1 # -*- coding: utf-8 -*-
4 # Copyright (C) The Arvados Authors. All rights reserved.
6 # SPDX-License-Identifier: AGPL-3.0
8 # The variables commented out are the default values that the formula uses.
9 # The uncommented values are REQUIRED values. If you don't set them, running
10 # this formula will fail.
13 version: '__VERSION__'
14 ## It makes little sense to disable this flag, but you can, if you want :)
15 # use_upstream_repo: true
17 ## Repo URL is built with grains values. If desired, it can be completely
18 ## overwritten with the pillar parameter 'repo_url'
20 # humanname: Arvados Official Repository
25 ## api, workbench and shell require some gems, so you need to make sure ruby
26 ## and deps are installed in order to install and compile the gems.
27 ## We default to `false` in these two variables as it's expected you already
28 ## manage OS packages with some other tool and you don't want us messing up
33 ## We set these to `true` here for testing purposes.
34 ## They both default to `false`.
36 manage_gems_deps: true
44 # - libcurl4-gnutls-dev
54 # file: /etc/arvados/config.yml
57 ## If you're intalling any of the rails apps (api, workbench), the group
58 ## should be set to that of the web server, usually `www-data`
62 ### ARVADOS CLUSTER CONFIG
68 # max concurrent connections per arvados server daemon
69 # connection_pool_max: 32
70 name: __CLUSTER___arvados
72 password: "__DATABASE_PASSWORD__"
73 user: __CLUSTER___arvados
76 # Centos7 does not enable SSL by default, so we disable
77 # it here just for testing of the formula purposes only.
78 # You should not do this in production, and should
79 # configure Postgres certificates correctly
80 {%- if grains.os_family in ('RedHat',) %}
87 # required to test with arvados-snakeoil certs
99 system_root: __SYSTEM_ROOT_TOKEN__
100 management: __MANAGEMENT_TOKEN__
101 anonymous_user: __ANONYMOUS_USER_TOKEN__
105 blob_signing_key: __BLOB_SIGNING_KEY__
106 workbench_secret_key: __WORKBENCH_SECRET_KEY__
113 Email: __INITIAL_USER_EMAIL__
114 Password: __INITIAL_USER_PASSWORD__
117 ## This should usually match all your `keepstore` instances
119 # the volume name will be composed with
120 # <cluster>-nyw5e-<volume>
121 __CLUSTER__-nyw5e-000000000000000:
123 'http://keep0.__CLUSTER__.__DOMAIN__:25107':
131 NewUsersAreActive: true
132 AutoAdminFirstUser: true
133 AutoSetupNewUsers: true
134 AutoSetupNewUsersWithRepository: true
138 ExternalURL: 'https://__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
140 'http://controller.internal:8003': {}
143 'http://__CLUSTER__.__DOMAIN__:9006': {}
146 'http://__CLUSTER__.__DOMAIN__:9005': {}
148 ExternalURL: 'https://keep.__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
150 'http://keep.internal:25100': {}
153 'http://keep0.__CLUSTER__.__DOMAIN__:25107': {}
156 'http://api.internal:8004': {}
158 ExternalURL: 'https://collections.__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
160 'http://collections.internal:9002': {}
162 ExternalURL: 'https://download.__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
164 ExternalURL: 'https://webshell.__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
166 ExternalURL: 'wss://ws.__CLUSTER__.__DOMAIN__/websocket'
168 'http://ws.internal:8005': {}
170 ExternalURL: 'https://workbench.__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
172 ExternalURL: 'https://workbench2.__CLUSTER__.__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'