-
Notifications
You must be signed in to change notification settings - Fork 8
/
pillar.example
86 lines (73 loc) · 2.47 KB
/
pillar.example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
# vim: ft=yaml
docker:
# Users to add to the docker group
# users: [joe, linda, zoe]
# To set docker options (via docker.json), you can specify them here (in YAML format)
# A full list of options is available at https://docs.docker.com/engine/reference/commandline/dockerd
daemon:
mtu: 1400
dns: [172.17.0.1]
dns-search: [example.com]
swarm:
# Configure interface for Docker Swarm communication (defaults to eth0)
interface: eth0
prune:
all: true # true (Default): Remove all unused images, translates to `docker system prune --force --all`
# false: (Remove only dangling images, translates to `docker system prune --force`
volumes: false # Remove unused volumes as well. Default: false
on_calendar: 02:00 # 02:00 (Default): systemd timer configuration for cleanup frequency
# Force restart instead of reload which is needed with some configuration options
reload: False
# Registry credentials for the docker.login state (if used)
#
# Note that multiple dictionaries, and multiple registries per dictionary, can be specified:
#
docker-registries:
'https://docker-registry.work.com':
username: jrabbit
password: s3cr3t
my-private-docker-registries:
'https://docker-A.jack-rabbit.com':
username: jack
password: c4rr0t
'https://docker-B.jack-rabbit.com':
username: jack
password: c4rr0t
# Configuration for the docker.machine substate
#
# See README on how to obtain the contents of the key and certificate files as well as valid versions.
#
# TL;DR versions:
# - https://gitlab.com/gitlab-org/ci-cd/docker-machine/-/releases
# - updating the binary via the version key is manual; deploying a custom automated update solution
# is strongly advisable
#
# TL;DR certs:
# - docker-machine create --driver <DRIVER> <OPTIONS> init-vm
# - wait until init-vm reports as ready
# - extract required data from /root/.docker/machine/certs
# - docker-machine rm init-vm
#
# The files ca-key.pem and key.pem contain sensitive information. It might be advisable to use Salt's
# GPG renderer feature to encrypt the content.
#
docker-machine:
version: v0.16.2-gitlab.18
ca-key: |
-----BEGIN RSA PRIVATE KEY-----
[...]
-----END RSA PRIVATE KEY-----
ca: |
-----BEGIN CERTIFICATE-----
[...]
-----END CERTIFICATE-----
cert: |
-----BEGIN CERTIFICATE-----
[...]
-----END CERTIFICATE-----
key: |
-----BEGIN RSA PRIVATE KEY-----
[...]
-----END RSA PRIVATE KEY-----
dnsmasq:
cache-size: 1000