTGRES_USER=myuser \
-     -e POSTGRES_PASSWORD=mypassword \
-     -e POSTGRES_DB=mydb \
-     -v /containers/myapp/pgdata:/var/lib/postgresql/data \
-     --annotation 'org.freebsd.jail.allow.sysvipc=true' \
-     ghcr.io/daemonless/postgres:17
-   ```
-
-3. **Restore the dump**:
-   ```bash
-   cat mydb.sql | podman exec -i postgres psql -U myuser -d mydb
-   ```
-
-### Full Database Cluster Migration
-
-To migrate all databases and roles:
-
-```bash
-# On source (Linux or FreeBSD)
-podman exec postgres pg_dumpall -U postgres > all_databases.sql
-
-# On target (after starting fresh postgres)
-cat all_databases.sql | podman exec -i postgres psql -U postgres
-```
-
-## Migrating from FreeBSD to Linux
-
-The same locale incompatibility applies in reverse. FreeBSD uses `C` or `en_US.UTF-8` locales, which Linux postgres may not recognize. Use pg_dump/restore:
-
-```bash
-# On FreeBSD
-podman exec postgres pg_dump -U myuser mydb > mydb.sql
-
-# On Linux (after starting fresh postgres)
-cat mydb.sql | podman exec -i postgres psql -U myuser -d mydb
-```
-
-**Bottom line:** Always use `pg_dump`/`pg_restore` when moving postgres data between Linux and FreeBSD, regardless of direction.
-
-## Links
-
-- [PostgreSQL Website](https://www.postgresql.org/)
-- [FreshPorts postgresql17-server](https://www.freshports.org/databases/postgresql17-server/)
-- [FreshPorts postgresql14-server](https://www.freshports.org/databases/postgresql14-server/)
+- **User:** `bsd` (UID/GID set via PUID/PGID)
+- **Base:** Built on `ghcr.io/daemonless/base` (FreeBSD)