From da20e9c6256955661b740f993af7215ac3e832ec Mon Sep 17 00:00:00 2001
From: "martin.fencl" <martin@martinfencl.eu>
Date: Tue, 3 Feb 2026 19:19:28 +0100
Subject: [PATCH] .

---
 portainer/update_portainer_agent_lxc.yml | 69 ++++++++++++++++++++++++
 1 file changed, 69 insertions(+)
 create mode 100644 portainer/update_portainer_agent_lxc.yml

diff --git a/portainer/update_portainer_agent_lxc.yml b/portainer/update_portainer_agent_lxc.yml
new file mode 100644
index 0000000..69f30a3
--- /dev/null
+++ b/portainer/update_portainer_agent_lxc.yml
@@ -0,0 +1,69 @@
+# update_portainer_agent_lxc.yml
+
+- name: Update Portainer Agent (LXC, no compose)
+  hosts: pve2_lxc_jellyfin
+  gather_facts: false
+
+  vars:
+    agent_container_name: portainer_agent
+    agent_port: 9001
+
+  tasks:
+    - name: Check if agent container exists
+      ansible.builtin.command:
+        argv:
+          - bash
+          - -lc
+          - "docker ps -a --format '{{ \"{{\" }}.Names{{ \"}}\" }}' | grep -x '{{ agent_container_name }}'"
+      register: agent_exists
+      changed_when: false
+      failed_when: false
+
+    - name: Abort if agent container is missing
+      ansible.builtin.fail:
+        msg: "Container '{{ agent_container_name }}' not found."
+      when: agent_exists.rc != 0
+
+    - name: Read current agent image
+      ansible.builtin.command:
+        argv:
+          - bash
+          - -lc
+          - "docker inspect -f '{{ \"{{\" }}.Config.Image{{ \"}}\" }}' {{ agent_container_name }}"
+      register: agent_image
+      changed_when: false
+
+    - name: Pull latest image tag for current agent image
+      ansible.builtin.command:
+        argv:
+          - bash
+          - -lc
+          - "docker pull {{ agent_image.stdout | trim }}"
+      changed_when: true
+
+    - name: Recreate agent container with standard Portainer Agent args
+      ansible.builtin.command:
+        argv:
+          - bash
+          - -lc
+          - |
+            set -euo pipefail
+
+            # Stop/remove old container
+            docker rm -f "{{ agent_container_name }}" >/dev/null 2>&1 || true
+
+            # Run Portainer Agent with common, safe defaults
+            docker run -d \
+              --name "{{ agent_container_name }}" \
+              --restart=always \
+              -p {{ agent_port }}:9001 \
+              -v /var/run/docker.sock:/var/run/docker.sock \
+              -v /var/lib/docker/volumes:/var/lib/docker/volumes \
+              "{{ agent_image.stdout | trim }}"
+      changed_when: true
+
+    - name: Wait for agent port
+      ansible.builtin.wait_for:
+        host: 127.0.0.1
+        port: "{{ agent_port }}"
+        timeout: 60