summaryrefslogtreecommitdiff
path: root/global/overlay/usr/local/etc
diff options
context:
space:
mode:
authorLinus Nordberg <linus@nordu.net>2015-05-29 13:18:21 +0200
committerLinus Nordberg <linus@nordu.net>2015-05-29 13:18:21 +0200
commitfd36e205a52d035319f8384e7048e08ae88cb347 (patch)
tree4a9b384eb3c2bde3cca497ee8d45a400d7770f5c /global/overlay/usr/local/etc
parent0ce7d129528e0f2de9f32eb41404670a14db591a (diff)
urd log config, first cutct-ops-2015-05-29-v01
Diffstat (limited to 'global/overlay/usr/local/etc')
-rw-r--r--global/overlay/usr/local/etc/catlfish/frontend-1.cfg20
-rw-r--r--global/overlay/usr/local/etc/catlfish/frontend-2.cfg20
-rw-r--r--global/overlay/usr/local/etc/catlfish/merge-1.cfg10
-rw-r--r--global/overlay/usr/local/etc/catlfish/sign-1.cfg15
-rw-r--r--global/overlay/usr/local/etc/catlfish/sign-2.cfg15
-rw-r--r--global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg27
6 files changed, 107 insertions, 0 deletions
diff --git a/global/overlay/usr/local/etc/catlfish/frontend-1.cfg b/global/overlay/usr/local/etc/catlfish/frontend-1.cfg
new file mode 100644
index 0000000..f953368
--- /dev/null
+++ b/global/overlay/usr/local/etc/catlfish/frontend-1.cfg
@@ -0,0 +1,20 @@
+localnodes:
+ - frontend-1
+
+publicaddresses:
+ frontend-1: 127.0.0.1:4711
+
+publichttpaddresses:
+ frontend-1: 0.0.0.0:8080
+
+paths:
+ configdir: .
+ knownroots: /usr/local/etc/catlfish/known_roots
+ https_cacertfile: /usr/local/etc/catlfish/cacert.pem
+ logpublickey: /usr/local/etc/catlfish/logpubkey.pem
+ publickeys: /usr/local/etc/catlfish/publickeys
+ privatekeys: /usr/local/etc/catlfish/privatekeys
+ db: /var/local/db/catlfish/
+
+ https_certfile: /usr/local/etc/catlfish/frontend-1.pem
+ https_keyfile: /usr/local/etc/catlfish/frontend-1-key.pem
diff --git a/global/overlay/usr/local/etc/catlfish/frontend-2.cfg b/global/overlay/usr/local/etc/catlfish/frontend-2.cfg
new file mode 100644
index 0000000..be5c245
--- /dev/null
+++ b/global/overlay/usr/local/etc/catlfish/frontend-2.cfg
@@ -0,0 +1,20 @@
+localnodes:
+ - frontend-2
+
+publicaddresses:
+ frontend-1: 127.0.0.1:4711
+
+publichttpaddresses:
+ frontend-1: 0.0.0.0:8080
+
+paths:
+ configdir: .
+ knownroots: /usr/local/etc/catlfish/known_roots
+ https_cacertfile: /usr/local/etc/catlfish/cacert.pem
+ logpublickey: /usr/local/etc/catlfish/logpubkey.pem
+ publickeys: /usr/local/etc/catlfish/publickeys
+ privatekeys: /usr/local/etc/catlfish/privatekeys
+ db: /var/local/db/catlfish/
+
+ https_certfile: /usr/local/etc/catlfish/frontend-2.pem
+ https_keyfile: /usr/local/etc/catlfish/frontend-2-key.pem
diff --git a/global/overlay/usr/local/etc/catlfish/merge-1.cfg b/global/overlay/usr/local/etc/catlfish/merge-1.cfg
new file mode 100644
index 0000000..12c08cb
--- /dev/null
+++ b/global/overlay/usr/local/etc/catlfish/merge-1.cfg
@@ -0,0 +1,10 @@
+nodename: merge-1
+
+paths:
+ known_roots: /usr/local/etc/catlfish/known_roots/
+ https_cacertfile: /usr/local/etc/catlfish/cacert.pem
+ logpublickey: /usr/local/etc/catlfish/logkey.pem
+ publickeys: /usr/local/etc/catlfish/publickeys
+ privatekeys: /usr/local/etc/catlfish
+ verifycert_bin: /usr/local/src/catlfish/verifycert.erl
+ mergedb: /var/local/db/catlfish
diff --git a/global/overlay/usr/local/etc/catlfish/sign-1.cfg b/global/overlay/usr/local/etc/catlfish/sign-1.cfg
new file mode 100644
index 0000000..25ccd89
--- /dev/null
+++ b/global/overlay/usr/local/etc/catlfish/sign-1.cfg
@@ -0,0 +1,15 @@
+paths:
+ configdir: .
+ https_cacertfile: /usr/local/etc/catlfish/cacert.pem
+ logpublickey: /usr/local/etc/catlfish/logkey.pem
+ publickeys: /usr/local/etc/catlfish/publickeys
+ privatekeys: /usr/local/etc/catlfish/privatekeys
+
+ https_certfile: /usr/local/etc/catlfish/sign-1.pem
+ https_keyfile: /usr/local/etc/catlfish/sign-1-key.pem
+
+hsm:
+ library: /usr/lunasa/lib/libCryptoki2_64.so
+ slot: 1
+ label: CMU Unwrapped ECDSA Private Key
+ pin: "@/usr/local/etc/catlfish/lunahsm-pin"
diff --git a/global/overlay/usr/local/etc/catlfish/sign-2.cfg b/global/overlay/usr/local/etc/catlfish/sign-2.cfg
new file mode 100644
index 0000000..b0ea289
--- /dev/null
+++ b/global/overlay/usr/local/etc/catlfish/sign-2.cfg
@@ -0,0 +1,15 @@
+paths:
+ configdir: .
+ https_cacertfile: /usr/local/etc/catlfish/cacert.pem
+ logpublickey: /usr/local/etc/catlfish/logkey.pem
+ publickeys: /usr/local/etc/catlfish/publickeys
+ privatekeys: /usr/local/etc/catlfish/privatekeys
+
+ https_certfile: /usr/local/etc/catlfish/sign-2.pem
+ https_keyfile: /usr/local/etc/catlfish/sign-2-key.pem
+
+hsm:
+ library: /usr/lunasa/lib/libCryptoki2_64.so
+ slot: 1
+ label: CMU Unwrapped ECDSA Private Key
+ pin: "@/usr/local/etc/catlfish/lunahsm-pin"
diff --git a/global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg b/global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg
new file mode 100644
index 0000000..b235444
--- /dev/null
+++ b/global/overlay/usr/local/etc/catlfish/urd.appendto.org.cfg
@@ -0,0 +1,27 @@
+baseurl: https://urd.appendto.org/
+
+frontendnodes:
+ - name: frontend-1
+ publicaddress: frontend-1.urd.appendto.org:443
+ address: frontend-1.urd.appendto.org:8082
+ - name: frontend-2
+ publicaddress: frontend-2.urd.appendto.org:443
+ address: frontend-2.urd.appendto.org:8082
+
+storagenodes:
+ - name: storage-1
+ address: frontend-1.urd.appendto.org:8081
+ - name: storage-2
+ address: frontend-2.urd.appendto.org:8081
+
+signingnodes:
+ - name: signing-1
+ address: sign-1.urd.appendto.org:8088
+ - name: signing-2
+ address: sign-2.urd.appendto.org:8088
+
+mergenodes:
+ - name: merge-1
+ - name: merge-2
+
+storage-quorum-size: 1