cd7212453e
* Add etcd tls cipher suites * yamllint
44 lines
1.8 KiB
Django/Jinja
44 lines
1.8 KiB
Django/Jinja
ETCD_DATA_DIR={{ etcd_events_data_dir }}
|
|
ETCD_ADVERTISE_CLIENT_URLS={{ etcd_events_client_url }}
|
|
ETCD_INITIAL_ADVERTISE_PEER_URLS={{ etcd_events_peer_url }}
|
|
ETCD_INITIAL_CLUSTER_STATE={% if etcd_events_cluster_is_healthy.rc == 0 | bool %}existing{% else %}new{% endif %}
|
|
|
|
ETCD_METRICS={{ etcd_metrics }}
|
|
ETCD_LISTEN_CLIENT_URLS=https://{{ etcd_address }}:2381,https://127.0.0.1:2381
|
|
ETCD_ELECTION_TIMEOUT={{ etcd_election_timeout }}
|
|
ETCD_HEARTBEAT_INTERVAL={{ etcd_heartbeat_interval }}
|
|
ETCD_INITIAL_CLUSTER_TOKEN=k8s_events_etcd
|
|
ETCD_LISTEN_PEER_URLS=https://{{ etcd_address }}:2382
|
|
ETCD_NAME={{ etcd_member_name }}-events
|
|
ETCD_PROXY=off
|
|
ETCD_INITIAL_CLUSTER={{ etcd_events_peer_addresses }}
|
|
ETCD_AUTO_COMPACTION_RETENTION={{ etcd_compaction_retention }}
|
|
{% if etcd_snapshot_count is defined %}
|
|
ETCD_SNAPSHOT_COUNT={{ etcd_snapshot_count }}
|
|
{% endif %}
|
|
{% if etcd_quota_backend_bytes is defined %}
|
|
ETCD_QUOTA_BACKEND_BYTES={{ etcd_quota_backend_bytes }}
|
|
{% endif %}
|
|
|
|
# TLS settings
|
|
ETCD_TRUSTED_CA_FILE={{ etcd_cert_dir }}/ca.pem
|
|
ETCD_CERT_FILE={{ etcd_cert_dir }}/member-{{ inventory_hostname }}.pem
|
|
ETCD_KEY_FILE={{ etcd_cert_dir }}/member-{{ inventory_hostname }}-key.pem
|
|
ETCD_CLIENT_CERT_AUTH={{ etcd_secure_client | lower}}
|
|
|
|
ETCD_PEER_TRUSTED_CA_FILE={{ etcd_cert_dir }}/ca.pem
|
|
ETCD_PEER_CERT_FILE={{ etcd_cert_dir }}/member-{{ inventory_hostname }}.pem
|
|
ETCD_PEER_KEY_FILE={{ etcd_cert_dir }}/member-{{ inventory_hostname }}-key.pem
|
|
ETCD_PEER_CLIENT_CERT_AUTH={{ etcd_peer_client_auth }}
|
|
|
|
{% if etcd_tls_cipher_suites is defined %}
|
|
ETCD_CIPHER_SUITES: {% for tls in etcd_tls_cipher_suites %}{{ tls }}{{ "," if not loop.last else "" }}{% endfor %}
|
|
{% endif %}
|
|
|
|
{% for key, value in etcd_extra_vars.items() %}
|
|
{{ key }}={{ value }}
|
|
{% endfor %}
|
|
|
|
{% if host_architecture != "amd64" -%}
|
|
ETCD_UNSUPPORTED_ARCH={{host_architecture}}
|
|
{%- endif %}
|