forked from genesis-community/jumpbox-genesis-kit
-
Notifications
You must be signed in to change notification settings - Fork 0
/
kit.yml
33 lines (29 loc) · 997 Bytes
/
kit.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
---
name: jumpbox
version: 1.0.10
authors: [ James Hunt <[email protected]>,
Dennis Bell <[email protected]> ]
docs: https://github.com/genesis-community/jumpbox-genesis-kit
code: https://github.com/genesis-community/jumpbox-genesis-kit
genesis_version_min: 2.7.11
description: |
This kit creates the manifest to build an isolated bastion jumpbox
to restrict access to other boxes in you BOSH deployments, along
with a set of common tools and consistant user setup.
certificates:
openvpn:
openvpn/certs:
ca:
valid_for: ${params.ca_validity_period}
names: [ ca.openvpn ]
usage: [ crl_sign,
key_cert_sign ]
server:
valid_for: ${params.cert_validity_period}
names: [ server.openvpn ]
usage: [ server_auth,
digital_signature,
key_encipherment ]
credentials:
openvpn:
openvpn/dh_params: dhparams 2048