-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathenvironment_config_full_init.yaml
353 lines (324 loc) · 8.98 KB
/
environment_config_full_init.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
attributes:
metadata:
mariadb_root_password:
generator: "password"
mariadb_check_password:
generator: "password"
# HAProxy
ha_puppet_options:
description: "The options for haproxy of service Puppet Master"
label: "Puppet HA options"
type: "text"
value: "tcpka"
weight: 50
ha_mariadb_options:
description: "The options for haproxy of service Mariadb"
label: "Mariadb HA options"
type: "text"
value: "'tcplog', 'clitcpka', 'srvtcpka'"
weight: 60
lcm_ha_foreman_443_options:
description: "The options for haproxy of service Foreman on 443"
label: "Foreman on 443 HA options"
type: "text"
value: "'httplog', 'httpclose'"
weight: 70
lcm_ha_foreman_8443_options:
description: "The options for haproxy of service Foreman on 8443"
label: "Foreman on 8443 HA options"
type: "text"
value: "'httplog', 'httpclose'"
weight: 72
lcm_ha_foreman_80_options:
description: "The options for haproxy of service Foreman on 80"
label: "Foreman on 80 HA options"
type: "text"
value: "'httplog', 'httpclose'"
weight: 74
lcm_ha_middleware_options:
description: "The options for haproxy of service Middleware"
label: "Middleware HA options"
type: "text"
value: "'httplog', 'httpclose'"
weight: 80
# Keepalived
keepalived_cidr:
value: '10.255.0.0/16'
label: 'Keepalived CIDR'
description: 'The CIDR for keepalived daemons. It would be bridged into management network and must not interfere with management CIDR'
weight: 30
type: "text"
regex:
source: '^(?:(?:[0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}(?:[0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\/([1-9]|[1-2]\d|3[0-2])$'
error: "Invalid CIDR"
public_vip_enabled:
description: "Enable public vip reservation for LCM webui"
label: "Enable public vip reservation for LCM webui"
type: "checkbox"
value: false
weight: 32
########################## Fuel Puppetmaster plugin params: https://gist.github.com/sbrimhall/79997bd90c7e5eca9e2f ###########################################
#foreman:
foreman_user:
value: 'admin'
label: 'Foreman username'
type: "text"
description:
weight: 510
regex:
source: &letdig_regex '^[A-Za-z0-9]*$'
error: "Valid option is a sequence of letters and digits"
foreman_password:
value: 'changeme'
label: 'Foreman password'
type: "text"
description:
weight: 520
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters"
deploy_user:
value: 'deploy_user'
label: 'Operator username'
type: "text"
description:
weight: 530
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters and underscore"
restrictions:
- condition: "true"
action: "disable"
deploy_password:
value: 'deploy_password'
label: 'Operator password'
type: "text"
description:
weight: 540
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters and digits"
restrictions:
- condition: "true"
action: "disable"
oauth_consumer_key:
value: 'WvZpMupBEGZPj6RXXZBprvUKg6kSNM5e'
label: 'Oauth consumer key'
type: "text"
description: |
Oauth key and secret values fom your Foreman instance
You can retrieve them later from
Foreman Administer > Settings > Auth
weight: 550
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters and digits"
oauth_consumer_secret:
value: 'EiwMYSN78wKxQETrqB7rhCWBn9HcXV3x'
label: 'Oauth consumer secret'
type: "text"
description:
weight: 560
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters and digits"
own_ssl_certificate: # Checkbox
description:
label: "Use custom certificates on LCM nodes."
type: "checkbox"
value: false
weight: 565
ssl_ca_location:
value: ""
label: "SSL CA location"
type: "text"
description: |
Provide a path to custom SSL CA.
Ex: /var/lib/puppet/ssl/certs/ca.pem
weight: 570
restrictions:
- condition: "settings:fuel-plugin-lcm.own_ssl_certificate.value != true"
action: "disable"
regex:
source: &file_path '^(/[-A-Za-z0-9_./]*|^)$'
error: "Non valid option. Wrong symbol."
ssl_cert_location:
value: ""
label: "SSL CERT location"
type: "text"
description: |
Provide a path to custom SSL CERT.
Ex: /var/lib/puppet/ssl/certs/fuel.domain.tld.pem
weight: 580
restrictions:
- condition: "settings:fuel-plugin-lcm.own_ssl_certificate.value != true"
action: "disable"
regex:
source: *file_path
error: "Non valid option. Wrong symbol."
ssl_crl_location:
value: ""
label: "SSL CRL location"
type: "text"
description: |
Provide a path to custom SSL CRL.
Ex.: /var/lib/puppet/ssl/crl.pem
weight: 590
restrictions:
- condition: "settings:fuel-plugin-lcm.own_ssl_certificate.value != true"
action: "disable"
regex:
source: *file_path
error: "Non valid option. Wrong symbol."
db_user:
value: 'foreman'
label: "DB username"
type: "text"
description: "Database 'production' user"
weight: 600
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters"
db_pass:
value: 'changeme'
label: "DB password"
type: "text"
description: "Database 'production' password"
weight: 610
regex:
source: *letdig_regex
error: "Valid option is a sequence of letters"
#foreman_proxy:
tftp: # (boolean to turn on tftp or not)
description:
label: "Use foreman TFTP"
type: "checkbox"
value: false
weight: 620
dhcp: # (boolean for dhcp)
description:
label: "Use foreman DHCP"
type: "checkbox"
value: false
weight: 630
dns: # (boolean for dns)
description:
label: "Use foreman DNS"
type: "checkbox"
value: false
weight: 640
bmc: # (boolean for IPMI plugin)
description:
label: "Use foreman IPMI plugin"
type: "checkbox"
value: false
weight: 650
puppet_ssl_ca_location:
value: '/var/lib/puppet/ssl/certs/ca.pem'
label: "puppet ssl ca location"
type: "text"
description:
weight: 660
regex:
source: '^/[-A-Za-z0-9_./]*$'
error: "Valid option is a sequence of letters"
puppet_ssl_cert:
value: '/var/lib/puppet/ssl/certs/node-7.domain.tld.pem'
label: "puppet ssl cert"
type: "text"
description:
weight: 670
regex:
source: '^/[-A-Za-z0-9_./]*$'
error: "Valid option is a sequence of letters"
puppet_ssl_key:
value: '/var/lib/puppet/ssl/private_keys/node-7.domain.tld.pem'
label: "puppet ssl key"
type: "text"
description:
weight: 680
regex:
source: '^/[-A-Za-z0-9_./]*$'
error: "Valid option is a sequence of letters"
foreman_base_url:
value: 'localhost'
label: "Foreman base url"
type: "text"
description:
weight: 690
regex:
source: '^[-A-Za-z0-9_./]*$'
error: "Valid option is a sequence of letters"
oauth_effective_user:
value: 'admin'
label: "Oauth effective user"
type: "text"
description:
weight: 700
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
# - oauth consumer key #Hide?
# - oauth consumer secret #Hide?
#puppet:
puppetmaster_fqdn:
value: 'STUB'
label: 'puppetmaster fqdn'
type: "text"
description:
weight: 885
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
ca_server_fqdn:
value: 'STUB'
label: 'ca server fqdn'
type: "text"
description:
weight: 886
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
foreman_url:
value: 'STUB'
label: 'foreman url'
type: "text"
description:
weight: 887
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
dns_alt_names: # (alternate names to allow to be valid for a cert. puppet,puppet1.fqdn,puppetca, etc)
value: 'STUB'
label: 'dns_alt_names'
type: "text"
description:
weight: 888
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
#r10k:
remote_repo: #(location of control repo)
value: 'STUB'
label: 'r10k remote repo'
type: "text"
description: 'location of control repo'
weight: 889
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
deploy_key: # (if not using https/oauth to clone repo)
value: 'STUB'
label: 'r10k deploy key'
type: "text"
description: 'if not using https/oauth to clone repo'
weight: 890
regex:
source: '^[A-Za-z]*$'
error: "Valid option is a sequence of letters"
#middleware:
# ssh_private_key:
# ssh_public_key:
# deploy_user:
# deploy_pass:
#