[bottin] Pré-déploiement de gobottin

Ça marche !!
2020-02-01 11:15:50 +01:00 · 2020-02-01 11:15:50 +01:00 · ba5590ce97
parent 62b7b86702
commit ba5590ce97
2 changed files with 72 additions and 0 deletions
--- a/consul/configuration/bottin/config.json
+++ b/consul/configuration/bottin/config.json
@ -0,0 +1,13 @@
+{
+  "suffix": "dc=deuxfleurs,dc=fr",
+  "bind": "0.0.0.0:1389",
+  "consul_host": "http://consul.service.2.cluster.deuxfleurs.fr:8500",
+  "acl": [
+		"*,dc=deuxfleurs,dc=fr::read:*:* !userpassword",
+		"*::read modify:SELF:*",
+		"cn=admin,dc=deuxfleurs,dc=fr::read add modify delete:*:*",
+		"*:cn=admin,ou=groups,dc=deuxfleurs,dc=fr:read add modify delete:*:*",
+		"ANONYMOUS::bind:*,ou=users,dc=deuxfleurs,dc=fr:",
+		"ANONYMOUS::bind:cn=admin,dc=deuxfleurs,dc=fr:"
+  ]
+}
--- a/nomad/bottin2.hcl
+++ b/nomad/bottin2.hcl
@ -0,0 +1,59 @@
+job "directory2" {
+  datacenters = ["dc1"]
+  type = "service"
+
+  constraint {
+    attribute = "${attr.cpu.arch}"
+    value     = "amd64"
+  }
+
+  group "ldap" {
+    count = 1
+    task "server" {
+      driver = "docker"
+      config {
+        image = "lxpz/bottin_amd64:1"
+        readonly_rootfs = true
+        port_map {
+          ldap_port = 1389
+        }
+        volumes = [
+          "secrets/config.json:/config.json"
+        ]
+      }
+
+      resources {
+        memory = 100
+        network {
+          port "ldap_port" {
+            static = "389"
+          }
+        }
+      }
+
+      template {
+        data = "{{ key \"configuration/bottin/config.json\" }}"
+        destination = "secrets/config.json"
+      }
+
+      service {
+        tags = ["bottin"]
+        port = "ldap_port"
+        address_mode = "host"
+        name = "bottin2"
+        check {
+          type = "tcp"
+          port = "ldap_port"
+          interval = "60s"
+          timeout = "5s"
+          check_restart {
+            limit = 3
+            grace = "90s"
+            ignore_warnings = false
+          }
+        }
+      }
+    }
+  }
+}
+