Blame - kubernetes/control/services/drivetrain/ldap.yml - salt-models/reclass-system

blob: 5a7c3178921bcafc8f81b1093b7242c6ed258e45 [file] [log] [blame]

Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	1	parameters:
				2	kubernetes:
				3	common:
				4	addons:
				5	ingress-nginx:
				6	tcp_data:
				7	389: drivetrain/openldap:389
				8	tcp_ports:
				9	- 389
				10	control:
				11	ingress:
				12	ldap:
				13	annotations:
				14	- name: kubernetes.io/ingress.class
				15	value: nginx
				16	- name: nginx.ingress.kubernetes.io/ssl-redirect
				17	value: false
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	18	- name: nginx.ingress.kubernetes.io/rewrite-target
Ivan Berezovskiy	7496c98	2019-04-10 17:04:12 +0400	[diff] [blame^]	19	value: /ldap
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	20	apiVersion: extensions/v1beta1
				21	cluster: drivetrain
				22	enabled: true
				23	create: true
				24	namespace: drivetrain
				25	rules:
				26	hosts:
				27	- paths:
				28	/ldap:
				29	service: openldap
				30	port: 80
				31	service:
				32	openldap:
				33	enabled: true
				34	cluster: drivetrain
				35	service: openldap
				36	create: true
				37	namespace: drivetrain
				38	ports:
				39	- port: 389
				40	name: nonssl
				41	- port: 636
				42	name: ssl
				43	- port: 80
				44	name: admin
				45	type: ClusterIP
				46	apiVersion: extensions/v1beta1
				47	kind: Deployment
				48	replicas: 1
				49	container:
				50	ldap-server:
				51	image: ${_param:docker_image_openldap}
				52	image_pull_policy: IfNotPresent
				53	variables:
				54	- name: HOSTNAME
				55	value: ldap01.${_param:openldap_domain}
				56	- name: LDAP_ORGANISATION
				57	value: ${_param:openldap_organisation}
				58	- name: LDAP_DOMAIN
				59	value: ${_param:openldap_domain}
				60	- name: LDAP_ADMIN_PASSWORD
				61	value: ${_param:openldap_admin_password}
				62	- name: LDAP_CONFIG_PASSWORD
				63	value: ${_param:openldap_config_password}
				64	- name: LDAP_TLS
				65	value: "'false'"
				66	ports:
				67	- port: 389
				68	name: nonssl
				69	- port: 636
				70	name: ssl
				71	volumes:
				72	- name: data
				73	mount: /var/lib/ldap
				74	read_only: false
				75	- name: config
				76	mount: /etc/ldap/slapd.d
				77	read_only: false
				78	ldap-admin:
				79	image: ${_param:docker_image_phpldapadmin}
				80	image_pull_policy: IfNotPresent
				81	variables:
				82	- name: PHPLDAPADMIN_LDAP_HOSTS
				83	value: "#PYTHON2BASH:[{'server': [{'server': [{'tls': False}]},{'login': [{'bind_id': 'cn=admin,${_param:openldap_dn}'},{'bind_pass': '${_param:openldap_admin_password}'}]}]}]"
				84	- name: PHPLDAPADMIN_HTTPS
				85	value: "'false'"
				86	- name: PHPLDAPADMIN_TRUST_PROXY_SSL
				87	value: "'true'"
				88	- name: PHPLDAPADMIN_SERVER_ADMIN
				89	value: ${_param:admin_email}
				90	- name: PHPLDAPADMIN_THEME
				91	value: mirantis
Ivan Berezovskiy	7496c98	2019-04-10 17:04:12 +0400	[diff] [blame^]	92	- name: PHPLDAPADMIN_SERVER_PATH
				93	value: "/ldap"
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	94	ports:
				95	- port: 80
				96	name: admin
				97	volume:
				98	config:
				99	type: glusterfs
				100	endpoints: glusterfs
				101	path: openldap-config
				102	read_only: false
				103	data:
				104	type: glusterfs
				105	endpoints: glusterfs
				106	path: openldap-data
				107	read_only: false