forked from oxidecomputer/omicron
-
Notifications
You must be signed in to change notification settings - Fork 0
/
config.toml
65 lines (52 loc) · 1.89 KB
/
config.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
#
# Oxide API: example configuration file
#
[console]
# Directory for static assets. Absolute path or relative to CWD.
static_dir = "out/console-assets"
cache_control_max_age_minutes = 10
session_idle_timeout_minutes = 480 # 6 hours
session_absolute_timeout_minutes = 1440 # 24 hours
# List of authentication schemes to support.
#
# This is not fleshed out yet and the only reason to change it now is for
# working on authentication or authorization.
[authn]
# TODO(https://github.com/oxidecomputer/omicron/issues/372): Remove "spoof".
schemes_external = ["spoof", "session_cookie", "access_token"]
[log]
# Show log messages of this level and more severe
level = "info"
# Example output to a terminal (with colors)
mode = "stderr-terminal"
# Example output to a file, appending if it already exists.
#mode = "file"
#path = "logs/server.log"
#if_exists = "append"
# Configuration for interacting with the timeseries database
[timeseries_db]
address = "[::1]:8123"
[deployment]
# Identifier for this instance of Nexus
id = "e6bff1ff-24fb-49dc-a54e-c6a350cd4d6c"
rack_id = "c19a698f-c6f9-4a17-ae30-20d711b8f7dc"
[[deployment.dropshot_external]]
# IP Address and TCP port on which to listen for the external API
bind_address = "127.0.0.1:12220"
# Allow larger request bodies (1MiB) to accomodate firewall endpoints (one
# rule is ~500 bytes)
request_body_max_bytes = 1048576
[deployment.dropshot_internal]
# IP Address and TCP port on which to listen for the internal API
bind_address = "127.0.0.1:12221"
[deployment.subnet]
net = "fd00:1122:3344:0100::/56"
[deployment.database]
# URL for connecting to the database
type = "from_url"
url = "postgresql://[email protected]:32221/omicron?sslmode=disable"
# Tunable configuration parameters, for testing or experimentation
[tunables]
# The maximum allowed prefix (thus smallest size) for a VPC Subnet's
# IPv4 subnetwork. This size allows for ~60 hosts.
max_vpc_ipv4_subnet_prefix = 26