[Unit]
After=network.target

[Install]
WantedBy=default.target

[Service]
Environment="PORT=6675"
Environment="CONFIG=/etc/test-ftth-ipe-map/conf.ini"
Environment="CONFIG=/etc/test-ftth-ipe-map/conf.ini"
Environment="REPO_DIR=/srv/www/test-ftth-ipe-map"
ConfigurationDirectory=test-ftth-ipe-map
WorkingDirectory=/srv/www/test-ftth-ipe-map/webapp/
ExecStart=/srv/www/test-ftth-ipe-map/webapp/startGunicornService
User=ftth-ipe-map
Group=ftth-ipe-map
Restart=on-failure
RestartSec=30

# Sandboxing
#ProtectSystem=strict
#ProtectHome=tmpfs
PrivateTmp=true
PrivateDevices=true
ProtectClock=true
ProtectKernelTunables=true
ProtectKernelModules=true
ProtectKernelLogs=true
ProtectControlGroups=true
RestrictAddressFamilies=AF_INET
RestrictRealtime=true