forked from RedHat-EMEA-SSA-Team/hetzner-ocp4
-
Notifications
You must be signed in to change notification settings - Fork 0
/
cluster-example.yml
51 lines (44 loc) · 1.39 KB
/
cluster-example.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
---
cluster_name: ocp4
public_domain: example.com
# set custom public ip for DNS entries. Defaults to: hostvars['localhost']['ansible_default_ipv4']['address']
# public_ip: 92.100.42.2
dns_provider: [route53|cloudflare|gcp]
letsencrypt_account_email: [email protected]
# Depending on the dns provider:
# CloudFlare
cloudflare_account_email: [email protected]
# Use the global api key! - (API-Token is not supported!) (Details in #86)
cloudflare_account_api_token: 9348234sdsd894.....
cloudflare_zone: example.com
# Route53
aws_access_key: key
aws_secret_key: secret
aws_zone: example.com
# GCP
gcp_project: project-name
gcp_managed_zone_name: 'zone-name'
gcp_managed_zone_domain: 'example.com.'
gcp_serviceaccount_file: ../gcp_service_account.json
auth_htpasswd:
- admin:$apr1$81BkJ4dI$XGcaDat/h529tjbf4SNH//
- local:$apr1$81BkJ4dI$XGcaDat/h529tjbf4SNH//
storage_nfs: true # Default is false
auth_redhatsso:
client_id: "xxxxx.apps.googleusercontent.com"
client_secret: "xxxxxxx"
auth_github:
client_id: "yourverysecretclientid"
client_secret: "xxxxxxx"
# Please be sure to define *either* (but at least *one*) of auth_github.organizations OR auth_github.teams
organizations:
- "sa-mw-dach"
# teams:
# - "@sa-mw-dach/hetzner-users"
cluster_role_bindings:
- cluster_role: sudoer
name: [email protected]
- cluster_role: cluster-admin
name: admin
image_pull_secret: |-
asdfghfdsa