cluster

ca

scopable False
required False
default system/sec/ca-<clustername>
scope order specific > generic

The path of the secret hosting the ca certificate that the listener use to validate clients certificates.

cert

scopable False
required False
default system/sec/cert-<clustername>
scope order specific > generic

The path of the secret hosting the certificate that the listener use for its tls socket.

dns

scopable True
required False
default []
scope order specific > generic
convert list

The list of nodes to set as dns in the containers resolvers. If set, the search will also be set to <svcname>.<clustername> and <clustername>.

drpnodes

scopable False
required False
default None
scope order specific > generic
convert list

This list is fetched from the join command payload received from the joined node. The service configuration {clusterdrpnodes} is resolved to this keyword value.

id

scopable True
required False
default <auto-generated>
scope order specific > generic

This information is fetched from the join command payload received from the joined node.

name

scopable True
required False
default default
scope order specific > generic

This information is fetched from the join command payload received from the joined node.

nodes

scopable False
required False
default None
scope order specific > generic
convert list

This list is fetched from the join command payload received from the joined node. The service configuration {clusternodes} is resolved to this keyword value.

quorum

scopable False
required False
default None
scope order specific > generic
convert boolean

Should a split segment of the cluster commit suicide. Default is False. If set to true, please set at least 2 arbitrators so you can rolling upgrade the opensvc daemons.

secret

scopable True
required False
default <random autogenerated on first use>
scope order specific > generic

The cluster shared secret. Used to encrypt/decrypt data with AES256. This secret is either autogenerated or fetched from a join command.