pyceo/etc/ceod.ini

119 lines
3.1 KiB
INI

[DEFAULT]
base_domain = csclub.uwaterloo.ca
[ceod]
# this is the host with the ceod/admin Kerberos key
admin_host = phosphoric-acid
# this is the host with NFS no_root_squash
fs_root_host = phosphoric-acid
# this is the host with root access to the databases
database_host = caffeine
# this is the host where clubs' websites are hosted
webhosting_host = caffeine
# this is the host which can make API requests to Mailman
mailman_host = mailman
# this is the host which is running a CloudStack management server
cloud_host = biloba
use_https = true
port = 9987
[ldap]
admin_principal = ceod/admin
admin_principal_ccache = /run/ceod/admin_ccache
server_url = ldaps://auth1.csclub.uwaterloo.ca
sasl_realm = CSCLUB.UWATERLOO.CA
users_base = ou=People,dc=csclub,dc=uwaterloo,dc=ca
groups_base = ou=Group,dc=csclub,dc=uwaterloo,dc=ca
sudo_base = ou=SUDOers,dc=csclub,dc=uwaterloo,dc=ca
[uwldap]
server_url = ldaps://uwldap.uwaterloo.ca
base = dc=uwaterloo,dc=ca
[adldap]
dns_srv_name = _ldap._tcp.teaching.ds.uwaterloo.ca
base = dc=teaching,dc=ds,dc=uwaterloo,dc=ca
[members]
min_id = 20001
max_id = 29999
home = /users
skel = /users/skel
[clubs]
min_id = 30001
max_id = 39999
home = /users
skel = /users/skel
[mail]
smtp_url = smtp://mail.csclub.uwaterloo.ca
smtp_starttls = true
[mailman3]
# This is only used on the mailman_host.
api_base_url = http://localhost:8001/3.1
api_username = REPLACE_ME
api_password = REPLACE_ME
new_member_list = csc-general
[auxiliary groups]
syscom = office,staff,adm,src,git
office = cdrom,audio,video,www
[auxiliary mailing lists]
syscom = syscom,syscom-alerts,syscom-moderators,packages,git,ceo
exec = exec,exec-moderators
[positions]
required = president,vice-president,sysadmin
available = president,vice-president,sysadmin,treasurer,
secretary,cro,webmaster,offsck,ext-affairs-lead,
marketing-lead,design-lead,events-lead,reps-lead,
mods-lead,photography-lead,codey-bot-lead,other
[mysql]
# This is only used on the database_host.
username = REPLACE_ME
password = REPLACE_ME
host = localhost
[postgresql]
# This is only used on the database_host.
username = REPLACE_ME
password = REPLACE_ME
host = localhost
[cloudstack]
api_key = REPLACE_ME
secret_key = REPLACE_ME
base_url = http://localhost:8080/client/api
[cloud vhosts]
acme_challenge_dir = /var/www
vhost_dir = /etc/nginx/ceod/member-vhosts
ssl_dir = /etc/nginx/ceod/member-ssl
default_ssl_cert = /etc/ssl/private/csclub.cloud.chain
default_ssl_key = /etc/ssl/private/csclub.cloud.key
k8s_ssl_cert = /etc/nginx/ceod/syscom-ssl/k8s.csclub.cloud.chain
k8s_ssl_key = /etc/nginx/ceod/syscom-ssl/k8s.csclub.cloud.key
rate_limit_seconds = 60
max_vhosts_per_account = 10
members_domain = csclub.cloud
k8s_members_domain = k8s.csclub.cloud
ip_range_min = 172.19.134.10
ip_range_max = 172.19.134.160
reload_web_server_cmd = /root/bin/reload-nginx.sh
[k8s]
members_clusterrole = csc-members-default
members_group = csc-members
authority_cert_path = /etc/csc/k8s-authority.crt
server_url = https://172.19.134.149:6443
[registry]
base_url = https://registry.cloud.csclub.uwaterloo.ca/api/v2.0
username = REPLACE_ME
password = REPLACE_ME
projects_to_ignore = library, openwhisk