Created
February 15, 2016 00:25
-
-
Save battlecow/c9a507c76ade421a6e14 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #cloud-config | |
| ssh_authorized_keys: | |
| - ssh-rsa xxxxxxxxxxxxxxxx coreOS@devops | |
| write_files: | |
| - path: /home/core/updateDocker-ca-certs.sh | |
| permissions: 755 | |
| owner: root:root | |
| content: | | |
| #!/bin/bash | |
| mkdir -p /etc/docker/certs.d/docker.jamfsw.corp | |
| cp /etc/ssl/certs/ca.pem /etc/docker/certs.d/docker.corp/ca.crt | |
| - path: /etc/ssl/certs/ca.pem | |
| permissions: 0644 | |
| owner: root:root | |
| content: | | |
| -----BEGIN CERTIFICATE----- | |
| -----END CERTIFICATE----- | |
| - path: /etc/sysctl.d/10-disable-ipv6conf.conf | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| net.ipv6.conf.ens192.disable_ipv6 = 1 | |
| coreos: | |
| units: | |
| - name: [email protected] | |
| content: | | |
| [Unit] | |
| Description=Bamboo Agent Container | |
| Requires=docker.service | |
| After=docker.service | |
| [Service] | |
| TimeoutStartSec=0 | |
| KillMode=none | |
| ExecStartPre=-/usr/bin/mkdir -p /bamboo-agents/agent.%i | |
| ExecStartPre=-/usr/bin/docker kill %H-bamboo-agent.%i | |
| ExecStartPre=-/usr/bin/docker rm %H-bamboo-agent.%i | |
| ExecStartPre=-/usr/bin/docker run -d -v /bamboo-agents/agent.%i:/root/bamboo-agent-home/xml-data/build-dir --name bamboo-agent-data.%i bamboo-agent-data | |
| ExecStartPre=/usr/bin/docker pull bamboo-agent | |
| ExecStart=/usr/bin/docker run --name=%H-bamboo-agent.%i -v /usr/lib/libdevmapper.so.1.02:/usr/lib/libdevmapper.so.1.02 -v /usr/bin/docker:/usr/bin/docker -v /var/run/docker.sock:/var/run/docker.sock --volumes-from=bamboo-agent-data.%i -e BAMBOO_DATA=%i -e HOST=%H -d bamboo-agent | |
| [Install] | |
| WantedBy=multi-user.target | |
| - name: docker-cleanup.service | |
| content: | | |
| [Unit] | |
| Description=Docker Cleanup Service | |
| [Service] | |
| Type=oneshot | |
| ExecStart=-/bin/bash -c "/usr/bin/docker rm -v $(docker ps -a |grep Exited |grep -v data |awk '{print $1}')" | |
| ExecStart=-/bin/bash -c "/usr/bin/docker rmi -f $(docker images |grep none | awk '{print $3}')" | |
| - name: docker-cleanup.timer | |
| content: | | |
| [Unit] | |
| Description=Cleanup Docker Timer | |
| [Timer] | |
| OnCalendar=*-*-* 06:00:00 | |
| Persistent=true | |
| [Install] | |
| WantedBy=timers.target | |
| - name: [email protected] | |
| command: start | |
| - name: docker-cleanup.timer | |
| command: start | |
| - name: update-ca-cert.service | |
| command: start | |
| content: | | |
| [Unit] | |
| Description=Update CA Certs | |
| Before=etcd2.service | |
| [Service] | |
| User=root | |
| ExecStart=/sbin/update-ca-certificates | |
| - name: update-docker-ca.service | |
| command: start | |
| content: | | |
| [Unit] | |
| Description=Update Docker CA | |
| Before=etcd2.service | |
| [Service] | |
| User=root | |
| ExecStart=/home/core/updateDocker-ca-certs.sh | |
| - name: etcd.service | |
| command: stop | |
| mask: true | |
| - name: etcd2.service | |
| command: stop | |
| mask: true | |
| - name: fleet.service | |
| command: stop | |
| mask: true |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment