Skip to content

vault job from safe/0.3.2

Github source: 4342f1d or master branch

Properties

safe

peer

force_bind_default_ip

Forces Consul agent to bind to the default ip address, necessary when using non RFC1918 space in a private context.

Default
false
port

TCP port to use for peer-to-peer communication

Default
8100
tls
ca

TLS CA certificate to use for verifying peer-to-peer communication. If not provided, a self-signed certificate will be automatically generated and used.

certificate

TLS certificate to use for peer-to-peer communication. If not provided, a self-signed certificate will be automatically generated and used.

key

TLS private key to use for peer-to-peer communication. If not provided, a self-signed certificate will be automatically generated and used.

use_self_signed_certs

Indicate whether we generate self-signed peer certificates

Default
false
verify

Verify the TLS certificates presented by the Consul backend

Default
true

port

TCP port to bind the Vault on. Defaults to 443.

Default
443

tls

certificate

TLS certificate to use for securing communnication with clients.

key

TLS private key to use for securing communication with clients.

ui

If set to true, the Vault UI will be enabled.

Default
false

Templates

Templates are rendered and placed onto corresponding instances during the deployment process. This job's templates will be placed into /var/vcap/jobs/vault/ directory (learn more).

  • bin/consul (from bin/consul)
  • bin/pre-start (from bin/pre-start)
  • bin/strongbox (from bin/strongbox)
  • bin/vault (from bin/vault)
  • config/consul.json (from config/consul.conf)
  • config/vault.config (from config/vault.conf)
  • tls/peer/ca.pem (from tls/peer/ca.pem)
  • tls/peer/cert.pem (from tls/peer/cert.pem)
  • tls/peer/key.pem (from tls/peer/key.pem)
  • tls/vault/cert.pem (from tls/vault/cert.pem)
  • tls/vault/key.pem (from tls/vault/key.pem)

Packages

Packages are compiled and placed onto corresponding instances during the deployment process. Packages will be placed into /var/vcap/packages/ directory.