kite 0.2.0 → 1.0.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/CHANGELOG.md +130 -66
- data/LICENSE.md +202 -0
- data/README.md +35 -11
- data/bin/concourse/out +16 -20
- data/docs/kite-concourse-resource.md +45 -0
- data/kite.gemspec +1 -0
- data/lib/kite.rb +3 -1
- data/lib/kite/cloud.rb +1 -0
- data/lib/kite/core.rb +8 -2
- data/lib/kite/generate.rb +12 -46
- data/lib/kite/helpers.rb +0 -72
- data/lib/kite/helpers/concourse.rb +3 -2
- data/lib/kite/module.rb +76 -0
- data/lib/kite/terraform.rb +45 -0
- data/lib/kite/version.rb +1 -1
- data/tpl/aws/environment/main.tf.tt +5 -0
- data/tpl/aws/environment/s3.tf.tt +13 -0
- data/tpl/gcp/environment/gcs.tf.tt +18 -0
- data/tpl/gcp/environment/main.tf.tt +5 -0
- data/tpl/gcp/environment/outputs.tf.tt +5 -0
- data/tpl/service/%output_path%/pipelines/review.yml.tt +55 -37
- data/tpl/service/%output_path%/pipelines/tasks/create-pull-requests-tag.yml.tt +1 -1
- data/tpl/service/%output_path%/pipelines/tasks/create-repository-tag.yml.tt +1 -1
- data/tpl/service/%output_path%/pipelines/tasks/run-unit.yml.tt +7 -0
- data/tpl/service/Makefile.tt +11 -7
- data/tpl/service/docs/getting-started.md +73 -0
- data/tpl/service/docs/service.md +101 -0
- data/tpl/skel/Gemfile.tt +0 -9
- data/tpl/skel/config/cloud.yml +11 -66
- metadata +29 -88
- data/lib/kite/render.rb +0 -116
- data/tpl/aws/README.md +0 -52
- data/tpl/aws/bin/base/bootstrap.sh +0 -35
- data/tpl/aws/bin/base/cleanup.sh.tt +0 -19
- data/tpl/aws/bin/base/set-env.sh.tt +0 -7
- data/tpl/aws/bin/base/setup-tunnel.sh.tt +0 -4
- data/tpl/aws/bin/bosh-install.sh.tt +0 -23
- data/tpl/aws/bin/concourse-deploy.sh.tt +0 -14
- data/tpl/aws/bin/ingress-deploy.sh.tt +0 -7
- data/tpl/aws/bin/ingress-update.sh.tt +0 -7
- data/tpl/aws/bin/kops-delete.sh.erb +0 -5
- data/tpl/aws/bin/kops-deploy.sh.erb +0 -11
- data/tpl/aws/bin/oauth-deploy.sh.tt +0 -17
- data/tpl/aws/bin/prometheus-deploy.sh.tt +0 -23
- data/tpl/aws/bin/vault-deploy.sh.tt +0 -10
- data/tpl/aws/bosh-vars.yml.erb +0 -12
- data/tpl/aws/config/oauth.yml +0 -59
- data/tpl/aws/deployments/bosh/bosh.yml +0 -144
- data/tpl/aws/deployments/bosh/cloud-config.yml.tt +0 -86
- data/tpl/aws/deployments/bosh/cpi.yml +0 -98
- data/tpl/aws/deployments/bosh/jumpbox-user.yml +0 -27
- data/tpl/aws/deployments/concourse/concourse.yml.tt +0 -98
- data/tpl/aws/deployments/ingress/ingress.yml.erb +0 -78
- data/tpl/aws/deployments/oauth/oauth.yml.tt +0 -95
- data/tpl/aws/deployments/prometheus/monitor-bosh.yml +0 -518
- data/tpl/aws/deployments/prometheus/monitor-kubernetes.yml +0 -30
- data/tpl/aws/deployments/prometheus/prometheus.yml.tt +0 -184
- data/tpl/aws/deployments/vault/vault.yml.erb +0 -38
- data/tpl/aws/docs/bosh.md +0 -31
- data/tpl/aws/docs/concourse.md +0 -41
- data/tpl/aws/docs/ingress.md +0 -14
- data/tpl/aws/docs/kops.md +0 -35
- data/tpl/aws/docs/oauth.md +0 -24
- data/tpl/aws/docs/prometheus.md +0 -31
- data/tpl/aws/docs/vault.md +0 -35
- data/tpl/aws/terraform/kite_bucket.tf +0 -8
- data/tpl/aws/terraform/main.tf.tt +0 -36
- data/tpl/aws/terraform/network.tf.tt +0 -252
- data/tpl/aws/terraform/outputs.tf +0 -19
- data/tpl/aws/terraform/terraform.tfvars.tt +0 -21
- data/tpl/aws/terraform/variables.tf +0 -73
- data/tpl/gcp/README.md +0 -54
- data/tpl/gcp/bin/base/bootstrap.sh +0 -35
- data/tpl/gcp/bin/base/cleanup.sh.tt +0 -20
- data/tpl/gcp/bin/base/set-env.sh.tt +0 -10
- data/tpl/gcp/bin/base/setup-tunnel.sh.tt +0 -13
- data/tpl/gcp/bin/bosh-install.sh.tt +0 -22
- data/tpl/gcp/bin/concourse-deploy.sh.tt +0 -14
- data/tpl/gcp/bin/ingress-deploy.sh.tt +0 -7
- data/tpl/gcp/bin/ingress-update.sh.tt +0 -7
- data/tpl/gcp/bin/oauth-deploy.sh.tt +0 -19
- data/tpl/gcp/bin/prometheus-deploy.sh.tt +0 -23
- data/tpl/gcp/bin/vault-deploy.sh.tt +0 -10
- data/tpl/gcp/bosh-vars.yml.erb +0 -9
- data/tpl/gcp/config/oauth.yml +0 -59
- data/tpl/gcp/deployments/bosh/bosh.yml +0 -144
- data/tpl/gcp/deployments/bosh/cloud-config.yml.tt +0 -73
- data/tpl/gcp/deployments/bosh/cpi.yml +0 -69
- data/tpl/gcp/deployments/bosh/jumpbox-user.yml +0 -27
- data/tpl/gcp/deployments/concourse/concourse.yml.tt +0 -104
- data/tpl/gcp/deployments/concourse/test/test-credentials.yml +0 -3
- data/tpl/gcp/deployments/concourse/test/test-pipeline.yml +0 -24
- data/tpl/gcp/deployments/ingress/ingress.yml.erb +0 -111
- data/tpl/gcp/deployments/oauth/oauth.yml.tt +0 -95
- data/tpl/gcp/deployments/prometheus/monitor-bosh.yml +0 -518
- data/tpl/gcp/deployments/prometheus/monitor-kubernetes.yml +0 -30
- data/tpl/gcp/deployments/prometheus/prometheus.yml +0 -183
- data/tpl/gcp/deployments/vault/vault.yml.erb +0 -37
- data/tpl/gcp/docs/bosh.md +0 -36
- data/tpl/gcp/docs/concourse.md +0 -41
- data/tpl/gcp/docs/ingress.md +0 -12
- data/tpl/gcp/docs/oauth.md +0 -24
- data/tpl/gcp/docs/prometheus.md +0 -27
- data/tpl/gcp/docs/vault.md +0 -36
- data/tpl/gcp/terraform/gcs.tf.tt +0 -18
- data/tpl/gcp/terraform/main.tf +0 -70
- data/tpl/gcp/terraform/network.tf +0 -52
- data/tpl/gcp/terraform/outputs.tf +0 -7
- data/tpl/gcp/terraform/terraform.tfvars.tt +0 -15
- data/tpl/gcp/terraform/variables.tf +0 -37
- data/tpl/service/%output_path%/pipelines/tasks/helm-deploy.yml.tt +0 -22
- data/tpl/service/%output_path%/pipelines/tasks/run-master-tests.yml.tt +0 -12
- data/tpl/service/%output_path%/pipelines/tasks/run-pr-tests.yml.tt +0 -12
- data/tpl/skel/docs/index.md.tt +0 -0
- data/tpl/skel/docs/quickstart.md.tt +0 -0
|
@@ -1,35 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
# Apply Terraform IaC
|
|
6
|
-
pushd terraform
|
|
7
|
-
|
|
8
|
-
terraform init
|
|
9
|
-
terraform apply
|
|
10
|
-
|
|
11
|
-
popd
|
|
12
|
-
|
|
13
|
-
# Set up an SSH tunnel to Bastion
|
|
14
|
-
. bin/setup-tunnel.sh
|
|
15
|
-
|
|
16
|
-
# Render BOSH manifest and related files
|
|
17
|
-
kite render manifest bosh --cloud gcp
|
|
18
|
-
|
|
19
|
-
# Deploy BOSH Director
|
|
20
|
-
./bin/bosh-install.sh
|
|
21
|
-
|
|
22
|
-
# Set the needed environment variables
|
|
23
|
-
. bin/set-env.sh
|
|
24
|
-
|
|
25
|
-
# Render Vault manifest and related files
|
|
26
|
-
kite render manifest vault --cloud gcp
|
|
27
|
-
|
|
28
|
-
# Deploy Vault
|
|
29
|
-
./bin/vault-deploy.sh
|
|
30
|
-
|
|
31
|
-
# Render Concourse manifest
|
|
32
|
-
kite render manifest concourse --cloud gcp
|
|
33
|
-
|
|
34
|
-
# Deploy Concourse
|
|
35
|
-
./bin/concourse-deploy.sh
|
|
@@ -1,20 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
# Remove existing BOSH deployments
|
|
4
|
-
bosh -e <%= @values['bosh']['name'] %> -d vault deld
|
|
5
|
-
|
|
6
|
-
# Destroy BOSH director
|
|
7
|
-
bosh delete-env deployments/bosh/bosh.yml \
|
|
8
|
-
--state=config/state.json \
|
|
9
|
-
--vars-store=config/creds.yml \
|
|
10
|
-
--vars-file=config/bosh-vars.yml \
|
|
11
|
-
--var-file gcp_credentials_json=<%= @values['gcp']['service_account'] %> \
|
|
12
|
-
-v tags='[platform-internal, no-ip]' \
|
|
13
|
-
-o deployments/bosh/cpi.yml \
|
|
14
|
-
-o deployments/bosh/jumpbox-user.yml
|
|
15
|
-
|
|
16
|
-
# Destroy Terraform-generated infrastructure
|
|
17
|
-
pushd terraform && terraform destroy && popd
|
|
18
|
-
|
|
19
|
-
# Remove files generated by kite
|
|
20
|
-
rm -rf terraform deployments docs config/{creds.yml,bosh_vars.yml,jumpbox.key} bin/*.sh
|
|
@@ -1,10 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
pushd terraform
|
|
4
|
-
BASTION_IP="$(terraform output bastion_ip)"
|
|
5
|
-
popd
|
|
6
|
-
|
|
7
|
-
export BASTION_IP
|
|
8
|
-
export BOSH_ALL_PROXY=socks5://localhost:5000
|
|
9
|
-
export BOSH_CLIENT=admin
|
|
10
|
-
export BOSH_CLIENT_SECRET=`bosh int ./config/creds.yml --path /admin_password`
|
|
@@ -1,13 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
pushd terraform
|
|
4
|
-
BASTION_IP="$(terraform output bastion_ip)"
|
|
5
|
-
popd
|
|
6
|
-
|
|
7
|
-
if [[ -z "${BASTION_IP}" ]]; then
|
|
8
|
-
echo "Something goes wrong, please check terraform environement" 1>&2
|
|
9
|
-
false
|
|
10
|
-
else
|
|
11
|
-
ssh -D 5000 -fNC kite@${BASTION_IP} -i <%= @values['kite']['private_key_path'] %>
|
|
12
|
-
export BOSH_ALL_PROXY=socks5://localhost:5000
|
|
13
|
-
fi
|
|
@@ -1,22 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
bosh create-env deployments/bosh/bosh.yml \
|
|
6
|
-
--state=config/state.json \
|
|
7
|
-
--vars-store=config/creds.yml \
|
|
8
|
-
--vars-file=config/bosh-vars.yml \
|
|
9
|
-
--var-file gcp_credentials_json=<%= @values['gcp']['service_account'] %> \
|
|
10
|
-
-v tags='[platform-internal, no-ip]' \
|
|
11
|
-
-o deployments/bosh/cpi.yml \
|
|
12
|
-
-o deployments/bosh/jumpbox-user.yml
|
|
13
|
-
|
|
14
|
-
bosh alias-env <%= @values['bosh']['name'] %> -e <%= @values['bosh']['static_ip'] %> --ca-cert \
|
|
15
|
-
<(bosh int ./config/creds.yml --path /director_ssl/ca)
|
|
16
|
-
|
|
17
|
-
echo "Please run"
|
|
18
|
-
echo bosh -e <%= @values['bosh']['name'] %> ucc deployments/bosh/cloud-config.yml
|
|
19
|
-
|
|
20
|
-
# Get jumpbox user key
|
|
21
|
-
bosh int config/creds.yml --path /jumpbox_ssh/private_key > config/jumpbox.key
|
|
22
|
-
chmod 600 config/jumpbox.key
|
|
@@ -1,14 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
# Upload necessary stemcells and releases
|
|
6
|
-
bosh -e <%= @values['bosh']['name'] %> upload-stemcell https://bosh.io/d/stemcells/bosh-google-kvm-ubuntu-trusty-go_agent
|
|
7
|
-
bosh -e <%= @values['bosh']['name'] %> upload-release https://github.com/concourse/concourse/releases/download/v3.4.1/concourse-3.4.1.tgz
|
|
8
|
-
bosh -e <%= @values['bosh']['name'] %> upload-release https://github.com/concourse/concourse/releases/download/v3.4.1/garden-runc-1.6.0.tgz
|
|
9
|
-
|
|
10
|
-
# Deploy Concourse
|
|
11
|
-
bosh -e <%= @values['bosh']['name'] %> -d concourse \
|
|
12
|
-
deploy deployments/concourse/concourse.yml \
|
|
13
|
-
-v vault_token=$1 \
|
|
14
|
-
--vars-store config/creds.yml && ./bin/ingress-update.sh
|
|
@@ -1,7 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
bosh -e <%= @values['bosh']['name'] %> upload-release https://github.com/cloudfoundry-community/nginx-release/releases/download/v1.12.1/nginx-1.12.1.tgz
|
|
6
|
-
|
|
7
|
-
bosh -e <%= @values['bosh']['name'] %> -d ingress deploy deployments/ingress/ingress.yml
|
|
@@ -1,19 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
# Upload necessary stemcells and releases
|
|
6
|
-
bosh -e <%= @values['bosh']['name'] %> upload-stemcell \
|
|
7
|
-
https://bosh.io/d/stemcells/bosh-google-kvm-ubuntu-trusty-go_agent \
|
|
8
|
-
--skip-if-exists
|
|
9
|
-
|
|
10
|
-
bosh -e <%= @values['bosh']['name'] %> upload-release \
|
|
11
|
-
https://bosh.io/d/github.com/cloudfoundry/uaa-release
|
|
12
|
-
|
|
13
|
-
# Deploy Concourse
|
|
14
|
-
bosh -e <%= @values['bosh']['name'] %> -d oauth deploy \
|
|
15
|
-
deployments/oauth/oauth.yml \
|
|
16
|
-
--vars-store config/creds.yml \
|
|
17
|
-
-o config/oauth.yml \
|
|
18
|
-
&& ./bin/ingress-update.sh
|
|
19
|
-
|
|
@@ -1,23 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
# Upload necessary stemcells and releases
|
|
6
|
-
bosh -e <%= @values['bosh']['name'] %> upload-stemcell https://s3.amazonaws.com/bosh-core-stemcells/google/bosh-stemcell-3445.7-google-kvm-ubuntu-trusty-go_agent.tgz
|
|
7
|
-
|
|
8
|
-
# Extract BOSH Director's SSL certificate
|
|
9
|
-
bosh int ./config/creds.yml --path /director_ssl/certificate > bosh.ca
|
|
10
|
-
|
|
11
|
-
# Deploy Prometheus
|
|
12
|
-
bosh -e <%= @values['bosh']['name'] %> -d prometheus \
|
|
13
|
-
deploy deployments/prometheus/prometheus.yml \
|
|
14
|
-
--vars-store config/creds.yml \
|
|
15
|
-
-o deployments/prometheus/monitor-kubernetes.yml \
|
|
16
|
-
--vars-file config/bosh-vars.yml \
|
|
17
|
-
--var-file kubernetes_kubeconfig=<%= @values['k8s']['config_path'] %> \
|
|
18
|
-
-o deployments/prometheus/monitor-bosh.yml \
|
|
19
|
-
-v bosh_url=<%= @values['bosh']['static_ip'] %> \
|
|
20
|
-
-v bosh_username=admin \
|
|
21
|
-
-v bosh_password=`bosh int ./config/creds.yml --path /admin_password` \
|
|
22
|
-
--var-file bosh_ca_cert=bosh.ca \
|
|
23
|
-
-v metrics_environment=kite && ingress-update.sh
|
|
@@ -1,10 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env bash
|
|
2
|
-
|
|
3
|
-
set -xe
|
|
4
|
-
|
|
5
|
-
# Upload necessary stemcells and releases
|
|
6
|
-
bosh -e <%= @values['bosh']['name'] %> upload-stemcell https://s3.amazonaws.com/bosh-core-stemcells/google/bosh-stemcell-3445.7-google-kvm-ubuntu-trusty-go_agent.tgz
|
|
7
|
-
bosh -e <%= @values['bosh']['name'] %> upload-release https://bosh.io/d/github.com/cloudfoundry-community/vault-boshrelease
|
|
8
|
-
|
|
9
|
-
# Deploy Concourse
|
|
10
|
-
bosh -e <%= @values['bosh']['name'] %> -d vault deploy deployments/vault/vault.yml && ./bin/ingress-update.sh
|
data/tpl/gcp/bosh-vars.yml.erb
DELETED
|
@@ -1,9 +0,0 @@
|
|
|
1
|
-
director_name: <%= @values['bosh']['name'] %>
|
|
2
|
-
internal_cidr: <%= @values['gcp']['subnet_cidr'] %>
|
|
3
|
-
internal_gw: <%= @values['gcp']['internal_gw'] %>
|
|
4
|
-
internal_ip: <%= @values['bosh']['static_ip'] %>
|
|
5
|
-
project_id: <%= @values['gcp']['project'] %>
|
|
6
|
-
zone: <%= @values['gcp']['zone'] %>
|
|
7
|
-
network: <%= @values['gcp']['vpc_name'] %>
|
|
8
|
-
subnetwork: <%= @values['gcp']['subnet_name'] %>
|
|
9
|
-
kubernetes_apiserver: <%= @values['k8s']['api_server_address'] %>
|
data/tpl/gcp/config/oauth.yml
DELETED
|
@@ -1,59 +0,0 @@
|
|
|
1
|
-
# Groups
|
|
2
|
-
- type: replace
|
|
3
|
-
path: /instance_groups/name=uaa/jobs/name=uaa/properties/uaa/scim?/groups?
|
|
4
|
-
value: { }
|
|
5
|
-
# sysops: For automation stuff
|
|
6
|
-
|
|
7
|
-
# Users
|
|
8
|
-
- type: replace
|
|
9
|
-
path: /instance_groups/name=uaa/jobs/name=uaa/properties/uaa/scim?/users?
|
|
10
|
-
value: [ ]
|
|
11
|
-
# - email: sysops@example.com
|
|
12
|
-
# password: changeme
|
|
13
|
-
# name: sysops
|
|
14
|
-
# firstName: Sys
|
|
15
|
-
# lastName: Ops
|
|
16
|
-
# origin: uaa
|
|
17
|
-
# groups:
|
|
18
|
-
# - sysops
|
|
19
|
-
|
|
20
|
-
# OAuth clients
|
|
21
|
-
- type: replace
|
|
22
|
-
path: /instance_groups/name=uaa/jobs/name=uaa/properties/uaa/clients?
|
|
23
|
-
value: { }
|
|
24
|
-
# some-app:
|
|
25
|
-
# app-icon: 0000000000000000000000000000000000000000000000000000000000000000
|
|
26
|
-
# app-launch-url: http://myapppage.com
|
|
27
|
-
# authorities: test_resource.test_action
|
|
28
|
-
# authorized-grant-types: authorization_code,client_credentials,refresh_token
|
|
29
|
-
# autoapprove:
|
|
30
|
-
# - test_resource.test_action
|
|
31
|
-
# - test_resource.other_action
|
|
32
|
-
# id: app
|
|
33
|
-
# override: true
|
|
34
|
-
# redirect-uri: http://login.example.com
|
|
35
|
-
# scope: test_resource.test_action,test_resource.other_action
|
|
36
|
-
# secret: app-secret
|
|
37
|
-
# show-on-homepage: true
|
|
38
|
-
|
|
39
|
-
# UAA theming
|
|
40
|
-
- type: replace
|
|
41
|
-
path: /instance_groups/name=uaa/jobs/name=uaa/properties/login/branding?
|
|
42
|
-
value: { }
|
|
43
|
-
# banner:
|
|
44
|
-
# backgroundColor: "#eeeeee"
|
|
45
|
-
# link: "https://example.com/logo.png"
|
|
46
|
-
# text: "Hello!"
|
|
47
|
-
# textColor: "#333333"
|
|
48
|
-
# company_name: "Company Name"
|
|
49
|
-
# footer_legal_text: "© 2017. Company Name. All right reserved."
|
|
50
|
-
|
|
51
|
-
# Email notifications
|
|
52
|
-
- type: replace
|
|
53
|
-
path: /instance_groups/name=uaa/jobs/name=uaa/properties/login/smtp?
|
|
54
|
-
value: { }
|
|
55
|
-
# auth: false
|
|
56
|
-
# from_address: hello@example.com
|
|
57
|
-
# host: localhost
|
|
58
|
-
# port: 2525
|
|
59
|
-
# starttls: false
|
|
@@ -1,144 +0,0 @@
|
|
|
1
|
-
---
|
|
2
|
-
name: bosh
|
|
3
|
-
|
|
4
|
-
releases:
|
|
5
|
-
- name: bosh
|
|
6
|
-
version: "263"
|
|
7
|
-
url: https://s3.amazonaws.com/bosh-compiled-release-tarballs/bosh-263-ubuntu-trusty-3445.7-20170901-012146-902840377-20170901012153.tgz?versionId=89a.ZxB3Jc_gl6s4YESlL41xNOfoJKrO
|
|
8
|
-
sha1: cc71c2ee6992071b1e1f6ae9f2119c03a42521c5
|
|
9
|
-
|
|
10
|
-
resource_pools:
|
|
11
|
-
- name: vms
|
|
12
|
-
network: default
|
|
13
|
-
env:
|
|
14
|
-
bosh:
|
|
15
|
-
password: '*'
|
|
16
|
-
mbus:
|
|
17
|
-
cert: ((mbus_bootstrap_ssl))
|
|
18
|
-
|
|
19
|
-
disk_pools:
|
|
20
|
-
- name: disks
|
|
21
|
-
disk_size: 32_768
|
|
22
|
-
|
|
23
|
-
networks:
|
|
24
|
-
- name: default
|
|
25
|
-
type: manual
|
|
26
|
-
subnets:
|
|
27
|
-
- range: ((internal_cidr))
|
|
28
|
-
gateway: ((internal_gw))
|
|
29
|
-
static: [((internal_ip))]
|
|
30
|
-
dns: [8.8.8.8]
|
|
31
|
-
|
|
32
|
-
instance_groups:
|
|
33
|
-
- name: bosh
|
|
34
|
-
instances: 1
|
|
35
|
-
jobs:
|
|
36
|
-
- {name: nats, release: bosh}
|
|
37
|
-
- {name: postgres-9.4, release: bosh}
|
|
38
|
-
- {name: blobstore, release: bosh}
|
|
39
|
-
- {name: director, release: bosh}
|
|
40
|
-
- {name: health_monitor, release: bosh}
|
|
41
|
-
resource_pool: vms
|
|
42
|
-
persistent_disk_pool: disks
|
|
43
|
-
networks:
|
|
44
|
-
- name: default
|
|
45
|
-
static_ips: [((internal_ip))]
|
|
46
|
-
properties:
|
|
47
|
-
nats:
|
|
48
|
-
address: 127.0.0.1
|
|
49
|
-
user: nats
|
|
50
|
-
password: ((nats_password))
|
|
51
|
-
postgres: &db
|
|
52
|
-
listen_address: 127.0.0.1
|
|
53
|
-
host: 127.0.0.1
|
|
54
|
-
user: postgres
|
|
55
|
-
password: ((postgres_password))
|
|
56
|
-
database: bosh
|
|
57
|
-
adapter: postgres
|
|
58
|
-
blobstore:
|
|
59
|
-
address: ((internal_ip))
|
|
60
|
-
port: 25250
|
|
61
|
-
provider: dav
|
|
62
|
-
director:
|
|
63
|
-
user: director
|
|
64
|
-
password: ((blobstore_director_password))
|
|
65
|
-
agent:
|
|
66
|
-
user: agent
|
|
67
|
-
password: ((blobstore_agent_password))
|
|
68
|
-
director:
|
|
69
|
-
address: 127.0.0.1
|
|
70
|
-
name: ((director_name))
|
|
71
|
-
db: *db
|
|
72
|
-
flush_arp: true
|
|
73
|
-
enable_post_deploy: true
|
|
74
|
-
generate_vm_passwords: true
|
|
75
|
-
enable_dedicated_status_worker: true
|
|
76
|
-
enable_nats_delivered_templates: true
|
|
77
|
-
workers: 4
|
|
78
|
-
events:
|
|
79
|
-
record_events: true
|
|
80
|
-
ssl:
|
|
81
|
-
key: ((director_ssl.private_key))
|
|
82
|
-
cert: ((director_ssl.certificate))
|
|
83
|
-
user_management:
|
|
84
|
-
provider: local
|
|
85
|
-
local:
|
|
86
|
-
users:
|
|
87
|
-
- name: admin
|
|
88
|
-
password: ((admin_password))
|
|
89
|
-
- name: hm
|
|
90
|
-
password: ((hm_password))
|
|
91
|
-
hm:
|
|
92
|
-
director_account:
|
|
93
|
-
user: hm
|
|
94
|
-
password: ((hm_password))
|
|
95
|
-
ca_cert: ((director_ssl.ca))
|
|
96
|
-
resurrector_enabled: true
|
|
97
|
-
ntp: &ntp
|
|
98
|
-
- time1.google.com
|
|
99
|
-
- time2.google.com
|
|
100
|
-
- time3.google.com
|
|
101
|
-
- time4.google.com
|
|
102
|
-
agent:
|
|
103
|
-
mbus: nats://nats:((nats_password))@((internal_ip)):4222
|
|
104
|
-
|
|
105
|
-
cloud_provider:
|
|
106
|
-
mbus: https://mbus:((mbus_bootstrap_password))@((internal_ip)):6868
|
|
107
|
-
cert: ((mbus_bootstrap_ssl))
|
|
108
|
-
properties:
|
|
109
|
-
agent: {mbus: "https://mbus:((mbus_bootstrap_password))@0.0.0.0:6868"}
|
|
110
|
-
blobstore: {provider: local, path: /var/vcap/micro_bosh/data/cache}
|
|
111
|
-
ntp: *ntp
|
|
112
|
-
|
|
113
|
-
variables:
|
|
114
|
-
- name: admin_password
|
|
115
|
-
type: password
|
|
116
|
-
- name: blobstore_director_password
|
|
117
|
-
type: password
|
|
118
|
-
- name: blobstore_agent_password
|
|
119
|
-
type: password
|
|
120
|
-
- name: hm_password
|
|
121
|
-
type: password
|
|
122
|
-
- name: mbus_bootstrap_password
|
|
123
|
-
type: password
|
|
124
|
-
- name: nats_password
|
|
125
|
-
type: password
|
|
126
|
-
- name: postgres_password
|
|
127
|
-
type: password
|
|
128
|
-
- name: default_ca
|
|
129
|
-
type: certificate
|
|
130
|
-
options:
|
|
131
|
-
is_ca: true
|
|
132
|
-
common_name: ca
|
|
133
|
-
- name: mbus_bootstrap_ssl
|
|
134
|
-
type: certificate
|
|
135
|
-
options:
|
|
136
|
-
ca: default_ca
|
|
137
|
-
common_name: ((internal_ip))
|
|
138
|
-
alternative_names: [((internal_ip))]
|
|
139
|
-
- name: director_ssl
|
|
140
|
-
type: certificate
|
|
141
|
-
options:
|
|
142
|
-
ca: default_ca
|
|
143
|
-
common_name: ((internal_ip))
|
|
144
|
-
alternative_names: [((internal_ip))]
|
|
@@ -1,73 +0,0 @@
|
|
|
1
|
-
azs:
|
|
2
|
-
- name: z1
|
|
3
|
-
cloud_properties:
|
|
4
|
-
zone: <%= @values['gcp']['zone'] %>
|
|
5
|
-
|
|
6
|
-
vm_types:
|
|
7
|
-
- name: common
|
|
8
|
-
cloud_properties:
|
|
9
|
-
machine_type: n1-standard-2
|
|
10
|
-
root_disk_size_gb: 20
|
|
11
|
-
root_disk_type: pd-ssd
|
|
12
|
-
tags:
|
|
13
|
-
- no-ip
|
|
14
|
-
|
|
15
|
-
- name: ingress-tiny
|
|
16
|
-
cloud_properties:
|
|
17
|
-
machine_type: g1-small
|
|
18
|
-
root_disk_size_gb: 20
|
|
19
|
-
root_disk_type: pd-ssd
|
|
20
|
-
tags:
|
|
21
|
-
- http-server
|
|
22
|
-
- https-server
|
|
23
|
-
|
|
24
|
-
- name: worker
|
|
25
|
-
cloud_properties:
|
|
26
|
-
machine_type: n1-standard-2
|
|
27
|
-
root_disk_size_gb: 100
|
|
28
|
-
root_disk_type: pd-ssd
|
|
29
|
-
tags:
|
|
30
|
-
- no-ip
|
|
31
|
-
|
|
32
|
-
# vm_extensions:
|
|
33
|
-
# - name: concourse-lb
|
|
34
|
-
# cloud_properties:
|
|
35
|
-
# target_pool: concourse-target-pool
|
|
36
|
-
|
|
37
|
-
compilation:
|
|
38
|
-
workers: 2
|
|
39
|
-
network: public
|
|
40
|
-
reuse_compilation_vms: true
|
|
41
|
-
az: z1
|
|
42
|
-
cloud_properties:
|
|
43
|
-
machine_type: n1-standard-2
|
|
44
|
-
root_disk_size_gb: 100
|
|
45
|
-
root_disk_type: pd-ssd
|
|
46
|
-
preemptible: true
|
|
47
|
-
tags:
|
|
48
|
-
- no-ip
|
|
49
|
-
|
|
50
|
-
networks:
|
|
51
|
-
- name: public
|
|
52
|
-
type: manual
|
|
53
|
-
subnets:
|
|
54
|
-
- az: z1
|
|
55
|
-
range: <%= @values['gcp']['subnet_cidr'] %>
|
|
56
|
-
gateway: <%= @values['gcp']['internal_gw'] %>
|
|
57
|
-
reserved: [<%= ip_range(@private_subnet, (1..10)) %>] # Reserved range for the gateway, BOSH Director etc
|
|
58
|
-
static: [<%= ip_range(@private_subnet, (11..13)) %>] # Static IP range for Vault, Concourse web panel, nginx etc
|
|
59
|
-
cloud_properties:
|
|
60
|
-
network_name: <%= @values['gcp']['vpc_name'] %>
|
|
61
|
-
subnetwork_name: <%= @values['gcp']['subnet_name'] %>
|
|
62
|
-
ephemeral_external_ip: false
|
|
63
|
-
tags:
|
|
64
|
-
- platform-internal
|
|
65
|
-
- concourse-public
|
|
66
|
-
- concourse-internal
|
|
67
|
-
|
|
68
|
-
- name: vip
|
|
69
|
-
type: vip
|
|
70
|
-
|
|
71
|
-
disk_types:
|
|
72
|
-
- name: database
|
|
73
|
-
disk_size: 10240
|