/
spec
126 lines (113 loc) · 4.66 KB
/
spec
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
---
name: loggregator_trafficcontroller
templates:
bpm.yml.erb: config/bpm.yml
trafficcontroller.crt.erb: config/certs/trafficcontroller.crt
trafficcontroller.key.erb: config/certs/trafficcontroller.key
trafficcontroller_outgoing.crt.erb: config/certs/trafficcontroller_outgoing.crt
trafficcontroller_outgoing.key.erb: config/certs/trafficcontroller_outgoing.key
logcache_ca.crt.erb: config/certs/logcache_ca.crt
logcache_trafficcontroller.crt.erb: config/certs/logcache_trafficcontroller.crt
logcache_trafficcontroller.key.erb: config/certs/logcache_trafficcontroller.key
loggregator_ca.crt.erb: config/certs/loggregator_ca.crt
cc_trafficcontroller.crt.erb: config/certs/cc_trafficcontroller.crt
cc_trafficcontroller.key.erb: config/certs/cc_trafficcontroller.key
mutual_tls_ca.crt.erb: config/certs/mutual_tls_ca.crt
uaa_ca.crt.erb: config/certs/uaa_ca.crt
dns_health_check.erb: bin/dns_health_check
drain.erb: bin/drain
profile.sh.erb: bin/profile.sh
packages:
- loggregator_trafficcontroller
- profiler
provides:
- name: trafficcontroller
type: trafficcontroller
properties:
- loggregator.outgoing_dropsonde_port
consumes:
- name: doppler
type: doppler
optional: true
- name: log-cache
type: log-cache
optional: true
properties:
traffic_controller.enabled:
description: "Enable v1 Firehose"
default: true
traffic_controller.disable_access_control:
description: "Traffic controller bypasses authentication with the UAA and CC"
default: false
loggregator.outgoing_dropsonde_port:
description: "Port for outgoing dropsonde messages"
default: 8081
loggregator.outgoing_cert:
description: "TLS cert for outgoing dropsonde connection"
loggregator.outgoing_key:
description: "TLS key for outgoing dropsonde connection"
traffic_controller.security_event_logging.enabled:
description: "Enable logging of all requests made to the Traffic Controller in CEF format"
default: false
loggregator.uaa.client:
description: "Doppler's client id to connect to UAA"
default: "doppler"
loggregator.uaa.client_secret:
description: "Doppler's client secret to connect to UAA"
uaa.internal_url:
description: "Internal URL of UAA"
example: "https://uaa.service.cf.internal:8443"
default: ""
uaa.ca_cert:
description: "PEM encoded CA certificate for secure communication to UAA. Required if uaa.internal_url is provided."
default: ""
loggregator.tls.ca_cert:
description: "CA root required for key/cert verification"
loggregator.tls.trafficcontroller.cert:
description: "TLS certificate for trafficcontroller"
loggregator.tls.trafficcontroller.key:
description: "TLS key for trafficcontroller"
logcache.tls.server_name:
description: "The common name of the Log Cache server"
default: "log-cache"
logcache.override_addr:
description: "Address for log-cache to override from the default from the bosh link"
loggregator.doppler.addrs:
description: "The addresses of Dopplers (alternative to doppler link)"
doppler.grpc_port:
description: Port for outgoing log messages via GRPC
default: 8082
metron_endpoint.host:
description: "The host used to emit messages to the Metron agent"
default: "127.0.0.1"
metron_endpoint.grpc_port:
description: "The port used to emit grpc messages to the Metron agent"
default: 3458
traffic_controller.pprof_port:
description: "The pprof port for runtime profiling data"
default: 0
system_domain:
description: "Domain reserved for CF operator, base URL where the login, uaa, and other non-user apps listen"
ssl.skip_cert_verify:
description: "when connecting over https, ignore bad ssl certificates"
default: false
cc.internal_service_hostname:
description: "Internal hostname used to resolve the address of the Cloud Controller"
cc.tls_port:
description: "Port for internal TLS communication"
default: 9023
cc.mutual_tls.ca_cert:
description: "PEM-encoded CA certificate for secure, mutually authenticated TLS communication"
loggregator.tls.cc_trafficcontroller.cert:
description: "TLS certificate for communication between Cloud Controller and trafficcontroller"
loggregator.tls.cc_trafficcontroller.key:
description: "TLS key for communication between Cloud Controller and trafficcontroller"
loggregator.uaa_client_id:
description: "DEPRECATED in favor of loggregator.uaa.client."
default: ""
metric_emitter.interval:
description: "The interval that metrics are emitted to the metron."
default: "1m"
logging.format.timestamp:
description: "Format for timestamp in component logs. Valid values are 'deprecated' and 'rfc3339'."
default: "deprecated"