2 # Copyright (C) The Arvados Authors. All rights reserved.
4 # SPDX-License-Identifier: AGPL-3.0
6 {%- set _workers = ("__CONTROLLER_MAX_WORKERS__" or grains['num_cpus']*2)|int %}
7 {%- set max_workers = [_workers, 8]|max %}
8 {%- set max_reqs = ("__CONTROLLER_MAX_QUEUED_REQUESTS__" or 128)|int %}
9 {%- set database_host = ("__DATABASE_EXTERNAL_SERVICE_HOST_OR_IP__" or "__DATABASE_INT_IP__") %}
11 # The variables commented out are the default values that the formula uses.
12 # The uncommented values are REQUIRED values. If you don't set them, running
13 # this formula will fail.
16 version: '__VERSION__'
17 ## It makes little sense to disable this flag, but you can, if you want :)
18 # use_upstream_repo: true
20 ## Repo URL is built with grains values. If desired, it can be completely
21 ## overwritten with the pillar parameter 'repo_url'
23 # humanname: Arvados Official Repository
28 ## api, workbench and shell require some gems, so you need to make sure ruby
29 ## and deps are installed in order to install and compile the gems.
30 ## We default to `false` in these two variables as it's expected you already
31 ## manage OS packages with some other tool and you don't want us messing up
34 ## We set these to `true` here for testing purposes.
35 ## They both default to `false`.
37 manage_gems_deps: true
45 # - libcurl4-gnutls-dev
55 # file: /etc/arvados/config.yml
58 ## If you're intalling any of the rails apps (api, workbench), the group
59 ## should be set to that of the web server, usually `www-data`
64 name: arvados-dispatch-cloud
66 name: arvados-dispatch-cloud
68 ### ARVADOS CLUSTER CONFIG
74 # max concurrent connections per arvados server daemon
75 # connection_pool_max: 32
76 name: __CLUSTER___arvados
77 host: {{ database_host }}
78 password: "__DATABASE_PASSWORD__"
79 user: __CLUSTER___arvados
86 # required to test with arvados-snakeoil certs
92 name: shell.__DOMAIN__
93 backend: __SHELL_INT_IP__
98 system_root: __SYSTEM_ROOT_TOKEN__
99 management: __MANAGEMENT_TOKEN__
100 anonymous_user: __ANONYMOUS_USER_TOKEN__
104 blob_signing_key: __BLOB_SIGNING_KEY__
105 workbench_secret_key: __WORKBENCH_SECRET_KEY__
112 Email: __INITIAL_USER_EMAIL__
113 Password: __INITIAL_USER_PASSWORD__
117 MaxConcurrentRequests: {{ max_workers * 2 }}
118 MaxQueuedRequests: {{ max_reqs }}
121 {%- set dispatcher_ssh_privkey = "__DISPATCHER_SSH_PRIVKEY__" %}
126 Name: __CLUSTER__-compute-node
127 BootProbeCommand: 'systemctl is-system-running'
128 ImageID: __COMPUTE_AMI__
131 Region: __COMPUTE_AWS_REGION__
133 AdminUsername: __COMPUTE_USER__
134 ### This SG should allow SSH from the dispatcher to the compute nodes
135 SecurityGroupIDs: ['__COMPUTE_SG__']
136 SubnetID: __COMPUTE_SUBNET__
137 IAMInstanceProfile: __CLUSTER__-compute-node-00-iam-role
138 DispatchPrivateKey: {{ dispatcher_ssh_privkey|yaml_dquote }}
141 ## This should usually match all your `keepstore` instances
143 # the volume name will be composed with
144 # <cluster>-nyw5e-<volume>
145 __CLUSTER__-nyw5e-000000000000000:
149 Bucket: __CLUSTER__-nyw5e-000000000000000-volume
150 IAMRole: __CLUSTER__-keepstore-00-iam-role
151 Region: __KEEP_AWS_REGION__
154 NewUsersAreActive: true
155 AutoAdminFirstUser: true
156 AutoSetupNewUsers: true
157 AutoSetupNewUsersWithRepository: true
161 ExternalURL: 'https://__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
163 'http://localhost:8003': {}
166 'http://__DISPATCHER_INT_IP__:9006': {}
169 'http://__KEEPBALANCE_INT_IP__:9005': {}
171 ExternalURL: 'https://keep.__DOMAIN__:__KEEP_EXT_SSL_PORT__'
173 'http://localhost:25107': {}
176 'http://__KEEPSTORE0_INT_IP__:25107': {}
179 'http://localhost:8004': {}
181 ExternalURL: 'https://*.collections.__DOMAIN__:__KEEPWEB_EXT_SSL_PORT__/'
183 'http://__KEEPWEB_INT_IP__:9002': {}
185 ExternalURL: 'https://download.__DOMAIN__:__KEEPWEB_EXT_SSL_PORT__'
187 ExternalURL: 'https://webshell.__DOMAIN__:__KEEPWEB_EXT_SSL_PORT__'
189 ExternalURL: 'wss://ws.__DOMAIN__/websocket'
191 'http://localhost:8005': {}
193 ExternalURL: 'https://workbench.__DOMAIN__:__WORKBENCH1_EXT_SSL_PORT__'
195 ExternalURL: 'https://workbench2.__DOMAIN__:__WORKBENCH2_EXT_SSL_PORT__'
199 ProviderType: t3.small
205 ProviderType: c5.large
211 ProviderType: m5.large
217 ProviderType: c5.xlarge
223 ProviderType: m5.xlarge
229 ProviderType: m5.xlarge
235 ProviderType: c5.2xlarge
241 ProviderType: m5.2xlarge
247 ProviderType: c5.4xlarge
253 ProviderType: m5.4xlarge