This repository has been archived by the owner on Jan 21, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 486
/
cf-stub.yml
192 lines (183 loc) · 4.82 KB
/
cf-stub.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
# The following line helps maintain current documentation at http://docs.cloudfoundry.org.
# code_snippet cf-stub-vsphere start
---
meta:
environment: ENVIRONMENT
director_uuid: DIRECTOR_UUID
networks:
- name: cf1
subnets:
- range: 10.85.9.0/24
gateway: 10.85.9.1
reserved:
- 10.85.9.2 - 10.85.9.100
- 10.85.9.200 - 10.85.9.210
dns:
- 10.87.8.10
- 10.87.8.11
static:
- 10.85.9.230 - 10.85.9.254
cloud_properties:
name: VSPHERE_NETWORK_NAME_1
- name: cf2
subnets:
- range: 10.85.10.0/24
gateway: 10.85.10.1
reserved:
- 10.85.10.2 - 10.85.10.100
- 10.85.10.200 - 10.85.10.210
dns:
- 10.87.8.10
- 10.87.8.11
static:
- 10.85.10.230 - 10.85.10.254
cloud_properties:
name: VSPHERE_NETWORK_NAME_2
properties:
system_domain: SYSTEM_DOMAIN
system_domain_organization: SYSTEM_DOMAIN_ORGANIZATION
app_domains:
- APP_DOMAIN
ssl:
skip_cert_verify: true
cc:
staging_upload_user: STAGING_UPLOAD_USER
staging_upload_password: STAGING_UPLOAD_PASSWORD
bulk_api_password: BULK_API_PASSWORD
db_encryption_key: DB_ENCRYPTION_KEY
tls_port: CC_MUTUAL_TLS_PORT
mutual_tls:
ca_cert: CC_MUTUAL_TLS_CA_CERT
public_cert: CC_MUTUAL_TLS_PUBLIC_CERT
private_key: CC_MUTUAL_TLS_PRIVATE_KEY
blobstore:
admin_users:
- username: blobstore-username
password: blobstore-password
secure_link:
secret: blobstore-secret
tls:
cert: BLOBSTORE_TLS_CERT
private_key: BLOBSTORE_PRIVATE_KEY
ca_cert: BLOBSTORE_CA_CERT
consul:
encrypt_keys:
- CONSUL_ENCRYPT_KEY
ca_cert: CONSUL_CA_CERT
server_cert: CONSUL_SERVER_CERT
server_key: CONSUL_SERVER_KEY
agent_cert: CONSUL_AGENT_CERT
agent_key: CONSUL_AGENT_KEY
etcd:
require_ssl: true
ca_cert: ETCD_CA_CERT
client_cert: ETCD_CLIENT_CERT
client_key: ETCD_CLIENT_KEY
peer_ca_cert: ETCD_PEER_CA_CERT
peer_cert: ETCD_PEER_CERT
peer_key: ETC_PEER_KEY
server_cert: ETCD_SERVER_CERT
server_key: ETCD_SERVER_KEY
loggregator:
tls:
ca_cert: LOGGREGATOR_CA_CERT
doppler:
cert: LOGGREGATOR_DOPPLER_CERT
key: LOGGREGATOR_DOPPLER_KEY
trafficcontroller:
cert: LOGGREGATOR_TRAFFICCONTROLLER_CERT
key: LOGGREGATOR_TRAFFICCONTROLLER_KEY
cc_trafficcontroller:
cert: LOGGREGATOR_TRAFFICCONTROLLER_CERT
key: LOGGREGATOR_TRAFFICCONTROLLER_KEY
metron:
cert: LOGGREGATOR_METRON_CERT
key: LOGGREGATOR_METRON_KEY
syslogdrainbinder:
cert: LOGGREGATOR_SYSLOGDRAINBINDER_CERT
key: LOGGREGATOR_SYSLOGDRAINBINDER_KEY
statsd_injector:
cert: LOGGREGATOR_STATSDINJECTOR_CERT
key: LOGGREGATOR_STATSDINJECTOR_KEY
loggregator_endpoint:
shared_secret: LOGGREGATOR_ENDPOINT_SHARED_SECRET
login:
protocol: http
saml:
serviceProviderKey: SERVICE_PROVIDER_PRIVATE_KEY
nats:
user: NATS_USER
password: NATS_PASSWORD
router:
status:
user: ROUTER_USER
password: ROUTER_PASSWORD
uaa:
admin:
client_secret: ADMIN_SECRET
ca_cert: UAA_CA_CERT
cc:
client_secret: CC_CLIENT_SECRET
clients:
cc_service_key_client:
secret: CC_SERVICE_KEY_CLIENT_SECRET
cc_routing:
secret: CC_ROUTING_SECRET
cloud_controller_username_lookup:
secret: CLOUD_CONTROLLER_USERNAME_LOOKUP_SECRET
doppler:
secret: DOPPLER_SECRET
gorouter:
secret: GOROUTER_SECRET
tcp_emitter:
secret: TCP-EMITTER-SECRET
tcp_router:
secret: TCP-ROUTER-SECRET
login:
secret: LOGIN_CLIENT_SECRET
notifications:
secret: NOTIFICATION_SECRET
cc-service-dashboards:
secret: CC_SERVICE_DASHBOARDS_SECRET
jwt:
verification_key: JWT_VERIFICATION_KEY
signing_key: JWT_SIGNING_KEY
scim:
users:
- name: admin
password: ADMIN_PASSWORD
groups:
- scim.write
- scim.read
- openid
- cloud_controller.admin
- doppler.firehose
sslCertificate: UAA_SERVER_CERT
sslPrivateKey: UAA_SERVER_KEY
ccdb:
roles:
- name: ccadmin
password: CCDB_PASSWORD
uaadb:
roles:
- name: uaaadmin
password: UAADB_PASSWORD
databases:
roles:
- name: ccadmin
password: CCDB_PASSWORD
- name: uaaadmin
password: UAADB_PASSWORD
jobs:
- name: ha_proxy_z1
properties:
ha_proxy:
ssl_pem: |
-----BEGIN RSA PRIVATE KEY-----
RSA_PRIVATE_KEY
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
CERTIFICATE
-----END CERTIFICATE-----
# code_snippet cf-stub-vsphere end
# The previous line helps maintain current documentation at http://docs.cloudfoundry.org.