Blame - kubernetes/control/services/drivetrain/ldap.yml - salt-models/reclass-system

blob: 7c8800e2a71e6231ab5a410de0de17cfda1f7dda [file] [log] [blame]

Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	1	parameters:
				2	kubernetes:
				3	common:
				4	addons:
				5	ingress-nginx:
				6	tcp_data:
				7	389: drivetrain/openldap:389
				8	tcp_ports:
				9	- 389
				10	control:
				11	ingress:
				12	ldap:
				13	annotations:
				14	- name: kubernetes.io/ingress.class
				15	value: nginx
				16	- name: nginx.ingress.kubernetes.io/ssl-redirect
				17	value: false
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	18	- name: nginx.ingress.kubernetes.io/rewrite-target
Ivan Berezovskiy	7496c98	2019-04-10 17:04:12 +0400	[diff] [blame]	19	value: /ldap
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	20	apiVersion: extensions/v1beta1
				21	cluster: drivetrain
				22	enabled: true
				23	create: true
				24	namespace: drivetrain
				25	rules:
				26	hosts:
				27	- paths:
				28	/ldap:
				29	service: openldap
				30	port: 80
				31	service:
				32	openldap:
				33	enabled: true
				34	cluster: drivetrain
				35	service: openldap
				36	create: true
				37	namespace: drivetrain
				38	ports:
				39	- port: 389
				40	name: nonssl
				41	- port: 636
				42	name: ssl
				43	- port: 80
				44	name: admin
				45	type: ClusterIP
				46	apiVersion: extensions/v1beta1
				47	kind: Deployment
				48	replicas: 1
				49	container:
				50	ldap-server:
				51	image: ${_param:docker_image_openldap}
				52	image_pull_policy: IfNotPresent
				53	variables:
				54	- name: HOSTNAME
				55	value: ldap01.${_param:openldap_domain}
				56	- name: LDAP_ORGANISATION
				57	value: ${_param:openldap_organisation}
				58	- name: LDAP_DOMAIN
				59	value: ${_param:openldap_domain}
				60	- name: LDAP_ADMIN_PASSWORD
				61	value: ${_param:openldap_admin_password}
				62	- name: LDAP_CONFIG_PASSWORD
				63	value: ${_param:openldap_config_password}
				64	- name: LDAP_TLS
				65	value: "'false'"
				66	ports:
				67	- port: 389
				68	name: nonssl
				69	- port: 636
				70	name: ssl
				71	volumes:
				72	- name: data
				73	mount: /var/lib/ldap
				74	read_only: false
				75	- name: config
				76	mount: /etc/ldap/slapd.d
				77	read_only: false
				78	ldap-admin:
				79	image: ${_param:docker_image_phpldapadmin}
				80	image_pull_policy: IfNotPresent
				81	variables:
Ivan Berezovskiy	0e8728c	2019-06-03 17:02:32 +0400	[diff] [blame]	82	- name: PHPLDAPADMIN_LDAP_ADMIN_PASSWORD
				83	value: ${_param:openldap_admin_password}
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	84	- name: PHPLDAPADMIN_LDAP_HOSTS
Ivan Berezovskiy	0e8728c	2019-06-03 17:02:32 +0400	[diff] [blame]	85	value: "#PYTHON2BASH:[{'server': [{'server': [{'tls': False}]},{'login': [{'bind_id': 'cn=admin,${_param:openldap_dn}'},{'bind_pass': '$PHPLDAPADMIN_LDAP_ADMIN_PASSWORD'}]}]}]"
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	86	- name: PHPLDAPADMIN_HTTPS
				87	value: "'false'"
				88	- name: PHPLDAPADMIN_TRUST_PROXY_SSL
				89	value: "'true'"
				90	- name: PHPLDAPADMIN_SERVER_ADMIN
				91	value: ${_param:admin_email}
				92	- name: PHPLDAPADMIN_THEME
				93	value: mirantis
Ivan Berezovskiy	7496c98	2019-04-10 17:04:12 +0400	[diff] [blame]	94	- name: PHPLDAPADMIN_SERVER_PATH
				95	value: "/ldap"
Ivan Berezovskiy	b8bdd86	2019-02-08 14:48:56 +0400	[diff] [blame]	96	ports:
				97	- port: 80
				98	name: admin
				99	volume:
				100	config:
				101	type: glusterfs
				102	endpoints: glusterfs
				103	path: openldap-config
				104	read_only: false
				105	data:
				106	type: glusterfs
				107	endpoints: glusterfs
				108	path: openldap-data
Ivan Berezovskiy	0e8728c	2019-06-03 17:02:32 +0400	[diff] [blame]	109	read_only: false