From ae01290bcc6e7f6ca619342fce3641e5c5e8ffa7 Mon Sep 17 00:00:00 2001
From: Harald Hoyer <harald@matterlabs.dev>
Date: Tue, 9 Jul 2024 11:11:10 +0200
Subject: [PATCH] chore: change dns names for the vault cluster

Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
---
 packages/container-vault-sgx-azure/default.nix   |  2 +-
 packages/container-vault-start-config/config.hcl | 16 ++++++++--------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/packages/container-vault-sgx-azure/default.nix b/packages/container-vault-sgx-azure/default.nix
index a1461e8..f5826cd 100644
--- a/packages/container-vault-sgx-azure/default.nix
+++ b/packages/container-vault-sgx-azure/default.nix
@@ -48,7 +48,7 @@ nixsgxLib.mkSGXContainer {
         VAULT_API_ADDR.passthrough = true;
         VAULT_RAFT_NODE_ID.passthrough = true;
 
-        DNS_NAMES = "vault-1,vault-2,vault-3";
+        DNS_NAMES = "teepot-vault.teepot-vault,vault-0.teepot-vault,vault-1.teepot-vault,vault-2.teepot-vault";
 
         # otherwise vault will lock a lot of unused EPC memory
         VAULT_RAFT_INITIAL_MMAP_SIZE = "0";
diff --git a/packages/container-vault-start-config/config.hcl b/packages/container-vault-start-config/config.hcl
index d03baa6..d3b6551 100644
--- a/packages/container-vault-start-config/config.hcl
+++ b/packages/container-vault-start-config/config.hcl
@@ -16,9 +16,9 @@ listener "tcp" {
 }
 
 storage "raft" {
-  path    = "/opt/vault/data/"
-  # override vial env var VAULT_RAFT_NODE_ID
-  node_id = "vault-1"
+  path = "/opt/vault/data/"
+  # override via env var VAULT_RAFT_NODE_ID
+  node_id = "vault-0.teepot-vault"
 
   # Parameter needed because of slow plugin loading
   # may be relaxed for faster machines
@@ -27,19 +27,19 @@ storage "raft" {
   #autopilot_update_interval = "60s"
 
   retry_join {
-    leader_api_addr         = "https://vault-1:8210"
+    leader_api_addr         = "https://vault-0.teepot-vault:8210"
     leader_ca_cert_file     = "/opt/vault/cacert.pem"
     leader_client_cert_file = "/opt/vault/tls/tls.crt"
     leader_client_key_file  = "/opt/vault/tls/tls.key"
   }
   retry_join {
-    leader_api_addr         = "https://vault-2:8210"
+    leader_api_addr         = "https://vault-1.teepot-vault:8210"
     leader_ca_cert_file     = "/opt/vault/cacert.pem"
     leader_client_cert_file = "/opt/vault/tls/tls.crt"
     leader_client_key_file  = "/opt/vault/tls/tls.key"
   }
   retry_join {
-    leader_api_addr         = "https://vault-3:8210"
+    leader_api_addr         = "https://vault-2.teepot-vault:8210"
     leader_ca_cert_file     = "/opt/vault/cacert.pem"
     leader_client_cert_file = "/opt/vault/tls/tls.crt"
     leader_client_key_file  = "/opt/vault/tls/tls.key"
@@ -50,6 +50,6 @@ storage "raft" {
 plugin_directory = "/opt/vault/plugins"
 
 # override via env var VAULT_API_ADDR
-api_addr     = "https://vault:8210"
+api_addr = "https://teepot-vault.teepot-vault:8210"
 # override via env var VAULT_CLUSTER_ADDR
-cluster_addr = "https://vault:8211"
+cluster_addr = "https://teepot-vault.teepot-vault:8211"