Ian Fijolek
7658cfd0fe
Unsure of the best way to setup bootstrapping the system. Do I run an ansible playbook to generate certificates offline and then bootstrap with that? Can I bring it online after and schedule with Nomad?
44 lines
1.1 KiB
YAML
44 lines
1.1 KiB
YAML
---
|
|
all:
|
|
children:
|
|
servers:
|
|
hosts:
|
|
nomad0.thefij:
|
|
# consul_node_role: bootstrap
|
|
nomad_node_role: both
|
|
nomad_host_volumes:
|
|
- name: mysql-data
|
|
path: /srv/volumes/mysql-data
|
|
owner: "root"
|
|
group: "bin"
|
|
mode: "0755"
|
|
read_only: false
|
|
- name: step-ca-data
|
|
path: /srv/volumes/step-ca-data
|
|
owner: "root"
|
|
group: "bin"
|
|
mode: "0700"
|
|
read_only: false
|
|
# consul_auto_encrypt:
|
|
# enabled: true
|
|
# dns_san: ["services.thefij"]
|
|
# ip_san: ["192.168.2.41", "127.0.0.1"]
|
|
# motionpi.thefij: {}
|
|
nomad1.thefij:
|
|
nomad_node_class: ingress
|
|
nomad_node_role: both
|
|
|
|
consul_instances:
|
|
children:
|
|
servers: {}
|
|
nomad_instances:
|
|
children:
|
|
servers: {}
|
|
vault_instances:
|
|
children:
|
|
servers: {}
|
|
ca_servers:
|
|
hosts:
|
|
nomad0.thefij:
|
|
step_path: /srv/volumes/step-ca-data
|