Skip to content
/ director-os-conf Public

Forked os-conf release, which also functions on BOSH directors

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

conzetti/director-os-conf

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

152 Commits
.final_builds
.final_builds
 
 
ci
ci
 
 
config
config
 
 
jobs
jobs
 
 
manifests
manifests
 
 
packages
packages
 
 
releases/os-conf
releases/os-conf
 
 
sbin
sbin
 
 
src
src
 
 
.envrc
.envrc
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
NOTICE
NOTICE
 
 
README.md
README.md
 
 

Repository files navigation

BOSH Linux OS Configuration Release

Enables configuration of a typical Linux OS:

  • customize login banner text (job: custom_login_banner)
  • add UNIX users to VM (job: director_user_add)
  • add system wide CA certificates (job: ca_certs)
  • configure resolv.conf search domain (job: resolv)
  • change TCP keepalive kernel args (job: tcp_keepalive)
  • apply arbitrary sysctls (job: sysctl)

See https://github.com/cloudfoundry-incubator/windows-utilities-release for Windows OS configuration.

For a description of these and other functions, see jobs/.

Building a release

bosh create-release \
  --name director-os-conf \
  --version 21 \
  --tarball /tmp/director-os-conf-release-21.0.0.tgz

Usage

Include the release:

releases:
  name: director-os-conf
  version: latest

Examples

In this example, we use BOSH's Runtime Config to customize login banner and create two users: first, an operator user with an encrypted password; second, a backup user with an ssh-key:

addons:
  - name: director-os-configuration
    jobs:
    - name: custom_login_banner
      release: director-os-conf
      properties:
        login_banner:
          text: |
            Authorized Use Only.
            Unauthorized use will be prosecuted to the fullest extent of the law.
    - name: director_user_add
      release: director-os-conf
      properties:
        persistent_homes: true
        users:
        - name: backup
          public_key: "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDbss5XtLYRYDeV8AmouVYOHmYPxPsN4F59fZnY4kJnimM3sk5TbP0ow19GMDppQOPzAQ1TcYH4sYhpnxwq5f32XYtw12rFnO8BatHISWIdjoEjHfdA1qLIMGouWZPbGIQ1qURbfJdR9e2shS7U/WSXD+AJ9Zy0ZKTsIvlukWSX8Nsxvfn7VaAFvhgI3YPmhjV3TCEVMDsWGbBXlMq+qiJt22JEOw+3dnrvfGzRUULGznO/8y4NvVQsQc5KGnJkeQWkmlOIrhUGYwd/hMn6zQEIxkR4elmwp+pjyLR0qYLUFjpMn2GJMG7lvTzF8SzQLhzTVrjW1E3nve2eCuJ5bB6/"
          shell: /bin/zsh # OPTIONAL: Defaults to `/bin/bash`
          sudo: false # OPTIONAL: Defaults to `true`

In this example, we configure our BOSH deployment manifest to configure the DNS search domain to pivotal.io and the TCP keepalive kernel settings:

instance_groups:
- name: network-infrastructure
  jobs:
  - name: tcp_keepalive
    release: director-os-conf
    properties:
      tcp_keepalive:
        time:     120
        interval:  30
        probes:     8
  - name: resolv
    release: director-os-conf
    properties:
      search: pivotal.io

See manifests/ and jobs/*/spec for more examples.

About

Forked os-conf release, which also functions on BOSH directors

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 35

+ 21 contributors

Languages