Permalink
Cannot retrieve contributors at this time
Name already in use
A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
comanage-registry-training-ansible/group_vars/all.yml
Go to fileThis commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
82 lines (67 sloc)
3.1 KB
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
# This encrypted version of the training password is created by running | |
# | |
# ansible-vault encrypt_string 'THE_PASSWORD' --name 'comanage_training_password' | |
comanage_training_password: !vault | | |
$ANSIBLE_VAULT;1.1;AES256 | |
32313732343132636531663538353439663964333130616633663761313336636663323938396566 | |
6539353462616330626235646530626662333630613635340a323230333133326232326630396263 | |
64383336316234656364666630396362313563346364383735303131323266326465623531373637 | |
3138373937323761360a323138383436353439633031306438373766303763643630643263356530 | |
3638 | |
# It should not be necessary to change the password salt. | |
comanage_training_password_salt: !vault | | |
$ANSIBLE_VAULT;1.1;AES256 | |
39623864653434666530376532373536616136303833383862663631333439393833656436353661 | |
3765313563653037623737373563326235646439633635640a643165313437343966376661373862 | |
61363564353632383964393439656565326161326338323131373464313736373761666164633837 | |
3062623335653037650a383538633936386537333865306230323162656434326634323139396461 | |
64663664306265623839363736343361313635313638633863363131323635333466 | |
comanage_training_region: "us-west-2" | |
r53_hosted_zone: incommon.training | |
r53_dns_domain: "comanage.{{ r53_hosted_zone }}" | |
# key for ssh-ing into training nodes | |
training_node_ssh_key_name: "AWS-Trng-1.pem" | |
# The full ARN for an X.509 wildcard certificate provisioned by the | |
# AWS Certificate Manager for domain *.comanage.incommong.training | |
aws_cert_manager_cert_arn: "arn:aws:acm:us-west-2:626413038627:certificate/162508f9-f5e4-479d-bdb8-f614d8a7ccb0" | |
vpc_cidr_block: 192.168.0.0/16 | |
# We need to have at least two private subnets across two availability | |
# zones. The application load balancer requires it. | |
vpc_availability_zone: | |
a: | |
public_subnet: 192.168.10.0/24 | |
private_subnet: 192.168.110.0/24 | |
bastion_ip: 192.168.10.10 | |
bastion_hostname: ssh | |
b: | |
public_subnet: 192.168.11.0/24 | |
private_subnet: 192.168.111.0/24 | |
bastion_ip: 192.168.11.10 | |
bastion_hostname: ssh-b | |
ssh_bastion_instance_type: t2.nano | |
# Most current Debian AMD x86_64, see https://wiki.debian.org/Cloud/AmazonEC2Image/ | |
ssh_bastion_ami_id: ami-07fd151b9eb3b7264 | |
ssh_bastion_user: admin | |
ssh_bastion_device_name: /dev/xvda | |
ssh_bastion_volume_type: gp2 | |
ssh_bastion_volume_size: 10 | |
idp_node_instance_type: t2.small | |
# Most current Debian AMD x86_64, see https://wiki.debian.org/Cloud/AmazonEC2Image/ | |
idp_node_ami_id: ami-07fd151b9eb3b7264 | |
idp_node_user: admin | |
idp_node_device_name: /dev/xvda | |
idp_node_volume_type: gp2 | |
idp_node_volume_size: 20 | |
training_node_count: 2 | |
training_node_instance_type: t2.small | |
# Most current Debian AMD x86_64, see https://wiki.debian.org/Cloud/AmazonEC2Image/ | |
training_node_ami_id: ami-07fd151b9eb3b7264 | |
training_node_user: admin | |
training_node_device_name: /dev/xvda | |
training_node_volume_type: gp2 | |
training_node_volume_size: 20 | |
# Docker version | |
docker_ce_package_version: "5:20.10.8~3-0~debian-bullseye" | |
docker_ce_cli_package_version: "5:20.10.8~3-0~debian-bullseye" | |
containerd_io_package_version: "1.4.9-1" | |