cluster¶
ca¶
| scopable | False |
| required | False |
| default | system/sec/ca-<clustername> |
| scope order | specific > generic |
The path of the secret hosting the ca certificate that the listener use to validate clients certificates.
cert¶
| scopable | False |
| required | False |
| default | system/sec/cert-<clustername> |
| scope order | specific > generic |
The path of the secret hosting the certificate that the listener use for its tls socket.
dns¶
| scopable | True |
| required | False |
| default | |
| scope order | specific > generic |
| convert | list |
The list of nodes to set as dns in the containers resolvers. If set, the search will also be set to <name>.<namespace>.svc.<clustername>, <namespace>.svc.<clustername> and <clustername>.
drpnodes¶
| scopable | False |
| required | False |
| default | None |
| scope order | specific > generic |
| convert | list |
This list is fetched from the join command payload received from the joined node. The service configuration {clusterdrpnodes} is resolved to this keyword value.
id¶
| scopable | True |
| required | False |
| default | <auto-generated> |
| scope order | specific > generic |
This information is fetched from the join command payload received from the joined node.
name¶
| scopable | True |
| required | False |
| default | default |
| scope order | specific > generic |
This information is fetched from the join command payload received from the joined node.
nodes¶
| scopable | False |
| required | False |
| default | None |
| scope order | specific > generic |
| convert | list |
This list is fetched from the join command payload received from the joined node. The service configuration {clusternodes} is resolved to this keyword value.
quorum¶
| scopable | False |
| required | False |
| default | False |
| scope order | specific > generic |
| convert | boolean |
Should a split segment of the cluster commit suicide. Default is False. If set to true, please set at least 2 arbitrators so you can rolling upgrade the opensvc daemons.
secret¶
| scopable | True |
| required | False |
| default | <random autogenerated on first use> |
| scope order | specific > generic |
The cluster shared secret. Used to encrypt/decrypt data with AES256. This secret is either autogenerated or fetched from a join command.
vip¶
| scopable | True |
| required | False |
| default | None |
| scope order | specific > generic |
The cluster virtual ip. If configured, the daemon creates a system/svc/vip failover service to manage this ip.