From b9d4313cc851be7c7e8657783723343e8bd14664 Mon Sep 17 00:00:00 2001 From: pmikus Date: Tue, 18 May 2021 13:30:08 +0000 Subject: Infra: Vault Signed-off-by: pmikus Change-Id: Ia6e728f98d20144c3771405b32933a77fe15b19b (cherry picked from commit 73440ab332c51eb11405767d320bc496d9ebdbe7) (cherry picked from commit bb2af29c186f681dcbbc3c26a5f091af6c7415d3) --- .../vault_service_registration_consul.hcl.j2 | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 fdio.infra.ansible/roles/vault/templates/vault_service_registration_consul.hcl.j2 (limited to 'fdio.infra.ansible/roles/vault/templates/vault_service_registration_consul.hcl.j2') diff --git a/fdio.infra.ansible/roles/vault/templates/vault_service_registration_consul.hcl.j2 b/fdio.infra.ansible/roles/vault/templates/vault_service_registration_consul.hcl.j2 new file mode 100644 index 0000000000..cd5da1ffb6 --- /dev/null +++ b/fdio.infra.ansible/roles/vault/templates/vault_service_registration_consul.hcl.j2 @@ -0,0 +1,22 @@ +service_registration "consul" { + address = "{{ vault_service_registration_consul_address }}" + check_timeout = "{{ vault_service_registration_consul_check_timeout }}" + disable_registration = "{{ vault_service_registration_consul_disable_registration | bool | lower }}" + scheme = "{{ vault_service_registration_consul_scheme }}" + service = "{{ vault_service_registration_consul_service }}" + service_tags = "{{ vault_service_registration_consul_service_tags }}" + {% if vault_service_registration_consul_service_address is defined and vault_service_registration_consul_service_address -%} + service_address = "{{ vault_service_registration_consul_service_address }}" + {% endif -%} + {% if vault_service_registration_consul_token is defined and vault_service_registration_consul_token -%} + token = "{{ vault_service_registration_consul_token }}" + {% endif -%} + {% if vault_service_registration_consul_scheme == "https" -%} + tls_ca_file="{{ vault_service_registration_consul_tls_config_path }}/{{ vault_service_registration_consul_tls_ca_file }}" + tls_cert_file = "{{ vault_service_registration_consul_tls_config_path }}/{{ vault_service_registration_consul_tls_cert_file }}" + tls_key_file = "{{ vault_service_registration_consul_tls_config_path }}/{{ vault_service_registration_consul_tls_key_file }}" + tls_min_version = "{{ vault_service_registration_consul_tls_min_version }}" + tls_skip_verify = "{{ vault_service_registration_consul_tls_skip_verify }}" + {% endif %} + +} \ No newline at end of file -- cgit 1.2.3-korg