2 # Copyright (C) The Arvados Authors. All rights reserved.
4 # SPDX-License-Identifier: AGPL-3.0
6 {%- set _workers = ("__CONTROLLER_MAX_WORKERS__" or grains['num_cpus']*2)|int %}
7 {%- set max_workers = [_workers, 8]|max %}
8 {%- set max_reqs = ("__CONTROLLER_MAX_QUEUED_REQUESTS__" or 128)|int %}
9 {%- set database_host = ("__DATABASE_EXTERNAL_SERVICE_HOST_OR_IP__" or "__DATABASE_INT_IP__") %}
10 {%- set database_name = "__DATABASE_NAME__" %}
11 {%- set database_user = "__DATABASE_USER__" %}
12 {%- set database_password = "__DATABASE_PASSWORD__" %}
14 # The variables commented out are the default values that the formula uses.
15 # The uncommented values are REQUIRED values. If you don't set them, running
16 # this formula will fail.
19 version: '__VERSION__'
20 ## It makes little sense to disable this flag, but you can, if you want :)
21 # use_upstream_repo: true
23 ## Repo URL is built with grains values. If desired, it can be completely
24 ## overwritten with the pillar parameter 'repo_url'
26 # humanname: Arvados Official Repository
31 ## api, workbench and shell require some gems, so you need to make sure ruby
32 ## and deps are installed in order to install and compile the gems.
33 ## We default to `false` in these two variables as it's expected you already
34 ## manage OS packages with some other tool and you don't want us messing up
37 ## We set these to `true` here for testing purposes.
38 ## They both default to `false`.
40 manage_gems_deps: true
48 # - libcurl4-gnutls-dev
58 # file: /etc/arvados/config.yml
61 ## If you're intalling any of the rails apps (api, workbench), the group
62 ## should be set to that of the web server, usually `www-data`
67 name: arvados-dispatch-cloud
69 name: arvados-dispatch-cloud
71 ### ARVADOS CLUSTER CONFIG
77 # max concurrent connections per arvados server daemon
78 # connection_pool_max: 32
79 name: {{ database_name }}
80 host: {{ database_host }}
81 password: {{ database_password }}
82 user: {{ database_user }}
89 # required to test with arvados-snakeoil certs
95 name: shell.__DOMAIN__
96 backend: __SHELL_INT_IP__
101 system_root: __SYSTEM_ROOT_TOKEN__
102 management: __MANAGEMENT_TOKEN__
103 anonymous_user: __ANONYMOUS_USER_TOKEN__
107 blob_signing_key: __BLOB_SIGNING_KEY__
108 workbench_secret_key: __WORKBENCH_SECRET_KEY__
115 Email: __INITIAL_USER_EMAIL__
116 Password: __INITIAL_USER_PASSWORD__
120 MaxConcurrentRailsRequests: {{ max_workers * 2 }}
121 MaxConcurrentRequests: {{ max_reqs }}
122 MaxQueuedRequests: {{ max_reqs }}
125 {%- set dispatcher_ssh_privkey = "__DISPATCHER_SSH_PRIVKEY__" %}
130 Name: __CLUSTER__-compute-node
131 BootProbeCommand: 'systemctl is-system-running'
132 ImageID: __COMPUTE_AMI__
135 Region: __COMPUTE_AWS_REGION__
137 AdminUsername: __COMPUTE_USER__
138 ### This SG should allow SSH from the dispatcher to the compute nodes
139 SecurityGroupIDs: ['__COMPUTE_SG__']
140 SubnetID: __COMPUTE_SUBNET__
141 IAMInstanceProfile: __CLUSTER__-compute-node-00-iam-role
142 DispatchPrivateKey: {{ dispatcher_ssh_privkey|yaml_dquote }}
145 ## This should usually match all your `keepstore` instances
147 # the volume name will be composed with
148 # <cluster>-nyw5e-<volume>
149 __CLUSTER__-nyw5e-000000000000000:
153 Bucket: __KEEP_AWS_S3_BUCKET__
154 IAMRole: __KEEP_AWS_IAM_ROLE__
155 Region: __KEEP_AWS_REGION__
156 # IMPORTANT: The default value for PrefixLength is 0, and should not
157 # be changed once the volume is in use. For new installations it's
158 # recommended to set it to 3 for better performance.
159 # See: https://doc.arvados.org/install/configure-s3-object-storage.html
163 NewUsersAreActive: true
164 AutoAdminFirstUser: true
165 AutoSetupNewUsers: true
166 AutoSetupNewUsersWithRepository: true
170 ExternalURL: 'https://__DOMAIN__:__CONTROLLER_EXT_SSL_PORT__'
172 'http://localhost:8003': {}
175 'http://__DISPATCHER_INT_IP__:9006': {}
178 'http://__KEEPBALANCE_INT_IP__:9005': {}
180 ExternalURL: 'https://keep.__DOMAIN__:__KEEP_EXT_SSL_PORT__'
182 'http://localhost:25107': {}
185 'http://__KEEPSTORE0_INT_IP__:25107': {}
188 'http://localhost:8004': {}
190 ExternalURL: 'https://*.collections.__DOMAIN__:__KEEPWEB_EXT_SSL_PORT__/'
192 'http://__KEEPWEB_INT_IP__:9002': {}
194 ExternalURL: 'https://download.__DOMAIN__:__KEEPWEB_EXT_SSL_PORT__'
196 ExternalURL: 'https://webshell.__DOMAIN__:__KEEPWEB_EXT_SSL_PORT__'
198 ExternalURL: 'wss://ws.__DOMAIN__/websocket'
200 'http://localhost:8005': {}
202 ExternalURL: 'https://workbench.__DOMAIN__:__WORKBENCH1_EXT_SSL_PORT__'
204 ExternalURL: 'https://workbench2.__DOMAIN__:__WORKBENCH2_EXT_SSL_PORT__'
208 ProviderType: t3.small
214 ProviderType: c5.large
220 ProviderType: m5.large
226 ProviderType: c5.xlarge
232 ProviderType: m5.xlarge
238 ProviderType: m5.xlarge
244 ProviderType: c5.2xlarge
250 ProviderType: m5.2xlarge
256 ProviderType: c5.4xlarge
262 ProviderType: m5.4xlarge