harald/teepot
1
0
Fork 0
mirror of https://github.com/matter-labs/teepot.git synced 2025-07-21 15:13:56 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

chore: change dns names for the vault cluster

Browse source 
Signed-off-by: Harald Hoyer <harald@matterlabs.dev>
This commit is contained in:
Harald Hoyer 2024-07-09 11:11:10 +02:00
parent 8dadc1f76b
commit ae01290bcc
Signed by: harald
GPG key ID: F519A1143B3FBE32
2 changed files with 9 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

2
packages/container-vault-sgx-azure/default.nix
View file

@ -48,7 +48,7 @@ nixsgxLib.mkSGXContainer {
VAULT_API_ADDR.passthrough = true; VAULT_API_ADDR.passthrough = true;
VAULT_RAFT_NODE_ID.passthrough = true; VAULT_RAFT_NODE_ID.passthrough = true;
DNS_NAMES = "vault-1,vault-2,vault-3"; DNS_NAMES = "teepot-vault.teepot-vault,vault-0.teepot-vault,vault-1.teepot-vault,vault-2.teepot-vault";
# otherwise vault will lock a lot of unused EPC memory # otherwise vault will lock a lot of unused EPC memory
VAULT_RAFT_INITIAL_MMAP_SIZE = "0"; VAULT_RAFT_INITIAL_MMAP_SIZE = "0";

16
packages/container-vault-start-config/config.hcl
View file

@ -16,9 +16,9 @@ listener "tcp" {
} }
storage "raft" { storage "raft" {
path = "/opt/vault/data/" path = "/opt/vault/data/"
# override vial env var VAULT_RAFT_NODE_ID # override via env var VAULT_RAFT_NODE_ID
node_id = "vault-1" node_id = "vault-0.teepot-vault"
# Parameter needed because of slow plugin loading # Parameter needed because of slow plugin loading
# may be relaxed for faster machines # may be relaxed for faster machines
@ -27,19 +27,19 @@ storage "raft" {
#autopilot_update_interval = "60s" #autopilot_update_interval = "60s"
retry_join { retry_join {
leader_api_addr = "https://vault-1:8210" leader_api_addr = "https://vault-0.teepot-vault:8210"
leader_ca_cert_file = "/opt/vault/cacert.pem" leader_ca_cert_file = "/opt/vault/cacert.pem"
leader_client_cert_file = "/opt/vault/tls/tls.crt" leader_client_cert_file = "/opt/vault/tls/tls.crt"
leader_client_key_file = "/opt/vault/tls/tls.key" leader_client_key_file = "/opt/vault/tls/tls.key"
} }
retry_join { retry_join {
leader_api_addr = "https://vault-2:8210" leader_api_addr = "https://vault-1.teepot-vault:8210"
leader_ca_cert_file = "/opt/vault/cacert.pem" leader_ca_cert_file = "/opt/vault/cacert.pem"
leader_client_cert_file = "/opt/vault/tls/tls.crt" leader_client_cert_file = "/opt/vault/tls/tls.crt"
leader_client_key_file = "/opt/vault/tls/tls.key" leader_client_key_file = "/opt/vault/tls/tls.key"
} }
retry_join { retry_join {
leader_api_addr = "https://vault-3:8210" leader_api_addr = "https://vault-2.teepot-vault:8210"
leader_ca_cert_file = "/opt/vault/cacert.pem" leader_ca_cert_file = "/opt/vault/cacert.pem"
leader_client_cert_file = "/opt/vault/tls/tls.crt" leader_client_cert_file = "/opt/vault/tls/tls.crt"
leader_client_key_file = "/opt/vault/tls/tls.key" leader_client_key_file = "/opt/vault/tls/tls.key"
@ -50,6 +50,6 @@ storage "raft" {
plugin_directory = "/opt/vault/plugins" plugin_directory = "/opt/vault/plugins"
# override via env var VAULT_API_ADDR # override via env var VAULT_API_ADDR
api_addr = "https://vault:8210" api_addr = "https://teepot-vault.teepot-vault:8210"
# override via env var VAULT_CLUSTER_ADDR # override via env var VAULT_CLUSTER_ADDR
cluster_addr = "https://vault:8211" cluster_addr = "https://teepot-vault.teepot-vault:8211"