Головна сторінка Огляд Довідка
Реєстрація Увійти
shixiong
/
okd
1
0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Дерево: 60ad4626f0
Гілки Теги
okd
/
roles
/
openshift_logging_elasticsearch
/
templates
/
elasticsearch.yml.j2

elasticsearch.yml.j2 2.1 KB
Історія Запис

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. cluster:
    2. 

  2.   name: ${CLUSTER_NAME}
    3. 

  3. 

  4. script:
    5. 

  5.   inline: on
    6. 

  6.   indexed: on
    7. 

  7. 

  8. index:
    9. 

  9.   number_of_shards: 1
    10. 

  10.   number_of_replicas: 0
    11. 

  11.   auto_expand_replicas: 0-2
    12. 

  12.   unassigned.node_left.delayed_timeout: 2m
    13. 

  13.   translog:
    14. 

  14.     flush_threshold_size: 256mb
    15. 

  15.     flush_threshold_period: 5m
    16. 

  16. 

  17. node:
    18. 

  18.   master: ${IS_MASTER}
    19. 

  19.   data: ${HAS_DATA}
    20. 

  20. 

  21. network:
    22. 

  22.   host: 0.0.0.0
    23. 

  23. 

  24. cloud:
    25. 

  25.   kubernetes:
    26. 

  26.     service: ${SERVICE_DNS}
    27. 

  27.     namespace: ${NAMESPACE}
    28. 

  28. 

  29. discovery:
    30. 

  30.   type: kubernetes
    31. 

  31.   zen.ping.multicast.enabled: false
    32. 

  32. 

  33. gateway:
    34. 

  34.   expected_master_nodes: ${NODE_QUORUM}
    35. 

  35.   recover_after_nodes: ${RECOVER_AFTER_NODES}
    36. 

  36.   expected_nodes: ${RECOVER_EXPECTED_NODES}
    37. 

  37.   recover_after_time: ${RECOVER_AFTER_TIME}
    38. 

  38. 

  39. io.fabric8.elasticsearch.authentication.users: ["system.logging.kibana", "system.logging.fluentd", "system.logging.curator", "system.admin"]
    40. 

  40. 

  41. openshift.config:
    42. 

  42.   use_common_data_model: true
    43. 

  43.   project_index_prefix: "project"
    44. 

  44.   time_field_name: "@timestamp"
    45. 

  45. 

  46. openshift.searchguard:
    47. 

  47.   keystore.path: /etc/elasticsearch/secret/admin.jks
    48. 

  48.   truststore.path: /etc/elasticsearch/secret/searchguard.truststore
    49. 

  49. 

  50. openshift.operations.allow_cluster_reader: {{allow_cluster_reader | default ('false')}}
    51. 

  51. 

  52. path:
    53. 

  53.   data: /elasticsearch/persistent/${CLUSTER_NAME}/data
    54. 

  54.   logs: /elasticsearch/${CLUSTER_NAME}/logs
    55. 

  55.   work: /elasticsearch/${CLUSTER_NAME}/work
    56. 

  56.   scripts: /elasticsearch/${CLUSTER_NAME}/scripts
    57. 

  57. 

  58. searchguard:
    59. 

  59.   authcz.admin_dn:
    60. 

  60.   - CN=system.admin,OU=OpenShift,O=Logging
    61. 

  61.   config_index_name: ".searchguard.${HOSTNAME}"
    62. 

  62.   ssl:
    63. 

  63.     transport:
    64. 

  64.       enabled: true
    65. 

  65.       enforce_hostname_verification: false
    66. 

  66.       keystore_type: JKS
    67. 

  67.       keystore_filepath: /etc/elasticsearch/secret/searchguard.key
    68. 

  68.       keystore_password: kspass
    69. 

  69.       truststore_type: JKS
    70. 

  70.       truststore_filepath: /etc/elasticsearch/secret/searchguard.truststore
    71. 

  71.       truststore_password: tspass
    72. 

  72.     http:
    73. 

  73.       enabled: true
    74. 

  74.       keystore_type: JKS
    75. 

  75.       keystore_filepath: /etc/elasticsearch/secret/key
    76. 

  76.       keystore_password: kspass
    77. 

  77.       clientauth_mode: OPTIONAL
    78. 

  78.       truststore_type: JKS
    79. 

  79.       truststore_filepath: /etc/elasticsearch/secret/truststore
    80. 

  80.       truststore_password: tspass
    81.