diff options
author | Quentin Dufour <quentin@deuxfleurs.fr> | 2020-02-01 11:15:50 +0100 |
---|---|---|
committer | Quentin Dufour <quentin@deuxfleurs.fr> | 2020-02-01 11:15:50 +0100 |
commit | ba5590ce97953f66702b149fd7840bcb58d4b463 (patch) | |
tree | 5db9804ef6b377ae2eb21bc0e0759e0aee34e0fc | |
parent | 62b7b867024d45c1bd2dcec3a4e6dd59207e091b (diff) | |
download | infrastructure-ba5590ce97953f66702b149fd7840bcb58d4b463.tar.gz infrastructure-ba5590ce97953f66702b149fd7840bcb58d4b463.zip |
[bottin] Pré-déploiement de gobottin
Ça marche !!
-rw-r--r-- | consul/configuration/bottin/config.json | 13 | ||||
-rw-r--r-- | nomad/bottin2.hcl | 59 |
2 files changed, 72 insertions, 0 deletions
diff --git a/consul/configuration/bottin/config.json b/consul/configuration/bottin/config.json new file mode 100644 index 0000000..3cd5e9d --- /dev/null +++ b/consul/configuration/bottin/config.json @@ -0,0 +1,13 @@ +{ + "suffix": "dc=deuxfleurs,dc=fr", + "bind": "0.0.0.0:1389", + "consul_host": "http://consul.service.2.cluster.deuxfleurs.fr:8500", + "acl": [ + "*,dc=deuxfleurs,dc=fr::read:*:* !userpassword", + "*::read modify:SELF:*", + "cn=admin,dc=deuxfleurs,dc=fr::read add modify delete:*:*", + "*:cn=admin,ou=groups,dc=deuxfleurs,dc=fr:read add modify delete:*:*", + "ANONYMOUS::bind:*,ou=users,dc=deuxfleurs,dc=fr:", + "ANONYMOUS::bind:cn=admin,dc=deuxfleurs,dc=fr:" + ] +} diff --git a/nomad/bottin2.hcl b/nomad/bottin2.hcl new file mode 100644 index 0000000..8c02078 --- /dev/null +++ b/nomad/bottin2.hcl @@ -0,0 +1,59 @@ +job "directory2" { + datacenters = ["dc1"] + type = "service" + + constraint { + attribute = "${attr.cpu.arch}" + value = "amd64" + } + + group "ldap" { + count = 1 + task "server" { + driver = "docker" + config { + image = "lxpz/bottin_amd64:1" + readonly_rootfs = true + port_map { + ldap_port = 1389 + } + volumes = [ + "secrets/config.json:/config.json" + ] + } + + resources { + memory = 100 + network { + port "ldap_port" { + static = "389" + } + } + } + + template { + data = "{{ key \"configuration/bottin/config.json\" }}" + destination = "secrets/config.json" + } + + service { + tags = ["bottin"] + port = "ldap_port" + address_mode = "host" + name = "bottin2" + check { + type = "tcp" + port = "ldap_port" + interval = "60s" + timeout = "5s" + check_restart { + limit = 3 + grace = "90s" + ignore_warnings = false + } + } + } + } + } +} + |