eagleusb.consul_acl
ansible-consul-acl
Administra ACL y Tokens de Consul de forma declarativa con Ansible.
Requisitos
- python-consul2 = ">=0.1.4"
- requests = "*"
- pyhcl = ">=0.4.4"
Inicio Rápido
ansible-galaxy install eagleusb.consul_acl
Variables
| Nombre | Requerido | Valor por Defecto | Descripción |
|---|---|---|---|
| consul_master_token | sí | nil | token maestro privilegiado para acceder a la API de Consul |
| consul_server | sí | - | dirección, puerto y esquema del servidor de Consul |
| consul_client_token | no | [] | tokens a añadir o actualizar con las reglas asociadas |
| consul_remove_token | no | [] | tokens a eliminar de Consul |
Ejemplo de Playbook
- name: "consul-acl"
hosts: all
roles:
- role: "ansible-consul-acl"
vars:
consul_server:
addr: "127.0.0.1"
port: 8500
scheme: "http"
consul_master_token: "123-456-789"
consul_client_token:
- client: "foobar-todelete-later"
token: "123-456-789"
- client: "foobar-with-random-token"
- client: "foobar-with-datacenters"
datacenters:
- "dc1"
- client: "foobar-shuttle"
token: "123-456-789"
rules:
event:
"fiesta":
policy: write
key:
"foo/bar":
policy: read
"foo/private":
policy: deny
keyring: write
node:
"my-node":
policy: write
operator: read
query:
"":
policy: write
service:
"consul":
policy: write
session:
"standup":
policy: write
consul_remove_token:
- client: "foobar-todelete-later"
Licencia
Instalar
ansible-galaxy install eagleusb.consul_aclLicencia
gpl-3.0
Descargas
195
Propietario
Since I discovered a keyboard with my Performa 6200, I didn't let it go.