Skip to content

Instantly share code, notes, and snippets.

@ronakbanka
Forked from anonymous/gist:8704026
Created January 30, 2014 08:00
Show Gist options
  • Save ronakbanka/8704357 to your computer and use it in GitHub Desktop.
Save ronakbanka/8704357 to your computer and use it in GitHub Desktop.
---
<%
director_uuid = "81fa055f-8a94-4d34-9e67-59edbc25874b"
protocol = "http"
cf_release = "153"
ip_address = "10.112.219.59"
common_password = "c1oudc0w"
#root_domain = "10.112.218.60.xip.io"
root_domain = "10.112.219.59.xip.io"
deployment_name = "cf-demo"
%>
name: <%= deployment_name %>
director_uuid: <%= director_uuid %>
releases:
- name: cf
version: <%= cf_release %>
compilation:
workers: 3
network: default
reuse_compilation_vms: true
cloud_properties:
instance_type: m1.small
update:
canaries: 1
canary_watch_time: 30000-300000
update_watch_time: 30000-300000
max_in_flight: 4
networks:
- name: floating
type: vip
cloud_properties: {}
- name: default
type: manual
subnets:
- name: private
range: 50.50.1.0/24 # CHANGE
gateway: 50.50.1.1 # CHANGE
reserved:
- 50.50.1.5 - 50.50.1.30 # CHANGE
static:
- 50.50.1.31 - 50.50.1.100 # CHANGE
cloud_properties:
net_id: bf34ed93-5d44-455d-a053-d0038c844223 # CHANGE
security_groups:
- cf-private
- ssh
- bosh
- cf-public
resource_pools:
- name: small
network: default
size: 2
stemcell:
name: bosh-openstack-kvm-ubuntu
# name: bosh-stemcell
version: 1256
cloud_properties:
instance_type: m1.small
- name: medium
network: default
size: 3
stemcell:
name: bosh-openstack-kvm-ubuntu
# name: bosh-stemcell
version: 1256
cloud_properties:
instance_type: m1.small
jobs:
- name: common1
template:
- syslog_aggregator
- nats
# - postgres
# - dea_next
# - uaa
# - debian_nfs_server
instances: 1
resource_pool: medium
persistent_disk: 16384
networks:
- name: default
default: [dns, gateway]
static_ips:
- 50.50.1.31
properties:
db: databases
- name: common2
template:
# - syslog_aggregator
# - nats
- postgres
# - dea_next
# - uaa
- debian_nfs_server
instances: 1
resource_pool: medium
persistent_disk: 16384
networks:
- name: default
default: [dns, gateway]
static_ips:
- 50.50.1.32
properties:
db: databases
- name: common3
template:
# - syslog_aggregator
# - nats
# - postgres
- dea_next
- uaa
# - debian_nfs_server
instances: 1
resource_pool: medium
persistent_disk: 16384
networks:
- name: default
default: [dns, gateway]
static_ips:
- 50.50.1.33
- name: floating
static_ips:
- 10.112.219.55
properties:
db: databases
uaa_endpoint: http://uaa.10.112.219.59.xip.io
- name: common4
template:
# - login
- health_manager_next
# - collector
instances: 1
resource_pool: small
networks:
- name: default
default: [dns, gateway]
static_ips:
- 50.50.1.34
- name: floating
static_ips:
- 10.112.219.56
- name: common5
template:
- cloud_controller_ng
- gorouter
# - login
# - uaa
instances: 1
resource_pool: small
networks:
- name: default
default: [dns, gateway]
static_ips:
- 50.50.1.35
- name: floating
static_ips:
- 10.112.219.59
properties:
ccdb: ccdb
ccng:
quota_definitions:
free:
non_basic_services_allowed: true
total_services: 100
total_routes: 1000
memory_limit: 10240
default_quota_definition: free
db: databases
uaa:
url: http://uaa.10.112.219.59.xip.io
jwt:
verification-key: |
-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d
KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX
qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug
spULZVNRxq7veq/fzwIDAQAB
-----END PUBLIC KEY-----
# login:
# url: http://login.10.112.219.59.xip.io
properties:
domain: 10.112.219.59.xip.io
system_domain: 10.112.219.59.xip.io
system_domain_organization: "10.112.219.59.xip.io"
app_domains:
- 10.112.219.59.xip.io
networks:
apps: default
management: default
nats:
machines:
- 50.50.1.31
- 50.50.1.31
port: 4222
user: nats
password: "c1oudc0w"
authorization_timeout: 5
use_gnatsd: false
address: 50.50.1.31
router:
port: 8081
status:
port: 8080
user: gorouter
password: "c1oudc0w"
dea: &dea
max_memory: 4096
memory_mb: 1024
memory_overcommit_factor: 4
disk_mb: 16384
disk_overcommit_factor: 4
# mtu: 1454
dea_next: *dea
service_lifecycle:
serialization_data_server:
- 50.50.1.31
nfs_server:
address: 50.50.1.32
network: 50.50.1.0/24
syslog_aggregator:
address: 50.50.1.31
port: 54321
serialization_data_server:
port: 8080
logging_level: debug
upload_token: 8f7COGvThwlmulIzAgOHxMXurBrG364k
upload_timeout: 10
collector:
deployment_name: cf-openstack
use_tsdb: false
use_aws_cloudwatch: false
use_datadog: false
databases: &databases
db_scheme: postgres
address: 50.50.1.32
port: 5524
roles:
- tag: admin
name: ccadmin
password: "c1oudc0w"
- tag: admin
name: uaaadmin
password: "c1oudc0w"
databases:
- tag: cc
name: ccdb
citext: true
- tag: uaa
name: uaadb
citext: true
ccdb: &ccdb
db_scheme: postgres
address: 50.50.1.32
port: 5524
roles:
- tag: admin
name: ccadmin
password: "c1oudc0w"
databases:
- tag: cc
name: ccdb
citext: true
ccdb_ng: *ccdb
uaadb:
db_scheme: postgresql
address: 50.50.1.32
port: 5524
roles:
- tag: admin
name: uaaadmin
password: "c1oudc0w"
databases:
- tag: uaa
name: uaadb
citext: true
cc_api_version: v2
cc: &cc
logging_level: debug
external_host: ccng
srv_api_uri: http://ccng.10.112.219.59.xip.io
cc_partition: default
db_encryption_key: "b963127302433579"
bootstrap_admin_email: "admin@10.112.219.59.xip.io"
bulk_api_password: "c1oudc0w"
uaa_resource_id: cloud_controller
staging_upload_user: uploaduser
staging_upload_password: c1oudc0w
resource_pool:
resource_directory_key: 10.112.219.59.xip.io-cc-resources
packages:
app_package_directory_key: 10.112.219.59.xip.io-cc-packages
droplets:
droplet_directory_key: 10.112.219.59.xip.io-cc-droplets
ccng: *cc
login:
# protocol: http
# url: http://login.10.112.219.59.xip.io
# links:
# home: http://console.10.112.219.59.xip.io
# passwd: http://console.10.112.219.59.xip.io/password_resets/new
# signup: http://console.10.112.219.59.xip.io/register
enabled: false
uaa:
# enabled: false
url: http://uaa.10.112.219.59.xip.io
spring_profiles: postgresql
no_ssl: true
catalina_opts: -Xmx768m -XX:MaxPermSize=256m
resource_id: account_manager
jwt:
# token:
signing-key: |
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----
verification-key: |
-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d
KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX
qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug
spULZVNRxq7veq/fzwIDAQAB
-----END PUBLIC KEY-----
cc:
client_secret: "c1oudc0w"
admin:
client_secret: "c1oudc0w"
batch:
username: batchuser
password: c1oudc0w
client:
autoapprove:
- cf
# - login
# - vmc
clients:
# login:
# override: true
# scope: openid
# authorities: oauth.login
# secret: c1oudc0w
# authorized-grant-types: authorization_code,client_credentials,refresh_token
# redirect-uri: http://login.10.112.219.59.xip.io
# support-services:
# scope: scim.write,scim.read,openid,cloud_controller.read,cloud_controller.write
# secret: ssosecretsso
# authorized-grant-types: authorization_code,client_credentials
# redirect-uri: http://support-signon.10.112.219.59.xip.io
# authorities: portal.users.read
# access-token-validity: 1209600
# refresh-token-validity: 1209600
cf:
override: true
authorized-grant-types: password,implicit,refresh_token
authorities: uaa.none
scope: cloud_controller.read,cloud_controller.write,openid,password.write,cloud_controller.admin,scim.read,scim.write
access-token-validity: 7200
refresh-token-validity: 1209600
# vmc:
#id: cf
# override: true
# authorized-grant-types: password,implicit,refresh_token
# authorities: uaa.none
# scope: cloud_controller.read,cloud_controller.write,openid,password.write,cloud_controller.admin,scim.read,scim.write
# access-token-validity: 7200
# refresh-token-validity: 1209600
# cf:
# override: true
# authorized-grant-types: password,implicit,refresh_token
# authorities: uaa.none
# scope: cloud_controller.read,cloud_controller.write,openid,password.write,cloud_controller.admin,scim.read,scim.write
#servicesmgmt:
# override: true
#secret: serivcesmgmtsecret
#scope: openid,cloud_controller.read,cloud_controller.write
#authorities: uaa.resource,oauth.service,clients.read,clients.write,clients.secret
#authorized-grant-types: authorization_code,client_credentials,password,implicit
#redirect-uri: http://servicesmgmt.10.112.219.59.xip.io/auth/cloudfoundry/callback
#autoapprove: true
admin:
# override: true
# refresh-token-validity: 1209600
# access-token-validity: 7200
secret: c1oudc0w
authorized-grant-types: client_credentials
authorities: clients.read,clients.write,clients.secret,password.write,scim.read,uaa.admin
scim:
users:
# - admin|c1oudc0w|scim.write,scim.read,openid,cloud_controller.admin
# - services|c1oudc0w|scim.write,scim.read,openid,cloud_controller.admin
- admin|<%= common_password %>|scim.write,scim.read,openid,cloud_controller.admin,uaa.admin,password.write
- services|<%= common_password %>|scim.write,scim.read,openid,cloud_controller.admin
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment