kite 0.0.7 → 0.0.8

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 3084fa0faffd40bc3ffad4f326ea1501cb6eb31a
-  data.tar.gz: dcee9c104c6d840a0465b209aa391872b12cb629
+  metadata.gz: d029f893bc9f787beff2681b15c0b6ab31371b70
+  data.tar.gz: 406a1dc3d0a397bba6e2dae0983d464a9ce7b791
 SHA512:
-  metadata.gz: c2affb89e3e7fb09feddecf3151c0042ea1708319ccd5f56fc5d896562e385aadb4dd79c32858de2e60a28f77b0830a482384a95062ca0c982afd4c0374717bf
-  data.tar.gz: 11fc96ffbe8cde21ed4bc3adb09c10acaafce7faebbe1badffc06ca3919913769f4e459f4cde23779a47f7649f41eeca1fc7cdd5dc3419b55ae1f794bdb1b19e
+  metadata.gz: 4247ff2253a5ff7d392b820cd3cd8c329f8a23159017ca4359072102e2bf57bb2fee91b28401371eb4c658f7cbc390faede99486323b2485b7944f456b54ccd3
+  data.tar.gz: 1e4593d77af49accd33e8e6341d250e919034da2358610f9c0ddc08bd3b136cbb2180333776aa35d24c797a55131046d18c34dc84f923a6ce8e37782ebe475b8

data/CHANGELOG.md

@@ -0,0 +1,61 @@
+# Change Log
+
+## [Unreleased](https://github.com/helios-technologies/kite/tree/HEAD)
+
+[Full Changelog](https://github.com/helios-technologies/kite/compare/v0.0.7...HEAD)
+
+**Closed issues:**
+
+- GCP Reserved ip problem [\#27](https://github.com/helios-technologies/kite/issues/27)
+
+**Merged pull requests:**
+
+- Added GCS backend for remote .tfstate storage [\#30](https://github.com/helios-technologies/kite/pull/30) ([vshatravenko](https://github.com/vshatravenko))
+- Fixed reserved ip problem for GCP [\#29](https://github.com/helios-technologies/kite/pull/29) ([vshatravenko](https://github.com/vshatravenko))
+- Fixed reserved ip range rendering for AWS [\#26](https://github.com/helios-technologies/kite/pull/26) ([vshatravenko](https://github.com/vshatravenko))
+- Added subnet\_name render in terraform.tfvars [\#25](https://github.com/helios-technologies/kite/pull/25) ([vshatravenko](https://github.com/vshatravenko))
+- Added Vault manifest [\#24](https://github.com/helios-technologies/kite/pull/24) ([vshatravenko](https://github.com/vshatravenko))
+- Fix in shell skript template for concourse deployment [\#22](https://github.com/helios-technologies/kite/pull/22) ([n-trace](https://github.com/n-trace))
+
+## [v0.0.7](https://github.com/helios-technologies/kite/tree/v0.0.7) (2017-09-15)
+[Full Changelog](https://github.com/helios-technologies/kite/compare/v0.0.6...v0.0.7)
+
+**Merged pull requests:**
+
+- Updated Concourse manifest for AWS [\#21](https://github.com/helios-technologies/kite/pull/21) ([vshatravenko](https://github.com/vshatravenko))
+- Fix setup-tunnel.sh on GCP platform [\#20](https://github.com/helios-technologies/kite/pull/20) ([calj](https://github.com/calj))
+- Added Dockerfile for kitebox [\#19](https://github.com/helios-technologies/kite/pull/19) ([vshatravenko](https://github.com/vshatravenko))
+- NAT Gateway for AWS [\#18](https://github.com/helios-technologies/kite/pull/18) ([mod](https://github.com/mod))
+- Updated docs for RDoc [\#17](https://github.com/helios-technologies/kite/pull/17) ([vshatravenko](https://github.com/vshatravenko))
+- Moved kite render to subcommand [\#16](https://github.com/helios-technologies/kite/pull/16) ([vshatravenko](https://github.com/vshatravenko))
+- Bugfixes for v0.0.6 [\#14](https://github.com/helios-technologies/kite/pull/14) ([vshatravenko](https://github.com/vshatravenko))
+- Add cloud config, concourse [\#12](https://github.com/helios-technologies/kite/pull/12) ([nmuzychuk](https://github.com/nmuzychuk))
+
+## [v0.0.6](https://github.com/helios-technologies/kite/tree/v0.0.6) (2017-09-13)
+[Full Changelog](https://github.com/helios-technologies/kite/compare/v0.0.5...v0.0.6)
+
+**Merged pull requests:**
+
+- Lib improvements; simplified kite errors [\#11](https://github.com/helios-technologies/kite/pull/11) ([vshatravenko](https://github.com/vshatravenko))
+- Added BOSH CLI v2 support for AWS [\#10](https://github.com/helios-technologies/kite/pull/10) ([vshatravenko](https://github.com/vshatravenko))
+- Lib improvements [\#9](https://github.com/helios-technologies/kite/pull/9) ([vshatravenko](https://github.com/vshatravenko))
+- Extract bosh vars into a config file [\#8](https://github.com/helios-technologies/kite/pull/8) ([nmuzychuk](https://github.com/nmuzychuk))
+- Add GCP readme [\#7](https://github.com/helios-technologies/kite/pull/7) ([nmuzychuk](https://github.com/nmuzychuk))
+
+## [v0.0.5](https://github.com/helios-technologies/kite/tree/v0.0.5) (2017-09-01)
+[Full Changelog](https://github.com/helios-technologies/kite/compare/v0.0.4...v0.0.5)
+
+**Merged pull requests:**
+
+- Refactor terraform config [\#5](https://github.com/helios-technologies/kite/pull/5) ([nmuzychuk](https://github.com/nmuzychuk))
+- Add bosh jumpbox [\#4](https://github.com/helios-technologies/kite/pull/4) ([nmuzychuk](https://github.com/nmuzychuk))
+- Update bootstrap.sh; Removed .env; Fixed .tfvars [\#3](https://github.com/helios-technologies/kite/pull/3) ([vshatravenko](https://github.com/vshatravenko))
+- Reorganized templates [\#1](https://github.com/helios-technologies/kite/pull/1) ([vshatravenko](https://github.com/vshatravenko))
+
+## [v0.0.4](https://github.com/helios-technologies/kite/tree/v0.0.4) (2017-08-25)
+[Full Changelog](https://github.com/helios-technologies/kite/compare/v0.0.3...v0.0.4)
+
+## [v0.0.3](https://github.com/helios-technologies/kite/tree/v0.0.3) (2017-08-24)
+[Full Changelog](https://github.com/helios-technologies/kite/compare/v0.0.2...v0.0.3)
+
+## [v0.0.2](https://github.com/helios-technologies/kite/tree/v0.0.2) (2017-08-24)

data/lib/kite.rb

@@ -1,5 +1,6 @@
 require 'erb'
 require 'yaml'
+require 'ipaddr'
 require 'thor'
 
 require 'kite/version'

data/lib/kite/core.rb

@@ -19,12 +19,8 @@ module Kite
 
       case options[:cloud]
       when 'aws'
-        copy_file('aws/terraform/main.tf',                 'terraform/main.tf')
-        copy_file('aws/terraform/network.tf',              'terraform/network.tf')
-        copy_file('aws/terraform/outputs.tf',              'terraform/outputs.tf')
-        copy_file('aws/terraform/variables.tf',            'terraform/variables.tf')
-        template('aws/terraform/terraform.tfvars.erb',     'terraform/terraform.tfvars')
-        copy_file('aws/README.md',                         'README.md')
+        directory('aws/terraform',                          'terraform')
+        copy_file('aws/README.md',                          'README.md', force: true)
 
         template('aws/bosh-install.sh.erb',                 'bin/bosh-install.sh')
         template('aws/setup-tunnel.sh.erb',                 'bin/setup-tunnel.sh')
@@ -35,18 +31,18 @@ module Kite
         chmod('bin/setup-tunnel.sh', 0755)
 
       when 'gcp'
-        copy_file('gcp/terraform/main.tf',                  'terraform/main.tf')
-        copy_file('gcp/terraform/network.tf',               'terraform/network.tf')
-        copy_file('gcp/terraform/outputs.tf',               'terraform/outputs.tf')
-        copy_file('gcp/terraform/variables.tf',             'terraform/variables.tf')
-        template('gcp/terraform/terraform.tfvars.erb',      'terraform/terraform.tfvars')
+        directory('gcp/terraform',                          'terraform')
         copy_file('gcp/README.md',                          'README.md', force: true)
 
         template('gcp/bosh-install.sh.erb',                 'bin/bosh-install.sh')
         template('gcp/bosh-vars.yml.erb',                   'bosh-vars.yml')
         template('gcp/setup-tunnel.sh.erb',                 'bin/setup-tunnel.sh')
+        template('gcp/concourse-deploy.sh.erb',             'bin/concourse-deploy.sh')
+        template('gcp/vault-deploy.sh.erb',                 'bin/vault-deploy.sh')
         template('gcp/set-env.sh.erb',                      'bin/set-env.sh')
         chmod('bin/bosh-install.sh', 0755)
+        chmod('bin/concourse-deploy.sh', 0755)
+        chmod('bin/vault-deploy.sh', 0755)
         chmod('bin/setup-tunnel.sh', 0755)
 
       else

data/lib/kite/helpers.rb

@@ -28,4 +28,32 @@ module Kite::Helpers
     cloud_config
   end
 
+  # Returns subnet's IP range slice in a BOSH manifest-compatible way
+  def ip_range(subnet, range)
+
+    subnet = subnet.to_a # Turn subnet into array representation to be DRY
+
+    case range
+    when Integer
+      raise Kite::Error, 'Range number less than one in ip_range()' if range < 1
+
+      subnet[0].to_s + '-' + subnet[range].to_s
+
+    when Array
+      raise Kite::Error, 'Invalid number of elements in ip_range()' unless range.length == 2
+      raise Kite::Error, 'Second index is less than the first one in ip_range()' if range.last < range.first
+
+      subnet[range.first].to_s + '-' + subnet[range.last].to_s
+
+    when Range
+      raise Kite::Error, 'Second index is less than the first one in ip_range()' if range.last < range.first
+
+      range = range.to_a
+      subnet[range.first].to_s + '-' + subnet[range.last].to_s
+
+    else
+      raise Kite::Error, 'Unsupported range type for ip_range()'
+    end
+  end
+
 end

data/lib/kite/render.rb

@@ -14,12 +14,20 @@ module Kite
 
       case type
       when "bosh"
-        cloud = options[:cloud]
-        directory("#{cloud}/deployments",                    'deployments')
+        if options[:cloud] == 'aws'
+          @private_subnet = IPAddr.new(@values['aws']['private_subnet']['network']).to_range.to_a
+        else
+          @private_subnet = IPAddr.new(@values['gcp']['subnet_cidr']).to_range.to_a
+        end
+
+        directory("#{options[:cloud]}/deployments/bosh",                          'deployments/bosh')
 
       when "concourse"
         template("#{options[:cloud]}/deployments/concourse/cloud-config.yml.erb", "deployments/concourse/cloud-config.yml")
-        template("#{options[:cloud]}/deployments/concourse/concourse.yml.erb", "deployments/concourse/concourse.yml")
+        template("#{options[:cloud]}/deployments/concourse/concourse.yml.erb",    "deployments/concourse/concourse.yml")
+      when "vault"
+        copy_file("#{options[:cloud]}/deployments/vault/vault.yml",               "deployments/vault/vault.yml")
+        copy_file("#{options[:cloud]}/vault.md",                                  "docs/vault.md")
 
       else
         say "Manifest type not specified"

data/lib/kite/version.rb

@@ -1,3 +1,3 @@
 module Kite
-  VERSION = "0.0.7"
+  VERSION = "0.0.8"
 end

data/tpl/aws/bosh-install.sh.erb

@@ -16,6 +16,8 @@ bosh alias-env <%= @values['bosh']['name'] %> \
   -e <%= @values['bosh']['static_ip'] %>  \
   --ca-cert <(bosh int ./config/creds.yml --path /director_ssl/ca)
 
+bosh -e <%= @values['bosh']['name'] %> ucc deployments/bosh/cloud_config.yml
+
 # Get jumpbox user key
 bosh int config/creds.yml --path /jumpbox_ssh/private_key > config/jumpbox.key
 chmod 600 config/jumpbox.key

data/tpl/aws/concourse-deploy.sh.erb

@@ -6,7 +6,7 @@ set -xe
 kite render manifest concourse --cloud aws
 
 # Update BOSH director cloud configuration
-bosh update-cloud-config deployments/concourse/cloud-config.yml
+bosh -e <%= @values['bosh']['name'] %> update-cloud-config deployments/concourse/cloud-config.yml
 
 # Upload necessary stemcells and releases
 bosh -e <%= @values['bosh']['name'] %> upload-stemcell https://bosh.io/d/stemcells/bosh-aws-xen-hvm-ubuntu-trusty-go_agent

data/tpl/aws/deployments/{concourse/cloud-config.yml.erb → bosh/cloud-config.yml.tt}

@@ -55,8 +55,8 @@ networks:
   - az: z1
     range: <%= @values['aws']['private_subnet']['network'] %>
     gateway: <%= @values['aws']['private_subnet']['gateway'] %>
-    reserved: [10.0.20.1-10.0.20.10]
-    dns: [10.0.20.8]
+    reserved: [<%= ip_range(@private_subnet, (1..10)) %>]
+    dns: [<%= @private_subnet[8].to_s %>]
     cloud_properties: {subnet: <%= @tf_output['platform_subnet_id'] %>}
 - name: vip
   type: vip

data/tpl/gcp/README.md

@@ -1,6 +1,12 @@
 ## GCP Cloud
 
 ### Usage
+
+Set path to your service account credentials:
+```
+export GOOGLE_CREDENTIALS=*~/credentials/service-account.json*
+```
+
 Apply terraform code
 ```
 pushd terraform && terraform init && terraform apply && popd
@@ -25,8 +31,6 @@ Connect to the Director
 ```
 . bin/set-env.sh
 
-bosh alias-env bosh-1 -e 10.0.0.10 --ca-cert \
-  <(bosh int ./config/creds.yml --path /director_ssl/ca)
 ```
 
 Render concourse deployment

data/tpl/gcp/bosh-install.sh.erb

@@ -10,3 +10,8 @@ bosh create-env deployments/bosh/bosh.yml \
   -v tags='[platform-internal, no-ip]' \
   -o deployments/bosh/cpi.yml \
   -o deployments/bosh/jumpbox-user.yml
+
+bosh alias-env <%= @values['bosh']['name'] %> -e <%= @values['bosh']['static_ip'] %> --ca-cert \
+  <(bosh int ./config/creds.yml --path /director_ssl/ca)
+
+bosh -e <%= @values['bosh']['name'] %> ucc deployments/bosh/cloud_config.yml

data/tpl/gcp/concourse-deploy.sh.erb

@@ -0,0 +1,14 @@
+#!/usr/bin/env bash
+
+set -xe
+
+# Render Concourse-related files
+kite render manifest concourse --cloud aws
+
+# Upload necessary stemcells and releases
+bosh -e <%= @values['bosh']['name'] %> upload-stemcell https://bosh.io/d/stemcells/bosh-aws-xen-hvm-ubuntu-trusty-go_agent
+bosh -e <%= @values['bosh']['name'] %> upload-release https://bosh.io/d/github.com/concourse/concourse
+bosh -e <%= @values['bosh']['name'] %> upload-release https://bosh.io/d/github.com/cloudfoundry-incubator/garden-runc-release
+
+# Deploy Concourse
+bosh -e <%= @values['bosh']['name'] %> -d concourse deploy deployments/concourse/concourse.yml

data/tpl/gcp/deployments/{concourse/cloud-config.yml.erb → bosh/cloud-config.yml.tt}

@@ -39,7 +39,7 @@ networks:
     - az: z1
       range: <%= @values['gcp']['subnet_cidr'] %>
       gateway: <%= @values['gcp']['internal_gw'] %>
-      static: [10.0.0.2, 10.0.0.10]
+      reserved: [<%= ip_range(@private_subnet, (1..10)) %>]
       cloud_properties:
         network_name: <%= @values['gcp']['vpc_name'] %>
         subnetwork_name: <%= @values['gcp']['subnet_name'] %>

data/tpl/gcp/deployments/vault/vault.yml

@@ -0,0 +1,37 @@
+---
+name: vault
+
+releases:
+- name: vault
+  version: latest
+
+instance_groups:
+- name: vault
+  instances: 1
+  vm_type: common
+  azs: [z1]
+  stemcell: trusty
+  networks:
+  - name: public
+
+  jobs:
+  - name: vault
+    release: vault
+    properties:
+      vault:
+        ha:
+          redirect: ~
+        storage:
+          use_file: true
+
+update:
+  canaries: 1
+  max_in_flight: 1
+  serial: false
+  canary_watch_time: 1000-60000
+  update_watch_time: 1000-60000
+
+stemcells:
+- alias: trusty
+  name: bosh-google-kvm-ubuntu-trusty-go_agent
+  version: latest

data/tpl/gcp/terraform/gcs.tf.tt

@@ -0,0 +1,18 @@
+# Setup Terraform GCS backend to be able to store .tfstate remotely
+terraform {
+  backend "gcs" {
+    bucket  = "<%= @values['kite']['bucket_name'] %>"
+    path    = "terraform.tfstate"
+    project = "<%= @values['gcp']['project'] %>"
+  }
+}
+
+# Store .tfstate in a GCS bucket
+data "terraform_remote_state" "tfstate" {
+  backend = "gcs"
+  config {
+    bucket  = "<%= @values['kite']['bucket_name'] %>"
+    path    = "terraform.tfstate"
+    project = "<%= @values['gcp']['project'] %>"
+  }
+}

data/tpl/gcp/terraform/network.tf

@@ -4,7 +4,7 @@ resource "google_compute_network" "platform" {
 
 # Subnet for the Platform tools
 resource "google_compute_subnetwork" "platform_net" {
-  name          = "platform-net"
+  name          = "${var.platform_subnet_name}"
   ip_cidr_range = "${var.subnet_cidr}"
   network       = "${google_compute_network.platform.self_link}"
 }

data/tpl/gcp/terraform/{terraform.tfvars.erb → terraform.tfvars.tt}

@@ -11,4 +11,5 @@ zone = "<%= @values['gcp']['zone'] %>"
 
 # Network Config
 vpc_name = "<%= @values['gcp']['vpc_name'] %>"
+platform_subnet_name = "<%= @values['gcp']['subnet_name'] %>"
 subnet_cidr = "<%= @values['gcp']['subnet_cidr'] %>"

data/tpl/gcp/terraform/variables.tf

@@ -22,6 +22,11 @@ variable "vpc_name" {
     default = "platform-tools"
 }
 
+variable "platform_subnet_name" {
+    type = "string"
+    default = "platform-net"
+}
+
 variable "subnet_cidr" {
     type = "string"
     default = "10.0.0.0/24"

data/tpl/gcp/vault-deploy.sh.erb

@@ -0,0 +1,13 @@
+#!/usr/bin/env bash
+
+set -xe
+
+# Render Concourse-related files
+kite render manifest concourse --cloud aws
+
+# Upload necessary stemcells and releases
+bosh -e <%= @values['bosh']['name'] %> upload-stemcell https://s3.amazonaws.com/bosh-core-stemcells/google/bosh-stemcell-3445.7-google-kvm-ubuntu-trusty-go_agent.tgz
+bosh -e <%= @values['bosh']['name'] %> upload-release https://bosh.io/d/github.com/cloudfoundry-community/vault-boshrelease
+
+# Deploy Concourse
+bosh -e <%= @values['bosh']['name'] %> -d vault deploy deployments/vault/vault.yml

data/tpl/gcp/vault.md

@@ -0,0 +1,26 @@
+# Vault usage
+
+## Prerequisites
+
+Before using Vault, you should have the client installed:
+
+- Download the binary for your OS
+- Unzip it and run `chmod +x vault && sudo mv vault /usr/local/bin/vault`
+- Check if the Vault is installed by running `vault -v`
+
+## Deployment
+
+To deploy Vault, use `bin/vault-deploy.sh`
+
+## Connection
+
+- Export your Vault's IP using `export VAULT_ADDR=*vault_ip*`
+- Run `vault init` to initialize the vault
+- Store the keys displayed after init
+- Unseal the vault by running `vault unseal` three times using three keys from the previous step
+
+[Optional]
+- Try to store a dummy secret: `vault write secret/handshake knock=knock`
+- Read it: `vault read secret/handshake`
+
+You're good to go!

data/tpl/skel/config/cloud.yml

@@ -2,6 +2,7 @@ kite:
   keypair_name: "kitekey"
   public_key_path: "~/.ssh/kite.key.pub"
   private_key_path: "~/.ssh/kite.key"
+  bucket_name: "kite-state"
 
 aws:
   access_key: "enter your amazon key"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: kite
 version: !ruby/object:Gem::Version
-  version: 0.0.7
+  version: 0.0.8
 platform: ruby
 authors:
 - Louis Bellet
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-09-15 00:00:00.000000000 Z
+date: 2017-09-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: thor
@@ -79,6 +79,7 @@ files:
 - ".gitignore"
 - ".rspec"
 - ".travis.yml"
+- CHANGELOG.md
 - Dockerfile
 - Gemfile
 - Makefile
@@ -101,9 +102,9 @@ files:
 - tpl/aws/concourse-deploy.sh.erb
 - tpl/aws/deployments/bosh/bosh.yml
 - tpl/aws/deployments/bosh/bosh_vars.yml.tt
+- tpl/aws/deployments/bosh/cloud-config.yml.tt
 - tpl/aws/deployments/bosh/cpi.yml
 - tpl/aws/deployments/bosh/jumpbox-user.yml
-- tpl/aws/deployments/concourse/cloud-config.yml.erb
 - tpl/aws/deployments/concourse/concourse.yml.erb
 - tpl/aws/set-env.sh.erb
 - tpl/aws/setup-tunnel.sh.erb
@@ -115,19 +116,23 @@ files:
 - tpl/gcp/README.md
 - tpl/gcp/bosh-install.sh.erb
 - tpl/gcp/bosh-vars.yml.erb
+- tpl/gcp/concourse-deploy.sh.erb
 - tpl/gcp/deployments/bosh/bosh.yml
-- tpl/gcp/deployments/bosh/cloud-config.yml
+- tpl/gcp/deployments/bosh/cloud-config.yml.tt
 - tpl/gcp/deployments/bosh/cpi.yml
 - tpl/gcp/deployments/bosh/jumpbox-user.yml
-- tpl/gcp/deployments/concourse/cloud-config.yml.erb
 - tpl/gcp/deployments/concourse/concourse.yml.erb
+- tpl/gcp/deployments/vault/vault.yml
 - tpl/gcp/set-env.sh.erb
 - tpl/gcp/setup-tunnel.sh.erb
+- tpl/gcp/terraform/gcs.tf.tt
 - tpl/gcp/terraform/main.tf
 - tpl/gcp/terraform/network.tf
 - tpl/gcp/terraform/outputs.tf
-- tpl/gcp/terraform/terraform.tfvars.erb
+- tpl/gcp/terraform/terraform.tfvars.tt
 - tpl/gcp/terraform/variables.tf
+- tpl/gcp/vault-deploy.sh.erb
+- tpl/gcp/vault.md
 - tpl/skel/Gemfile.tt
 - tpl/skel/README.md.tt
 - tpl/skel/bin/kite

data/tpl/gcp/deployments/bosh/cloud-config.yml

@@ -1,51 +0,0 @@
-azs:
-- name: z1
-  cloud_properties:
-    zone: ((zone))
-- name: z2
-  cloud_properties:
-    zone: ((zone))
-- name: z3
-  cloud_properties:
-    zone: ((zone))
-
-vm_types:
-- name: default
-  cloud_properties:
-    machine_type: n1-standard-2
-    root_disk_size_gb: 20
-    root_disk_type: pd-ssd
-- name: large
-  cloud_properties:
-    machine_type: n1-standard-2
-    root_disk_size_gb: 50
-    root_disk_type: pd-ssd
-
-disk_types:
-- name: default
-  disk_size: 3000
-- name: large
-  disk_size: 50_000
-
-networks:
-- name: default
-  type: manual
-  subnets:
-  - range: ((internal_cidr))
-    gateway: ((internal_gw))
-    azs: [z1, z2, z3]
-    dns: [8.8.8.8]
-    cloud_properties:
-      network_name: ((network))
-      subnetwork_name: ((subnetwork))
-      ephemeral_external_ip: true
-      tags: ((tags))
-- name: vip
-  type: vip
-
-compilation:
-  workers: 5
-  reuse_compilation_vms: true
-  az: z1
-  vm_type: default
-  network: default