feat(vault): variabilize seal_configuration
This commit is contained in:
parent
5b9b25803b
commit
df5802647e
@ -28,8 +28,8 @@
|
|||||||
- name: "Initialize vault cluster" # noqa: run-once[task]
|
- name: "Initialize vault cluster" # noqa: run-once[task]
|
||||||
ednxzu.hashistack.vault_init:
|
ednxzu.hashistack.vault_init:
|
||||||
api_url: "{{ hashi_vault_configuration['api_addr'] }}"
|
api_url: "{{ hashi_vault_configuration['api_addr'] }}"
|
||||||
key_shares: 3
|
key_shares: "{{ vault_seal_configuration['key_shares'] }}"
|
||||||
key_threshold: 2
|
key_threshold: "{{ vault_seal_configuration['key_threshold'] }}"
|
||||||
run_once: true
|
run_once: true
|
||||||
retries: 5
|
retries: 5
|
||||||
delay: 5
|
delay: 5
|
||||||
|
|||||||
@ -82,6 +82,9 @@ hashi_consul_configuration: {}
|
|||||||
##########################
|
##########################
|
||||||
|
|
||||||
vault_cluster_name: vault
|
vault_cluster_name: vault
|
||||||
|
vault_seal_configuration:
|
||||||
|
key_shares: 3
|
||||||
|
key_threshold: 2
|
||||||
|
|
||||||
###############
|
###############
|
||||||
# vault storage
|
# vault storage
|
||||||
@ -116,6 +119,20 @@ vault_tls_listener_configuration:
|
|||||||
|
|
||||||
vault_extra_listener_configuration: {}
|
vault_extra_listener_configuration: {}
|
||||||
|
|
||||||
|
############################
|
||||||
|
# vault service registration
|
||||||
|
############################
|
||||||
|
vault_enable_service_registration: false
|
||||||
|
vault_service_registration_configuration:
|
||||||
|
consul:
|
||||||
|
address: "127.0.0.1:8500"
|
||||||
|
scheme: "http"
|
||||||
|
|
||||||
|
#############################
|
||||||
|
# vault plugins configuration
|
||||||
|
#############################
|
||||||
|
|
||||||
|
|
||||||
#########################
|
#########################
|
||||||
# vault container volumes
|
# vault container volumes
|
||||||
#########################
|
#########################
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user