bosh-cloudfoundry 0.7.3 → 0.7.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +8 -8
- data/ChangeLog.md +1 -0
- data/bosh-cloudfoundry.gemspec +1 -1
- data/bosh_release/.final_builds/jobs/cloud_controller_ng/index.yml +25 -0
- data/bosh_release/.final_builds/jobs/collector/index.yml +10 -0
- data/bosh_release/.final_builds/jobs/dashboard/index.yml +5 -0
- data/bosh_release/.final_builds/jobs/dea_logging_agent/index.yml +10 -0
- data/bosh_release/.final_builds/jobs/dea_next/index.yml +20 -0
- data/bosh_release/.final_builds/jobs/debian_nfs_server/index.yml +5 -0
- data/bosh_release/.final_builds/jobs/gorouter/index.yml +15 -0
- data/bosh_release/.final_builds/jobs/haproxy/index.yml +7 -0
- data/bosh_release/.final_builds/jobs/health_manager_next/index.yml +10 -0
- data/bosh_release/.final_builds/jobs/hm9000/index.yml +12 -0
- data/bosh_release/.final_builds/jobs/loggregator/index.yml +20 -0
- data/bosh_release/.final_builds/jobs/loggregator_trafficcontroller/index.yml +12 -0
- data/bosh_release/.final_builds/jobs/login/index.yml +10 -0
- data/bosh_release/.final_builds/jobs/narc/index.yml +10 -0
- data/bosh_release/.final_builds/jobs/nats/index.yml +5 -0
- data/bosh_release/.final_builds/jobs/saml_login/index.yml +5 -0
- data/bosh_release/.final_builds/jobs/syslog_aggregator/index.yml +15 -0
- data/bosh_release/.final_builds/jobs/uaa/index.yml +10 -0
- data/bosh_release/.final_builds/packages/buildpack_cache/index.yml +5 -0
- data/bosh_release/.final_builds/packages/cloud_controller_ng/index.yml +25 -0
- data/bosh_release/.final_builds/packages/collector/index.yml +10 -0
- data/bosh_release/.final_builds/packages/common/index.yml +5 -0
- data/bosh_release/.final_builds/packages/dea_logging_agent/index.yml +25 -0
- data/bosh_release/.final_builds/packages/dea_next/index.yml +25 -0
- data/bosh_release/.final_builds/packages/debian_nfs_server/index.yml +5 -0
- data/bosh_release/.final_builds/packages/git/index.yml +5 -0
- data/bosh_release/.final_builds/packages/golang/index.yml +5 -0
- data/bosh_release/.final_builds/packages/gorouter/index.yml +15 -0
- data/bosh_release/.final_builds/packages/haproxy/index.yml +7 -0
- data/bosh_release/.final_builds/packages/health_manager_next/index.yml +5 -0
- data/bosh_release/.final_builds/packages/hm9000/index.yml +12 -0
- data/bosh_release/.final_builds/packages/libpq/index.yml +5 -0
- data/bosh_release/.final_builds/packages/libyaml/index.yml +5 -0
- data/bosh_release/.final_builds/packages/loggregator/index.yml +25 -0
- data/bosh_release/.final_builds/packages/loggregator_trafficcontroller/index.yml +12 -0
- data/bosh_release/.final_builds/packages/loggregatorrouter/index.yml +15 -0
- data/bosh_release/.final_builds/packages/login/index.yml +20 -0
- data/bosh_release/.final_builds/packages/mysqlclient/index.yml +5 -0
- data/bosh_release/.final_builds/packages/narc/index.yml +15 -0
- data/bosh_release/.final_builds/packages/nats/index.yml +5 -0
- data/bosh_release/.final_builds/packages/nginx/index.yml +5 -0
- data/bosh_release/.final_builds/packages/postgres/index.yml +5 -0
- data/bosh_release/.final_builds/packages/rootfs_lucid64/index.yml +5 -0
- data/bosh_release/.final_builds/packages/ruby/index.yml +5 -0
- data/bosh_release/.final_builds/packages/saml_login/index.yml +25 -0
- data/bosh_release/.final_builds/packages/sqlite/index.yml +5 -0
- data/bosh_release/.final_builds/packages/syslog_aggregator/index.yml +15 -0
- data/bosh_release/.final_builds/packages/uaa/index.yml +20 -0
- data/bosh_release/.final_builds/packages/warden/index.yml +10 -0
- data/bosh_release/config/final.yml +1 -1
- data/bosh_release/releases/cf-142.yml +349 -0
- data/bosh_release/releases/cf-143.yml +349 -0
- data/bosh_release/releases/cf-144.yml +349 -0
- data/bosh_release/releases/cf-145.yml +364 -0
- data/bosh_release/releases/cf-146.yml +346 -0
- data/bosh_release/releases/index.yml +10 -0
- data/spec/release_version_spec.rb +1 -1
- data/spec/spec_helper.rb +1 -1
- data/templates/v146/aws/large/deployment_file.yml.erb +373 -0
- data/templates/v146/aws/large/spec +6 -0
- data/templates/v146/aws/medium/deployment_file.yml.erb +332 -0
- data/templates/v146/aws/medium/spec +6 -0
- data/templates/v146/aws/small/README.md +5 -0
- data/templates/v146/aws/spec +6 -0
- data/templates/v146/openstack/large/deployment_file.yml.erb +372 -0
- data/templates/v146/openstack/large/spec +6 -0
- data/templates/v146/openstack/medium/deployment_file.yml.erb +331 -0
- data/templates/v146/openstack/medium/spec +6 -0
- data/templates/v146/openstack/spec +6 -0
- data/templates/v146/spec +16 -0
- metadata +24 -1
@@ -0,0 +1,5 @@
|
|
1
|
+
# Small deployment of Cloud Foundry on AWS
|
2
|
+
|
3
|
+
The plan for a small deployment is to colocate everything on a single VM; and allow for scaling in one direction - more/bigger DEAs.
|
4
|
+
|
5
|
+
This cannot currently be implemented until a final release of [cf-release](https://github.com/cloudfoundry/cf-release) is published that includes `properties` in each job's `spec` file.
|
@@ -0,0 +1,372 @@
|
|
1
|
+
---
|
2
|
+
<%-
|
3
|
+
# Example source deployment file that can be used:
|
4
|
+
# ---
|
5
|
+
# name: NAME
|
6
|
+
# director_uuid: 4ae3a0f0-70a5-4c0d-95f2-7fafaefe8b9e
|
7
|
+
# releases:
|
8
|
+
# - name: cf
|
9
|
+
# version: 146
|
10
|
+
# networks: {}
|
11
|
+
# properties:
|
12
|
+
# cf:
|
13
|
+
# dns: mycloud.com
|
14
|
+
# ip_addresses: ['1.2.3.4']
|
15
|
+
# deployment_size: medium
|
16
|
+
# security_group: cf
|
17
|
+
# persistent_disk: 4096
|
18
|
+
#
|
19
|
+
# Then target that deployment file:
|
20
|
+
#
|
21
|
+
# $ bosh deployment path/to/file/above
|
22
|
+
#
|
23
|
+
# Then apply this template:
|
24
|
+
#
|
25
|
+
# $ bosh diff deployment_file.yml.erb
|
26
|
+
#
|
27
|
+
name = find("name")
|
28
|
+
dns = find("properties.cf.dns")
|
29
|
+
ip_addresses = find("properties.cf.ip_addresses")
|
30
|
+
security_group = find("properties.cf.security_group")
|
31
|
+
deployment_size = find("properties.cf.deployment_size")
|
32
|
+
persistent_disk = find("properties.cf.persistent_disk")
|
33
|
+
common_password = find("properties.cf.common_password")
|
34
|
+
no_ssl = true
|
35
|
+
protocol = no_ssl ? "http" : "https"
|
36
|
+
dea_server_ram = find("properties.cf.dea_server_ram") # expected ram available on dea server
|
37
|
+
dea_container_depot_disk = 10*1024 # 10G is common minimal root or ephemeral disk size for all IaaS
|
38
|
+
-%>
|
39
|
+
name: <%= name %>
|
40
|
+
director_uuid: <%= find("director_uuid") %>
|
41
|
+
|
42
|
+
releases:
|
43
|
+
- name: cf
|
44
|
+
version: 146
|
45
|
+
|
46
|
+
networks:
|
47
|
+
- name: floating
|
48
|
+
type: vip
|
49
|
+
cloud_properties: {}
|
50
|
+
- name: default
|
51
|
+
type: dynamic
|
52
|
+
cloud_properties:
|
53
|
+
security_groups:
|
54
|
+
- <%= security_group %>
|
55
|
+
|
56
|
+
compilation:
|
57
|
+
workers: 6
|
58
|
+
network: default
|
59
|
+
reuse_compilation_vms: true
|
60
|
+
cloud_properties:
|
61
|
+
instance_type: m1.medium
|
62
|
+
|
63
|
+
update:
|
64
|
+
canaries: 1
|
65
|
+
canary_watch_time: 30000-60000
|
66
|
+
update_watch_time: 30000-60000
|
67
|
+
max_in_flight: 4
|
68
|
+
|
69
|
+
resource_pools:
|
70
|
+
- name: small
|
71
|
+
network: default
|
72
|
+
size: 8
|
73
|
+
stemcell:
|
74
|
+
name: bosh-openstack-kvm-ubuntu
|
75
|
+
version: latest
|
76
|
+
cloud_properties:
|
77
|
+
instance_type: m1.small
|
78
|
+
|
79
|
+
- name: large
|
80
|
+
network: default
|
81
|
+
size: 1
|
82
|
+
stemcell:
|
83
|
+
name: bosh-openstack-kvm-ubuntu
|
84
|
+
version: latest
|
85
|
+
cloud_properties:
|
86
|
+
instance_type: m1.large
|
87
|
+
|
88
|
+
jobs:
|
89
|
+
- name: nats
|
90
|
+
release: cf
|
91
|
+
template:
|
92
|
+
- nats
|
93
|
+
instances: 1
|
94
|
+
resource_pool: small
|
95
|
+
networks:
|
96
|
+
- name: default
|
97
|
+
default: [dns, gateway]
|
98
|
+
|
99
|
+
- name: syslog_aggregator
|
100
|
+
release: cf
|
101
|
+
template:
|
102
|
+
- syslog_aggregator
|
103
|
+
instances: 1
|
104
|
+
resource_pool: small
|
105
|
+
persistent_disk: 65536
|
106
|
+
networks:
|
107
|
+
- name: default
|
108
|
+
default: [dns, gateway]
|
109
|
+
|
110
|
+
- name: postgres
|
111
|
+
release: cf
|
112
|
+
template:
|
113
|
+
- postgres
|
114
|
+
instances: 1
|
115
|
+
resource_pool: small
|
116
|
+
persistent_disk: 65536
|
117
|
+
networks:
|
118
|
+
- name: default
|
119
|
+
default: [dns, gateway]
|
120
|
+
properties:
|
121
|
+
db: databases
|
122
|
+
|
123
|
+
- name: nfs_server
|
124
|
+
release: cf
|
125
|
+
template:
|
126
|
+
- debian_nfs_server
|
127
|
+
instances: 1
|
128
|
+
resource_pool: small
|
129
|
+
persistent_disk: 65536
|
130
|
+
networks:
|
131
|
+
- name: default
|
132
|
+
default: [dns, gateway]
|
133
|
+
|
134
|
+
- name: uaa
|
135
|
+
release: cf
|
136
|
+
template:
|
137
|
+
- uaa
|
138
|
+
instances: 1
|
139
|
+
resource_pool: small
|
140
|
+
networks:
|
141
|
+
- name: default
|
142
|
+
default: [dns, gateway]
|
143
|
+
|
144
|
+
- name: cloud_controller
|
145
|
+
release: cf
|
146
|
+
template:
|
147
|
+
- cloud_controller_ng
|
148
|
+
instances: 1
|
149
|
+
resource_pool: small
|
150
|
+
networks:
|
151
|
+
- name: default
|
152
|
+
default: [dns, gateway]
|
153
|
+
properties:
|
154
|
+
ccdb: ccdb
|
155
|
+
|
156
|
+
- name: router
|
157
|
+
release: cf
|
158
|
+
template:
|
159
|
+
- gorouter
|
160
|
+
instances: 1
|
161
|
+
resource_pool: small
|
162
|
+
networks:
|
163
|
+
- name: default
|
164
|
+
default: [dns, gateway]
|
165
|
+
- name: floating
|
166
|
+
static_ips:
|
167
|
+
<%- ip_addresses.each do |ip| -%>
|
168
|
+
- <%= ip %>
|
169
|
+
<%- end -%>
|
170
|
+
|
171
|
+
- name: health_manager
|
172
|
+
release: cf
|
173
|
+
template:
|
174
|
+
- health_manager_next
|
175
|
+
instances: 1
|
176
|
+
resource_pool: small
|
177
|
+
networks:
|
178
|
+
- name: default
|
179
|
+
default: [dns, gateway]
|
180
|
+
|
181
|
+
- name: dea
|
182
|
+
release: cf
|
183
|
+
template: dea_next
|
184
|
+
instances: 1
|
185
|
+
resource_pool: large
|
186
|
+
networks:
|
187
|
+
- name: default
|
188
|
+
default: [dns, gateway]
|
189
|
+
|
190
|
+
properties:
|
191
|
+
cf:
|
192
|
+
name: <%= name %>
|
193
|
+
dns: <%= dns %>
|
194
|
+
ip_addresses: <%= ip_addresses.inspect %>
|
195
|
+
deployment_size: <%= deployment_size %>
|
196
|
+
security_group: <%= security_group %>
|
197
|
+
persistent_disk: <%= persistent_disk %>
|
198
|
+
common_password: <%= common_password %>
|
199
|
+
dea_server_ram: <%= dea_server_ram %>
|
200
|
+
|
201
|
+
domain: <%= dns %>
|
202
|
+
system_domain: <%= dns %>
|
203
|
+
system_domain_organization: <%= dns %>
|
204
|
+
app_domains:
|
205
|
+
- <%= dns %>
|
206
|
+
|
207
|
+
networks:
|
208
|
+
apps: default
|
209
|
+
management: default
|
210
|
+
|
211
|
+
nats:
|
212
|
+
address: 0.nats.default.<%= name %>.microbosh
|
213
|
+
port: 4222
|
214
|
+
user: nats
|
215
|
+
password: <%= common_password %>
|
216
|
+
authorization_timeout: 5
|
217
|
+
|
218
|
+
router:
|
219
|
+
port: 8081
|
220
|
+
status:
|
221
|
+
port: 8080
|
222
|
+
user: gorouter
|
223
|
+
password: <%= common_password %>
|
224
|
+
|
225
|
+
dea: &dea
|
226
|
+
memory_mb: <%= dea_server_ram %>
|
227
|
+
disk_mb: <%= dea_container_depot_disk %>
|
228
|
+
directory_server_protocol: <%= protocol %>
|
229
|
+
|
230
|
+
dea_next: *dea
|
231
|
+
|
232
|
+
syslog_aggregator:
|
233
|
+
address: 0.syslog-aggregator.default.<%= name %>.microbosh
|
234
|
+
port: 54321
|
235
|
+
|
236
|
+
nfs_server:
|
237
|
+
address: 0.nfs-server.default.<%= name %>.microbosh
|
238
|
+
network: "*.<%= name %>.microbosh"
|
239
|
+
idmapd_domain: <%= dns %>
|
240
|
+
|
241
|
+
debian_nfs_server:
|
242
|
+
no_root_squash: true
|
243
|
+
|
244
|
+
databases: &databases
|
245
|
+
db_scheme: postgres
|
246
|
+
address: 0.postgres.default.<%= name %>.microbosh
|
247
|
+
port: 5524
|
248
|
+
roles:
|
249
|
+
- tag: admin
|
250
|
+
name: ccadmin
|
251
|
+
password: <%= common_password %>
|
252
|
+
- tag: admin
|
253
|
+
name: uaaadmin
|
254
|
+
password: <%= common_password %>
|
255
|
+
databases:
|
256
|
+
- tag: cc
|
257
|
+
name: ccdb
|
258
|
+
citext: true
|
259
|
+
- tag: uaa
|
260
|
+
name: uaadb
|
261
|
+
citext: true
|
262
|
+
|
263
|
+
ccdb: &ccdb
|
264
|
+
db_scheme: postgres
|
265
|
+
address: 0.postgres.default.<%= name %>.microbosh
|
266
|
+
port: 5524
|
267
|
+
roles:
|
268
|
+
- tag: admin
|
269
|
+
name: ccadmin
|
270
|
+
password: <%= common_password %>
|
271
|
+
databases:
|
272
|
+
- tag: cc
|
273
|
+
name: ccdb
|
274
|
+
citext: true
|
275
|
+
|
276
|
+
ccdb_ng: *ccdb
|
277
|
+
|
278
|
+
uaadb:
|
279
|
+
db_scheme: postgresql
|
280
|
+
address: 0.postgres.default.<%= name %>.microbosh
|
281
|
+
port: 5524
|
282
|
+
roles:
|
283
|
+
- tag: admin
|
284
|
+
name: uaaadmin
|
285
|
+
password: <%= common_password %>
|
286
|
+
databases:
|
287
|
+
- tag: uaa
|
288
|
+
name: uaadb
|
289
|
+
citext: true
|
290
|
+
|
291
|
+
cc_api_version: v2
|
292
|
+
|
293
|
+
cc: &cc
|
294
|
+
logging_level: debug
|
295
|
+
external_host: api
|
296
|
+
srv_api_uri: <%= protocol %>://api.<%= dns %>
|
297
|
+
cc_partition: default
|
298
|
+
db_encryption_key: <%= common_password %>
|
299
|
+
bootstrap_admin_email: admin@<%= dns %>
|
300
|
+
bulk_api_password: <%= common_password %>
|
301
|
+
uaa_resource_id: cloud_controller
|
302
|
+
staging_upload_user: uploaduser
|
303
|
+
staging_upload_password: <%= common_password %>
|
304
|
+
resource_pool:
|
305
|
+
resource_directory_key: cc-resources
|
306
|
+
# Local provider when using NFS
|
307
|
+
fog_connection:
|
308
|
+
provider: Local
|
309
|
+
local_root: /var/vcap/shared
|
310
|
+
packages:
|
311
|
+
app_package_directory_key: cc-packages
|
312
|
+
droplets:
|
313
|
+
droplet_directory_key: cc-droplets
|
314
|
+
default_quota_definition: runaway
|
315
|
+
|
316
|
+
ccng: *cc
|
317
|
+
|
318
|
+
login:
|
319
|
+
enabled: false
|
320
|
+
|
321
|
+
uaa:
|
322
|
+
url: <%= protocol %>://uaa.<%= dns %>
|
323
|
+
spring_profiles: postgresql
|
324
|
+
no_ssl: <%= no_ssl %>
|
325
|
+
catalina_opts: -Xmx768m -XX:MaxPermSize=256m
|
326
|
+
resource_id: account_manager
|
327
|
+
jwt:
|
328
|
+
signing_key: |
|
329
|
+
-----BEGIN RSA PRIVATE KEY-----
|
330
|
+
MIICXAIBAAKBgQDHFr+KICms+tuT1OXJwhCUmR2dKVy7psa8xzElSyzqx7oJyfJ1
|
331
|
+
JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMXqHxf+ZH9BL1gk9Y6kCnbM5R6
|
332
|
+
0gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBugspULZVNRxq7veq/fzwIDAQAB
|
333
|
+
AoGBAJ8dRTQFhIllbHx4GLbpTQsWXJ6w4hZvskJKCLM/o8R4n+0W45pQ1xEiYKdA
|
334
|
+
Z/DRcnjltylRImBD8XuLL8iYOQSZXNMb1h3g5/UGbUXLmCgQLOUUlnYt34QOQm+0
|
335
|
+
KvUqfMSFBbKMsYBAoQmNdTHBaz3dZa8ON9hh/f5TT8u0OWNRAkEA5opzsIXv+52J
|
336
|
+
duc1VGyX3SwlxiE2dStW8wZqGiuLH142n6MKnkLU4ctNLiclw6BZePXFZYIK+AkE
|
337
|
+
xQ+k16je5QJBAN0TIKMPWIbbHVr5rkdUqOyezlFFWYOwnMmw/BKa1d3zp54VP/P8
|
338
|
+
+5aQ2d4sMoKEOfdWH7UqMe3FszfYFvSu5KMCQFMYeFaaEEP7Jn8rGzfQ5HQd44ek
|
339
|
+
lQJqmq6CE2BXbY/i34FuvPcKU70HEEygY6Y9d8J3o6zQ0K9SYNu+pcXt4lkCQA3h
|
340
|
+
jJQQe5uEGJTExqed7jllQ0khFJzLMx0K6tj0NeeIzAaGCQz13oo2sCdeGRHO4aDh
|
341
|
+
HH6Qlq/6UOV5wP8+GAcCQFgRCcB+hrje8hfEEefHcFpyKH+5g1Eu1k0mLrxK2zd+
|
342
|
+
4SlotYRHgPCEubokb2S1zfZDWIXW3HmggnGgM949TlY=
|
343
|
+
-----END RSA PRIVATE KEY-----
|
344
|
+
verification_key: |
|
345
|
+
-----BEGIN PUBLIC KEY-----
|
346
|
+
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d
|
347
|
+
KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX
|
348
|
+
qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug
|
349
|
+
spULZVNRxq7veq/fzwIDAQAB
|
350
|
+
-----END PUBLIC KEY-----
|
351
|
+
cc:
|
352
|
+
client_secret: <%= common_password %>
|
353
|
+
admin:
|
354
|
+
client_secret: <%= common_password %>
|
355
|
+
batch:
|
356
|
+
username: batchuser
|
357
|
+
password: <%= common_password %>
|
358
|
+
client:
|
359
|
+
autoapprove:
|
360
|
+
- cf
|
361
|
+
clients:
|
362
|
+
cf:
|
363
|
+
override: true
|
364
|
+
authorized-grant-types: password,implicit,refresh_token
|
365
|
+
authorities: uaa.none
|
366
|
+
scope: cloud_controller.read,cloud_controller.write,openid,password.write,cloud_controller.admin,scim.read,scim.write
|
367
|
+
access-token-validity: 7200
|
368
|
+
refresh-token-validity: 1209600
|
369
|
+
scim:
|
370
|
+
users:
|
371
|
+
- admin|<%= common_password %>|scim.write,scim.read,openid,cloud_controller.admin
|
372
|
+
- services|<%= common_password %>|scim.write,scim.read,openid,cloud_controller.admin
|
@@ -0,0 +1,331 @@
|
|
1
|
+
---
|
2
|
+
<%-
|
3
|
+
# Example source deployment file that can be used:
|
4
|
+
# ---
|
5
|
+
# name: NAME
|
6
|
+
# director_uuid: 4ae3a0f0-70a5-4c0d-95f2-7fafaefe8b9e
|
7
|
+
# releases:
|
8
|
+
# - name: cf
|
9
|
+
# version: 146
|
10
|
+
# networks: {}
|
11
|
+
# properties:
|
12
|
+
# cf:
|
13
|
+
# dns: mycloud.com
|
14
|
+
# ip_addresses: ['1.2.3.4']
|
15
|
+
# deployment_size: medium
|
16
|
+
# security_group: cf
|
17
|
+
# persistent_disk: 4096
|
18
|
+
#
|
19
|
+
# Then target that deployment file:
|
20
|
+
#
|
21
|
+
# $ bosh deployment path/to/file/above
|
22
|
+
#
|
23
|
+
# Then apply this template:
|
24
|
+
#
|
25
|
+
# $ bosh diff deployment_file.yml.erb
|
26
|
+
#
|
27
|
+
no_ssl = true
|
28
|
+
protocol = no_ssl ? "http" : "https"
|
29
|
+
name = find("name")
|
30
|
+
dns = find("properties.cf.dns")
|
31
|
+
ip_addresses = find("properties.cf.ip_addresses")
|
32
|
+
security_group = find("properties.cf.security_group")
|
33
|
+
deployment_size = find("properties.cf.deployment_size")
|
34
|
+
persistent_disk = find("properties.cf.persistent_disk")
|
35
|
+
common_password = find("properties.cf.common_password")
|
36
|
+
dea_server_ram = find("properties.cf.dea_server_ram") # expected ram available on dea server
|
37
|
+
dea_container_depot_disk = 10*1024 # 10G is common minimal root or ephemeral disk size for all IaaS
|
38
|
+
-%>
|
39
|
+
name: <%= name %>
|
40
|
+
director_uuid: <%= find("director_uuid") %>
|
41
|
+
|
42
|
+
releases:
|
43
|
+
- name: cf
|
44
|
+
version: 146
|
45
|
+
|
46
|
+
networks:
|
47
|
+
- name: floating
|
48
|
+
type: vip
|
49
|
+
cloud_properties: {}
|
50
|
+
- name: default
|
51
|
+
type: dynamic
|
52
|
+
cloud_properties:
|
53
|
+
security_groups:
|
54
|
+
- <%= security_group %>
|
55
|
+
|
56
|
+
update:
|
57
|
+
canaries: 1
|
58
|
+
canary_watch_time: 30000-60000
|
59
|
+
update_watch_time: 30000-60000
|
60
|
+
max_in_flight: 4
|
61
|
+
|
62
|
+
compilation:
|
63
|
+
workers: 6
|
64
|
+
network: default
|
65
|
+
reuse_compilation_vms: true
|
66
|
+
cloud_properties:
|
67
|
+
instance_type: m1.medium
|
68
|
+
|
69
|
+
resource_pools:
|
70
|
+
- name: small
|
71
|
+
network: default
|
72
|
+
size: 4
|
73
|
+
stemcell:
|
74
|
+
name: bosh-openstack-kvm-ubuntu
|
75
|
+
version: latest
|
76
|
+
cloud_properties:
|
77
|
+
instance_type: m1.small
|
78
|
+
|
79
|
+
- name: medium
|
80
|
+
network: default
|
81
|
+
size: 0
|
82
|
+
stemcell:
|
83
|
+
name: bosh-openstack-kvm-ubuntu
|
84
|
+
version: latest
|
85
|
+
cloud_properties:
|
86
|
+
instance_type: m1.medium
|
87
|
+
|
88
|
+
jobs:
|
89
|
+
- name: data
|
90
|
+
release: cf
|
91
|
+
template:
|
92
|
+
- postgres
|
93
|
+
- debian_nfs_server
|
94
|
+
instances: 1
|
95
|
+
resource_pool: small
|
96
|
+
persistent_disk: <%= persistent_disk %>
|
97
|
+
networks:
|
98
|
+
- name: default
|
99
|
+
default:
|
100
|
+
- dns
|
101
|
+
- gateway
|
102
|
+
properties:
|
103
|
+
db: databases
|
104
|
+
|
105
|
+
- name: core
|
106
|
+
release: cf
|
107
|
+
template:
|
108
|
+
- nats
|
109
|
+
- health_manager_next
|
110
|
+
- uaa
|
111
|
+
instances: 1
|
112
|
+
resource_pool: small
|
113
|
+
networks:
|
114
|
+
- name: default
|
115
|
+
default:
|
116
|
+
- dns
|
117
|
+
- gateway
|
118
|
+
|
119
|
+
- name: api
|
120
|
+
release: cf
|
121
|
+
template:
|
122
|
+
- cloud_controller_ng
|
123
|
+
- gorouter
|
124
|
+
instances: 1
|
125
|
+
resource_pool: small
|
126
|
+
networks:
|
127
|
+
- name: default
|
128
|
+
default:
|
129
|
+
- dns
|
130
|
+
- gateway
|
131
|
+
- name: floating
|
132
|
+
static_ips:
|
133
|
+
<%- ip_addresses.each do |ip| -%>
|
134
|
+
- <%= ip %>
|
135
|
+
<%- end -%>
|
136
|
+
properties:
|
137
|
+
db: databases
|
138
|
+
|
139
|
+
- name: dea
|
140
|
+
release: cf
|
141
|
+
template:
|
142
|
+
- dea_next
|
143
|
+
instances: 1
|
144
|
+
resource_pool: small
|
145
|
+
networks:
|
146
|
+
- name: default
|
147
|
+
default: [dns, gateway]
|
148
|
+
|
149
|
+
properties:
|
150
|
+
cf:
|
151
|
+
name: <%= name %>
|
152
|
+
dns: <%= dns %>
|
153
|
+
ip_addresses: <%= ip_addresses.inspect %>
|
154
|
+
deployment_size: <%= deployment_size %>
|
155
|
+
security_group: <%= security_group %>
|
156
|
+
persistent_disk: <%= persistent_disk %>
|
157
|
+
common_password: <%= common_password %>
|
158
|
+
dea_server_ram: <%= dea_server_ram %>
|
159
|
+
|
160
|
+
domain: <%= dns %>
|
161
|
+
system_domain: <%= dns %>.com
|
162
|
+
system_domain_organization: system_domain
|
163
|
+
app_domains:
|
164
|
+
- <%= dns %>
|
165
|
+
|
166
|
+
networks:
|
167
|
+
apps: default
|
168
|
+
management: default
|
169
|
+
|
170
|
+
nats:
|
171
|
+
address: 0.core.default.<%= name %>.microbosh
|
172
|
+
port: 4222
|
173
|
+
user: nats
|
174
|
+
password: <%= common_password %>
|
175
|
+
authorization_timeout: 5
|
176
|
+
|
177
|
+
router:
|
178
|
+
port: 8081
|
179
|
+
status:
|
180
|
+
port: 8080
|
181
|
+
user: gorouter
|
182
|
+
password: <%= common_password %>
|
183
|
+
|
184
|
+
dea: &dea
|
185
|
+
memory_mb: <%= dea_server_ram %>
|
186
|
+
disk_mb: <%= dea_container_depot_disk %>
|
187
|
+
directory_server_protocol: <%= protocol %>
|
188
|
+
|
189
|
+
dea_next: *dea
|
190
|
+
|
191
|
+
syslog_aggregator:
|
192
|
+
address: 0.syslog-aggregator.default.<%= name %>.microbosh
|
193
|
+
port: 54321
|
194
|
+
|
195
|
+
nfs_server:
|
196
|
+
address: 0.data.default.<%= name %>.microbosh
|
197
|
+
network: "*.<%= name %>.microbosh"
|
198
|
+
idmapd_domain: <%= dns %>
|
199
|
+
|
200
|
+
debian_nfs_server:
|
201
|
+
no_root_squash: true
|
202
|
+
|
203
|
+
databases: &databases
|
204
|
+
db_scheme: postgres
|
205
|
+
address: 0.data.default.<%= name %>.microbosh
|
206
|
+
port: 5524
|
207
|
+
roles:
|
208
|
+
- tag: admin
|
209
|
+
name: ccadmin
|
210
|
+
password: <%= common_password %>
|
211
|
+
- tag: admin
|
212
|
+
name: uaaadmin
|
213
|
+
password: <%= common_password %>
|
214
|
+
databases:
|
215
|
+
- tag: cc
|
216
|
+
name: ccdb
|
217
|
+
citext: true
|
218
|
+
- tag: uaa
|
219
|
+
name: uaadb
|
220
|
+
citext: true
|
221
|
+
|
222
|
+
ccdb: &ccdb
|
223
|
+
db_scheme: postgres
|
224
|
+
address: 0.data.default.<%= name %>.microbosh
|
225
|
+
port: 5524
|
226
|
+
roles:
|
227
|
+
- tag: admin
|
228
|
+
name: ccadmin
|
229
|
+
password: <%= common_password %>
|
230
|
+
databases:
|
231
|
+
- tag: cc
|
232
|
+
name: ccdb
|
233
|
+
citext: true
|
234
|
+
|
235
|
+
ccdb_ng: *ccdb
|
236
|
+
|
237
|
+
uaadb:
|
238
|
+
db_scheme: postgresql
|
239
|
+
address: 0.data.default.<%= name %>.microbosh
|
240
|
+
port: 5524
|
241
|
+
roles:
|
242
|
+
- tag: admin
|
243
|
+
name: uaaadmin
|
244
|
+
password: <%= common_password %>
|
245
|
+
databases:
|
246
|
+
- tag: uaa
|
247
|
+
name: uaadb
|
248
|
+
citext: true
|
249
|
+
|
250
|
+
cc_api_version: v2
|
251
|
+
|
252
|
+
cc: &cc
|
253
|
+
logging_level: debug
|
254
|
+
external_host: api
|
255
|
+
srv_api_uri: <%= protocol %>://api.<%= dns %>
|
256
|
+
cc_partition: default
|
257
|
+
db_encryption_key: <%= common_password %>
|
258
|
+
bootstrap_admin_email: admin@<%= dns %>
|
259
|
+
bulk_api_password: <%= common_password %>
|
260
|
+
uaa_resource_id: cloud_controller
|
261
|
+
staging_upload_user: uploaduser
|
262
|
+
staging_upload_password: <%= common_password %>
|
263
|
+
resource_pool:
|
264
|
+
resource_directory_key: cc-resources
|
265
|
+
# Local provider when using NFS
|
266
|
+
fog_connection:
|
267
|
+
provider: Local
|
268
|
+
local_root: /var/vcap/shared
|
269
|
+
packages:
|
270
|
+
app_package_directory_key: cc-packages
|
271
|
+
droplets:
|
272
|
+
droplet_directory_key: cc-droplets
|
273
|
+
default_quota_definition: runaway
|
274
|
+
|
275
|
+
ccng: *cc
|
276
|
+
|
277
|
+
login:
|
278
|
+
enabled: false
|
279
|
+
|
280
|
+
uaa:
|
281
|
+
url: <%= protocol %>://uaa.<%= dns %>
|
282
|
+
spring_profiles: postgresql
|
283
|
+
no_ssl: <%= no_ssl %>
|
284
|
+
catalina_opts: -Xmx768m -XX:MaxPermSize=256m
|
285
|
+
resource_id: account_manager
|
286
|
+
jwt:
|
287
|
+
signing_key: |
|
288
|
+
-----BEGIN RSA PRIVATE KEY-----
|
289
|
+
MIICXAIBAAKBgQDHFr+KICms+tuT1OXJwhCUmR2dKVy7psa8xzElSyzqx7oJyfJ1
|
290
|
+
JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMXqHxf+ZH9BL1gk9Y6kCnbM5R6
|
291
|
+
0gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBugspULZVNRxq7veq/fzwIDAQAB
|
292
|
+
AoGBAJ8dRTQFhIllbHx4GLbpTQsWXJ6w4hZvskJKCLM/o8R4n+0W45pQ1xEiYKdA
|
293
|
+
Z/DRcnjltylRImBD8XuLL8iYOQSZXNMb1h3g5/UGbUXLmCgQLOUUlnYt34QOQm+0
|
294
|
+
KvUqfMSFBbKMsYBAoQmNdTHBaz3dZa8ON9hh/f5TT8u0OWNRAkEA5opzsIXv+52J
|
295
|
+
duc1VGyX3SwlxiE2dStW8wZqGiuLH142n6MKnkLU4ctNLiclw6BZePXFZYIK+AkE
|
296
|
+
xQ+k16je5QJBAN0TIKMPWIbbHVr5rkdUqOyezlFFWYOwnMmw/BKa1d3zp54VP/P8
|
297
|
+
+5aQ2d4sMoKEOfdWH7UqMe3FszfYFvSu5KMCQFMYeFaaEEP7Jn8rGzfQ5HQd44ek
|
298
|
+
lQJqmq6CE2BXbY/i34FuvPcKU70HEEygY6Y9d8J3o6zQ0K9SYNu+pcXt4lkCQA3h
|
299
|
+
jJQQe5uEGJTExqed7jllQ0khFJzLMx0K6tj0NeeIzAaGCQz13oo2sCdeGRHO4aDh
|
300
|
+
HH6Qlq/6UOV5wP8+GAcCQFgRCcB+hrje8hfEEefHcFpyKH+5g1Eu1k0mLrxK2zd+
|
301
|
+
4SlotYRHgPCEubokb2S1zfZDWIXW3HmggnGgM949TlY=
|
302
|
+
-----END RSA PRIVATE KEY-----
|
303
|
+
verification_key: |
|
304
|
+
-----BEGIN PUBLIC KEY-----
|
305
|
+
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d
|
306
|
+
KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX
|
307
|
+
qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug
|
308
|
+
spULZVNRxq7veq/fzwIDAQAB
|
309
|
+
-----END PUBLIC KEY-----
|
310
|
+
cc:
|
311
|
+
client_secret: <%= common_password %>
|
312
|
+
admin:
|
313
|
+
client_secret: <%= common_password %>
|
314
|
+
batch:
|
315
|
+
username: batchuser
|
316
|
+
password: <%= common_password %>
|
317
|
+
client:
|
318
|
+
autoapprove:
|
319
|
+
- cf
|
320
|
+
clients:
|
321
|
+
cf:
|
322
|
+
override: true
|
323
|
+
authorized-grant-types: password,implicit,refresh_token
|
324
|
+
authorities: uaa.none
|
325
|
+
scope: cloud_controller.read,cloud_controller.write,openid,password.write,cloud_controller.admin,scim.read,scim.write
|
326
|
+
access-token-validity: 7200
|
327
|
+
refresh-token-validity: 1209600
|
328
|
+
scim:
|
329
|
+
users:
|
330
|
+
- admin|<%= common_password %>|scim.write,scim.read,openid,cloud_controller.admin
|
331
|
+
- services|<%= common_password %>|scim.write,scim.read,openid,cloud_controller.admin
|