ozzozz · August 20, 2015 07:43
diff --git a/cf-4vm.yml b/cf-4vm.yml
 ---
 name: cf
 director_uuid: <%= `bosh status --uuid` %>

 releases:
  - name: cf
    version: 214

 networks:
  - name: cf1
    type: manual
    subnets:
    - range: 10.0.0.0/24
      gateway: 10.0.0.1
      dns: [8.8.8.8, 8.8.4.4]
      reserved: ["10.0.0.2 - 10.0.0.9","10.0.0.200 - 10.0.0.254"]
      static: ["10.0.0.10 - 10.0.0.99"]
      cloud_properties:
        net_id: ac6c922c-ff95-44c5-9c08-d921361c5ca1 # <= OpenStack tenant's private network id
        security_groups:
          - cf
  - name: floating
    type: vip
    cloud_properties: {}

 compilation:
  workers: 2
  network: cf1
  reuse_compilation_vms: true
  cloud_properties:
    instance_type: m1.medium

 update:
  canaries: 1
  canary_watch_time: 30000-600000
  update_watch_time: 30000-600000
  max_in_flight: 1
  serial: false

 resource_pools:
  - name: small
    network: cf1
    stemcell:
      name: bosh-openstack-kvm-ubuntu-trusty-go_agent
      version: latest
    cloud_properties:
      instance_type: m1.small
  - name: medium
    network: cf1
    stemcell:
      name: bosh-openstack-kvm-ubuntu-trusty-go_agent
      version: latest
    cloud_properties:
      instance_type: m1.medium
  - name: large
    network: cf1
    stemcell:
      name: bosh-openstack-kvm-ubuntu-trusty-go_agent
      version: latest
    cloud_properties:
      instance_type: m1.large

 jobs:
  - name: core
    resource_pool: small
    instances: 1
    templates:
      - name: postgres
        release: cf
      - name: nats
        release: cf
      - name: etcd
        release: cf
 #      - name: etcd_metrics_server
 #        release: cf
      - name: hm9000
        release: cf
      - name: consul_agent
        release: cf
      - name: metron_agent
        release: cf
    networks:
      - name: cf1
        default:
         - gateway
         - dns
        static_ips:
         - 10.0.0.11
    persistent_disk: 16000
    properties:
      consul:
        agent:
          mode: server

  - name: api
    resource_pool: medium
    instances: 1
    templates:
      - name: uaa
        release: cf
      - name: cloud_controller_ng
        release: cf
      - name: cloud_controller_clock
        release: cf
      - name: cloud_controller_worker
        release: cf
 #      - name: routing-api
 #        release: cf
      - name: consul_agent
        release: cf
      - name: metron_agent
        release: cf
      - name: statsd-injector
        release: cf
    networks:
      - name: cf1
        default:
         - gateway
         - dns
        static_ips:
         - 10.0.0.12
    persistent_disk: 102400
    properties:
      consul:
        agent:
          services:
            uaa: {}
            cloud_controller_ng: {}
 #            routing-api: {}

  - name: router
    resource_pool: small
    instances: 1
    templates:
      - name: gorouter
        release: cf
      - name: loggregator_trafficcontroller
        release: cf
      - name: doppler
        release: cf
      - name: syslog_drain_binder
        release: cf
      - name: consul_agent
        release: cf
      - name: metron_agent
        release: cf
    networks:
      - name: floating
        static_ips:
         - 192.168.13.70 # <= floating IP address
      - name: cf1
        default:
         - gateway
         - dns
        static_ips:
         - 10.0.0.13
    properties:
      consul:
        agent:
          services:
            gorouter: {}

  - name: dea
    resource_pool: medium
    instances: 1
    templates:
      - name: dea_next
        release: cf
      - name: dea_logging_agent
        release: cf
      - name: metron_agent
        release: cf
    networks:
      - name: cf1
        default:
          - gateway
          - dns
        static_ips:
         - 10.0.0.21
    update:
      max_in_flight: 1

  - name: smoke
    lifecycle: errand
    resource_pool: small
    instances: 1
    templates:
      - name: smoke-tests
        release: cf
    networks:
      - name: cf1
        default:
          - gateway
          - dns
        static_ips:
         - 10.0.0.91

  - name: cat
    lifecycle: errand
    resource_pool: small
    instances: 1
    templates:
      - name: acceptance-tests
        release: cf
    networks:
      - name: cf1
        default:
          - gateway
          - dns
        static_ips:
         - 10.0.0.92

 properties:
 #  name: "vcap"
 #  build: "2222"
 #  version: "2"
  description: CF on OpenStack
  support_address: https://nttlabs.info/
  domain: 192.168.13.70.xip.io
  system_domain: 192.168.13.70.xip.io
  system_domain_organization: system
  app_domains:
    - 192.168.13.70.xip.io

 #  request_timeout_in_seconds: 900
 #  heartbeat_interval_in_milliseconds: 50
 #  election_timeout_in_milliseconds: 1000
  disk_quota_enabled: true
  ssl:
    skip_cert_verify: true

  networks:
    apps: cf1
    management: cf1

  databases:
    databases:
      - tag: cc
        name: ccdb
        citext: true
      - tag: uaa
        name: uaadb
        citext: true
    roles:
      - tag: admin
        name: ccadmin
        password: c1oudc0w
      - tag: admin
        name: uaaadmin
        password: c1oudc0w
    db_scheme: postgres
    address: 10.0.0.11
    port: 5524

  ccdb:
    db_scheme: postgres
    address: 10.0.0.11
    port: 5524
    databases:
      - tag: cc
        name: ccdb
        citext: true
    roles:
      - tag: admin
        name: ccadmin
        password: c1oudc0w
 #    max_connections: 25
 #    max_ar_connections: 5
 #    pool_timeout: 10

  uaadb:
    db_scheme: postgresql
    address: 10.0.0.11
    port: 5524
    databases:
      - tag: uaa
        name: uaadb
        citext: true
    roles:
      - tag: admin
        name: uaaadmin
        password: c1oudc0w

  nats:
    machines:
      - 10.0.0.11
    address: 10.0.0.11
    port: 30010
    user: nats
    password: c1oudc0w
 #    authorization_timeout: 15
 #    debug: false
 #    trace: false
 #    monitor_port: 0
 #    prof_port: 0

  etcd:
    machines:
      - 10.0.0.11
 #    maxconcurrentrequests: 10

 #  etcd_metrics_server:
 #    etcd:
 #      machine: 127.0.0.1
 #      port: 4001
 #    nats:
 #      machines:
 #        - 10.0.0.11
 #      port: 30010
 #      username: nats
 #      password: c1oudc0w
 #    status:
 #      user: ""
 #      password: ""
 #      port: 0

  consul:
    agent:
      servers:
        lan:
          - 10.0.0.11
 #      datacenter: dc1
 #      services: {}
 #      protocol_version: 2
 #      sync_timeout_in_seconds: 60
 #      log_level: info

  router:
 #    port: 80
 #    requested_route_registration_interval_in_seconds: 20
    enable_routing_api: false
 #    number_of_cpus: -1
 #    client_inactivity_timeout: 120 #DEPRECATED?
 #    app_inactivity_timeout: 120 #DEPRECATED?
 #    secure_cookies: false
 #    enable_ssl: false
 #    ssl_cert: ""
 #    ssl_key: ""
 #    ssl_skip_validation: false
 #    cipher_suites: TLS_RSA_WITH_RC4_128_SHA:TLS_RSA_WITH_AES_128_CBC_SHA:TLS_RSA_WITH_AES_256_CBC_SHA:TLS_ECDHE_ECDSA_WITH_RC4_128_SHA:TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256:TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA:TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA:TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256:TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA:TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA:TLS_ECDHE_RSA_WITH_RC4_128_SHA
 #    route_service_secret: c1oudc0w
 #    route_service_timeout: 60
 #    offset: 0
 #    trace_key: 22
    status:
 #      port: 8080
      user: gorouter
      password: c1oudc0w
 #    debug_addr: "0.0.0.0:17001"

 #  routing-api:
 #    port: 3000
 #    max_ttl: 60
 #    metrics_reporting_interval: "30s"
 #    statsd_endpoint: "localhost:8125"
 #    debug_address: "0.0.0.0:17002"
 #    statsd_client_flush_interval: "300ms"

  cc:
    diego_docker: false
    default_to_diego_backend: false
    users_can_select_backend: true
 #    allow_app_ssh_access: true
    billing_event_writing_enabled: true
    development_mode: false
 #    logging_level: debug2
 #    db_logging_level: debug2
 #    logging_max_retries: 1

    srv_api_uri: http://api.192.168.13.70.xip.io
    external_protocol: http
    external_host: api
 #    external_port: 9022

 #    info:
 #      name:
 #      build:
 #      version:
 #      support_address:
 #      description:
 #      custom:

    client_max_body_size: 1536M
 #    app_bits_max_body_size: 1536M
 #    app_bits_upload_grace_period_in_seconds: 1200
 #    renderer:
 #      max_results_per_page: 100
 #      default_results_per_page: 50
 #      max_inline_relations_depth: 2

 #    staging_timeout_in_seconds: 900
 #    default_health_check_timeout: 60
 #    maximum_health_check_timeout: 180
 #    flapping_crash_count_threshold: 3

    default_app_memory: 256 #MB
 #    default_app_disk_in_mb: 1024
 #    maximum_app_disk_in_mb: 2048
 #    instance_file_descriptor_limit: 16384
 #    staging_file_descriptor_limit: 16384
 #    min_cli_version: null
 #    min_recommended_cli_version: null

    quota_definitions:
      default:
        memory_limit: 10240
        non_basic_services_allowed: true
        total_routes: 1000
        total_services: 100
 #    default_quota_definition: default

 #    thresholds:
 #      api:
 #        alert_if_above_mb: 2250
 #        restart_if_consistently_above_mb: 2250
 #        restart_if_above_mb: 2450
 #      worker:
 #        alert_if_above_mb: 384
 #        restart_if_consistently_above_mb: 384
 #        restart_if_above_mb: 512

    db_encryption_key: c1oudc0w # <= mandatory
 #    bulk_api_user: "bulk_api"
    bulk_api_password: c1oudc0w
 #    internal_api_user: "internal_user"
    internal_api_password: c1oudc0w
    service_name: cloud-controller-ng
    staging_upload_user: bosh
    staging_upload_password: c1oudc0w

 #    uaa_resource_id: "cloud_controller,cloud_controller_service_permissions"

 #    stacks:
 #      - name: "lucid64"
 #        description: "Ubuntu 10.04 on x86-64"
 #      - name: "cflinuxfs2"
 #        description: "Cloud Foundry Linux-based filesystem"
 #      - name: "windows2012R2"
 #        description: "Windows Server 2012 R2"
 #    default_stack: "cflinuxfs2"

    security_group_definitions:
    - name: public_networks
      rules:
      - destination: 0.0.0.0-9.255.255.255
        protocol: all
      - destination: 11.0.0.0-169.253.255.255
        protocol: all
      - destination: 169.255.0.0-172.15.255.255
        protocol: all
      - destination: 172.32.0.0-192.167.255.255
        protocol: all
      - destination: 192.169.0.0-255.255.255.255
        protocol: all
    - name: dns
      rules:
      - destination: 0.0.0.0/0
        ports: "53"
        protocol: tcp
      - destination: 0.0.0.0/0
        ports: "53"
        protocol: udp
    default_running_security_groups:
    - public_networks
    - dns
    default_staging_security_groups:
    - public_networks
    - dns

    allowed_cors_domains: []

 #    directories:
 #      tmpdir: "/var/vcap/data/cloud_controller_ng/tmp"
 #      diagnostics: "/var/vcap/data/cloud_controller_ng/diagnostics"
    default_fog_connection:
 #      provider: "Local"
      local_root: /var/vcap/store
 #    resource_pool:
 #      resource_directory_key: cc-resources
 #      minimum_size: 65536
 #      maximum_size: 536870912
 #      fog_connection: null
 #      cdn:
 #        uri: ""
 #        private_key: ""
 #        key_pair_id: ""
 #    packages:
 #      app_package_directory_key: cc-packages
 #      max_package_size: 1073741824
 #      fog_connection: null
 #      cdn:
 #        uri: ""
 #        private_key: ""
 #        key_pair_id: ""
 #    droplets:
 #      droplet_directory_key: cc-droplets
 #      fog_connection: null
 #      cdn:
 #        uri: ""
 #        private_key: ""
 #        key_pair_id: ""
 #    buildpacks:
 #      buildpack_directory_key: cc-buildpacks
 #      fog_connection: null
 #      cdn:
 #        uri: ""
 #        private_key: ""
 #        key_pair_id: ""

    install_buildpacks:
      - name: java_buildpack
        package: buildpack_java
      - name: ruby_buildpack
        package: buildpack_ruby
      - name: nodejs_buildpack
        package: buildpack_nodejs
      - name: go_buildpack
        package: buildpack_go
      - name: python_buildpack
        package: buildpack_python
      - name: php_buildpack
        package: buildpack_php
      - name: staticfile_buildpack
        package: buildpack_staticfile
      - name: binary_buildpack
        package: buildpack_binary
    user_buildpacks: []
    disable_custom_buildpacks: false

 #    jobs:
 #      global:
 #        timeout_in_seconds: 14400
 #      app_bits_packer:
 #        timeout_in_seconds: null
 #      app_events_cleanup:
 #        timeout_in_seconds: null
 #      app_usage_events_cleanup:
 #        timeout_in_seconds: null
 #      blobstore_delete:
 #        timeout_in_seconds: null
 #      blobstore_upload:
 #        timeout_in_seconds: null
 #      droplet_deletion:
 #        timeout_in_seconds: null
 #      droplet_upload:
 #        timeout_in_seconds: null
 #      model_deletion:
 #        timeout_in_seconds: null
 #      generic:
 #        number_of_workers: 1
 #      local:
 #        number_of_workers: 2
    app_events:
      cutoff_age_in_days: 10
    app_usage_events:
      cutoff_age_in_days: 10
    audit_events:
      cutoff_age_in_days: 10
    failed_jobs:
      cutoff_age_in_days: 10

 #    broker_client_timeout_seconds: 60
 #    broker_client_default_async_poll_interval_seconds: 60
 #    broker_client_max_async_poll_duration_minutes: 10080

 #    statsd_host: 127.0.0.1
 #    statsd_port: 8125

 #    newrelic: null

  dea_next:
 #    stacks:
 #      - name: "cflinuxfs2"
 #        package_path: "/var/vcap/packages/rootfs_cflinuxfs2/rootfs"

    memory_mb: 4096
    memory_overcommit_factor: 3
 #    disk_mb: 32000
 #    disk_overcommit_factor: 1
 #    instance_disk_inode_limit: 200000
 #    instance_memory_to_cpu_share_ratio: 8
 #    instance_min_cpu_share_limit: 1
 #    instance_max_cpu_share_limit: 256
 #    staging_memory_limit_mb: 1024
 #    staging_disk_limit_mb: 6144
 #    staging_disk_inode_limit: 200000
 #    staging_cpu_limit_shares: 512
 #    rlimit_core: 0

 #    max_staging_duration: 900
 #    default_health_check_timeout: 60
 #    streaming_timeout: 60
 #    advertise_interval_in_seconds: 5
    heartbeat_interval_in_seconds: 10
 #    crash_lifetime_secs: 3600
 #    evacuation_bail_out_time_in_seconds: 115

 #    kernel_network_tuning_enabled: true
 #    mtu: 1500
    directory_server_protocol: http
 #    zone: default
 #    allow_host_access: false
    allow_networks: null
    deny_networks: null
 #    logging_level: debug

  hm9000:
    url: http://hm9000.192.168.13.70.xip.io
 #    desired_state_batch_size: 5000
 #    fetcher_network_timeout_in_seconds: 30

  login:
    enabled: false
 #    analytics:
 #      code: null
 #      domain: null
 #    url: null
 #    catalina_opts: -Xmx768m -XX:MaxPermSize=256m
 #    uaa_certificate: null
 #    protocol: http
 #    brand: oss
 #    asset_base_url: null
 #    uaa_base: null
 #    invitations_enabled: null
 #    self_service_links_enabled: null
 #    signups_enabled: null
 #    invitations_enabled: null
 #    spring_profiles: null
 #    messages: null
 #    notifications:
 #      url: null
 #    smtp:
 #      host: null
 #      password: null
 #      port: null
 #      user: null
 #    links:
 #      home: https://console.192.168.13.70.xip.io
 #      network: null
 #      passwd: https://console.192.168.13.70.xip.io/password_resets/new
 #      signup: https://console.192.168.13.70.xip.io/register
 #      signup-network: null
 #    logout: null
 #    tiles: null
 #    saml: null
 #    restricted_ips_regex: 10\.\d{1,3}\.\d{1,3}\.\d{1,3}|192\.168\.\d{1,3}\.\d{1,3}|169\.254\.\d{1,3}\.\d{1,3}|127\.\d{1,3}\.\d{1,3}\.\d{1,3}|172\.1[6-9]{1}\.\d{1,3}\.\d{1,3}|172\.2[0-9]{1}\.\d{1,3}\.\d{1,3}|172\.3[0-1]{1}\.\d{1,3}\.\d{1,3}

  uaa:
 #    catalina_opts: -Xmx768m -XX:MaxPermSize=256m
 #    spring_profiles: #DEPRECATED
 #    database:
 #      max_connections: 100
 #      max_idle_connections: 10
 #      remove_abandoned: false
 #      abandoned_timeout: 300
 #      log_abandoned: true
 #      case_insensitive: null

 #    dump_requests: null
 #    newrelic: null

    url: http://uaa.192.168.13.70.xip.io
    issuer: http://uaa.192.168.13.70.xip.io
    no_ssl: true
 #    port: 38080
 #    require_https: null
 #    zones:
 #      internal:
 #        hostnames:
 #          - uaa.service.cf.internal
 #    restricted_ips_regex: 10\.\d{1,3}\.\d{1,3}\.\d{1,3}|192\.168\.\d{1,3}\.\d{1,3}|169\.254\.\d{1,3}\.\d{1,3}|127\.\d{1,3}\.\d{1,3}\.\d{1,3}|172\.1[6-9]{1}\.\d{1,3}\.\d{1,3}|172\.2[0-9]{1}\.\d{1,3}\.\d{1,3}|172\.3[0-1]{1}\.\d{1,3}\.\d{1,3}

    scim:
      users:
        - admin|c1oudc0w|scim.write,scim.read,openid,cloud_controller.admin,doppler.firehose
 #      user:
 #        override: true
 #      userids_enabled: true
 #      external_groups: null

    jwt:
      signing_key: |
        -----BEGIN RSA PRIVATE KEY-----
        MIICXAIBAAKBgQDHFr+KICms+tuT1OXJwhCUmR2dKVy7psa8xzElSyzqx7oJyfJ1
        JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMXqHxf+ZH9BL1gk9Y6kCnbM5R6
        0gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBugspULZVNRxq7veq/fzwIDAQAB
        AoGBAJ8dRTQFhIllbHx4GLbpTQsWXJ6w4hZvskJKCLM/o8R4n+0W45pQ1xEiYKdA
        Z/DRcnjltylRImBD8XuLL8iYOQSZXNMb1h3g5/UGbUXLmCgQLOUUlnYt34QOQm+0
        KvUqfMSFBbKMsYBAoQmNdTHBaz3dZa8ON9hh/f5TT8u0OWNRAkEA5opzsIXv+52J
        duc1VGyX3SwlxiE2dStW8wZqGiuLH142n6MKnkLU4ctNLiclw6BZePXFZYIK+AkE
        xQ+k16je5QJBAN0TIKMPWIbbHVr5rkdUqOyezlFFWYOwnMmw/BKa1d3zp54VP/P8
        +5aQ2d4sMoKEOfdWH7UqMe3FszfYFvSu5KMCQFMYeFaaEEP7Jn8rGzfQ5HQd44ek
        lQJqmq6CE2BXbY/i34FuvPcKU70HEEygY6Y9d8J3o6zQ0K9SYNu+pcXt4lkCQA3h
        jJQQe5uEGJTExqed7jllQ0khFJzLMx0K6tj0NeeIzAaGCQz13oo2sCdeGRHO4aDh
        HH6Qlq/6UOV5wP8+GAcCQFgRCcB+hrje8hfEEefHcFpyKH+5g1Eu1k0mLrxK2zd+
        4SlotYRHgPCEubokb2S1zfZDWIXW3HmggnGgM949TlY=
        -----END RSA PRIVATE KEY-----
      verification_key: |
        -----BEGIN PUBLIC KEY-----
        MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d
        KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX
        qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug
        spULZVNRxq7veq/fzwIDAQAB
        -----END PUBLIC KEY-----
 #    authentication:
 #      policy:
 #        lockoutAfterFailures: null
 #        countFailuresWithinSeconds: null
 #        lockoutPeriodSeconds: null
 #    password:
 #      policy:
 #        minLength: 0
 #        maxLength: 255
 #        requireUpperCaseCharacter: 0
 #        requireLowerCaseCharacter: 0
 #        requireDigit: 0
 #        requireSpecialCharactor: 0
 #        requirePasswordInMonths: 0

    cc:
      client_secret: c1oudc0w
 #      token_secret: c1oudc0w #DO NOT SET if uaa.jwt.verification_key is set
    admin:
      client_secret: c1oudc0w
    batch:
      username: batchuser
      password: c1oudc0w
 #    login:
 #      client_secret: #DEPRECATED
 #    ldap:
 #      enabled: false
 #    user:
 #      authorities:
 #        - openid
 #        - scim.me
 #        - cloud_controller.read
 #        - cloud_controller.write
 #        - cloud_controller_service_permissions.read
 #        - password.write
 #        - uaa.user
 #        - approvals.me
 #        - oauth.approvals
 #        - notification_preferences.read
 #        - notification_preferences.write
 #    client:
 #      autoapprove:
 #        - cf
    clients:
      cloud_controller_username_lookup:
        authorities: scim.userids #DEPRECATED?
        authorized-grant-types: client_credentials #DEPRECATED?
        client: cc
        secret: c1oudc0w
      doppler:
        authorities: uaa.resource #DEPRECATED?
        override: true #DEPRECATED?
        secret: c1oudc0w
      login:
        secret: c1oudc0w
 #        authorities: oauth.login,scim.write,clients.read,notifications.write,critical_notifications.write,emails.write,scim.userids,password.write
 #        authorized-grant-types: authorization_code,client_credentials,refresh_token
 #        override: true
 #        redirect-uri: http://login.cfdiego.nttlabs.info
 #        scope: openid,oauth.approvals
      notifications:
        authorities: cloud_controller.admin,scim.read
        authorized-grant-types: client_credentials
        secret: c1oudc0w
      gorouter:
        secret: c1oudc0w

  syslog_daemon_config: null

  dropsonde:
    enabled: true

 #  dea_logging_agent:
 #    debug: false
 #    status:
 #      user: ""
 #      password: ""
 #      port: 0

 #  statsd_injector:
 #    metron_port: 3457
 #    statsd_port: 8125
 #    log_level: info

  metron_endpoint:
    shared_secret: c1oudc0w
 #    host: 127.0.0.1
 #    port: 3456
 #    dropsonde_port: 3457

  metron_agent:
    deployment: cf
    zone: z1
 #    incoming_port: 3456
 #    dropsonde_incoming_port: 3457
 #    statsd_incoming_port: 8125
 #    debug: false
 #    status:
 #      user: ""
 #      password: ""
 #      port: 0
 #    etcd_query_interval_milliseconds: 5000
 #    collector_registrar_interval_milliseconds: 60000

  loggregator_endpoint:
    shared_secret: c1oudc0w

  loggregator:
    incoming_port: 13456
    dropsonde_incoming_port: 13457
    doppler_port: 18081
    outgoing_dropsonde_port: 28081

  doppler_endpoint:
    shared_secret: c1oudc0w

  doppler:
    enabled: true
    use_ssl: false
    port: 80
    incoming_port: 13456
    dropsonde_incoming_port: 13457
    outgoing_port: 18081
    zone: z1
 #    debug: false
 #    status:
 #      user: ""
 #      password: ""
 #      port: 0
 #    maxRetainedLogMessages: 100
 #    blacklisted_syslog_ranges: null
 #    container_metric_ttl_seconds: 120
 #    collector_registrar_interval_milliseconds: 60000
 #    unmarshaller_count: 5
 #    sink_inactivity_timeout_seconds: 3600
 #    uaa_client_id: doppler

  traffic_controller:
    incoming_port: 23456
    outgoing_port: 28080
    zone: z1
 #    host: 0.0.0.0
 #    debug: false
 #    status:
 #      user: ""
 #      password: ""
 #      port: 0
 #    collector_registrar_interval_milliseconds: 60000

  logger_endpoint:
    use_ssl: false
    port: 80

 #  syslog_drain_binder:
 #    drain_url_ttl_seconds: 60
 #    update_interval_seconds: 15
 #    polling_batch_size: 1000
 #    debug: false

  uaa_client_id: cf
  uaa_endpoint: http://uaa.192.168.13.70.xip.io
  uaa_client_auth_credentials:
    username: admin
    password: c1oudc0w

  smoke_tests:
 #    suite_name: CF_SMOKE_TESTS
    api: http://api.192.168.13.70.xip.io
    apps_domain: 192.168.13.70.xip.io
    user: admin
    password: c1oudc0w
    org: SMOKE_TEST_ORG
    space: SMOKE_TEST_SPACE
 #    use_existing_org: false
 #    use_existing_space: false
 #    logging_app: ''
 #    runtime_app: ''
 #    skip_ssl_validation: false
    ginkgo_opts: '-v'

  acceptance_tests:
    api: http://api.192.168.13.70.xip.io
    apps_domain: 192.168.13.70.xip.io
    admin_user: admin
    admin_password: c1oudc0w
 #    skip_ssl_validation: false
    system_domain: 192.168.13.70.xip.io
    client_secret: c1oudc0w
 #    nodes: 2
 #    verbose: false
 #    include_sso: false
 #    include_operator: false
 #    include_logging: false
 #    include_security_groups: false
 #    include_internet_dependent: false
 #    include_services: false
 #    include_v3: false
 #    include_routing: false
 #    use_diego: false
 #    skip_regex: null
    default_timeout: 60 #default 30sec
    cf_push_timeout: 240 #default 120sec
    long_curl_timeout: 240 #default 120sec
    broker_start_timeout: 600 #default 600sec

  collector: null
	---
	name: cf
	director_uuid: <%= `bosh status --uuid` %>

	releases:
	- name: cf
	version: 214

	networks:
	- name: cf1
	type: manual
	subnets:
	- range: 10.0.0.0/24
	gateway: 10.0.0.1
	dns: [8.8.8.8, 8.8.4.4]
	reserved: ["10.0.0.2 - 10.0.0.9","10.0.0.200 - 10.0.0.254"]
	static: ["10.0.0.10 - 10.0.0.99"]
	cloud_properties:
	net_id: ac6c922c-ff95-44c5-9c08-d921361c5ca1 # <= OpenStack tenant's private network id
	security_groups:
	- cf
	- name: floating
	type: vip
	cloud_properties: {}

	compilation:
	workers: 2
	network: cf1
	reuse_compilation_vms: true
	cloud_properties:
	instance_type: m1.medium

	update:
	canaries: 1
	canary_watch_time: 30000-600000
	update_watch_time: 30000-600000
	max_in_flight: 1
	serial: false

	resource_pools:
	- name: small
	network: cf1
	stemcell:
	name: bosh-openstack-kvm-ubuntu-trusty-go_agent
	version: latest
	cloud_properties:
	instance_type: m1.small
	- name: medium
	network: cf1
	stemcell:
	name: bosh-openstack-kvm-ubuntu-trusty-go_agent
	version: latest
	cloud_properties:
	instance_type: m1.medium
	- name: large
	network: cf1
	stemcell:
	name: bosh-openstack-kvm-ubuntu-trusty-go_agent
	version: latest
	cloud_properties:
	instance_type: m1.large

	jobs:
	- name: core
	resource_pool: small
	instances: 1
	templates:
	- name: postgres
	release: cf
	- name: nats
	release: cf
	- name: etcd
	release: cf
	# - name: etcd_metrics_server
	# release: cf
	- name: hm9000
	release: cf
	- name: consul_agent
	release: cf
	- name: metron_agent
	release: cf
	networks:
	- name: cf1
	default:
	- gateway
	- dns
	static_ips:
	- 10.0.0.11
	persistent_disk: 16000
	properties:
	consul:
	agent:
	mode: server

	- name: api
	resource_pool: medium
	instances: 1
	templates:
	- name: uaa
	release: cf
	- name: cloud_controller_ng
	release: cf
	- name: cloud_controller_clock
	release: cf
	- name: cloud_controller_worker
	release: cf
	# - name: routing-api
	# release: cf
	- name: consul_agent
	release: cf
	- name: metron_agent
	release: cf
	- name: statsd-injector
	release: cf
	networks:
	- name: cf1
	default:
	- gateway
	- dns
	static_ips:
	- 10.0.0.12
	persistent_disk: 102400
	properties:
	consul:
	agent:
	services:
	uaa: {}
	cloud_controller_ng: {}
	# routing-api: {}

	- name: router
	resource_pool: small
	instances: 1
	templates:
	- name: gorouter
	release: cf
	- name: loggregator_trafficcontroller
	release: cf
	- name: doppler
	release: cf
	- name: syslog_drain_binder
	release: cf
	- name: consul_agent
	release: cf
	- name: metron_agent
	release: cf
	networks:
	- name: floating
	static_ips:
	- 192.168.13.70 # <= floating IP address
	- name: cf1
	default:
	- gateway
	- dns
	static_ips:
	- 10.0.0.13
	properties:
	consul:
	agent:
	services:
	gorouter: {}

	- name: dea
	resource_pool: medium
	instances: 1
	templates:
	- name: dea_next
	release: cf
	- name: dea_logging_agent
	release: cf
	- name: metron_agent
	release: cf
	networks:
	- name: cf1
	default:
	- gateway
	- dns
	static_ips:
	- 10.0.0.21
	update:
	max_in_flight: 1

	- name: smoke
	lifecycle: errand
	resource_pool: small
	instances: 1
	templates:
	- name: smoke-tests
	release: cf
	networks:
	- name: cf1
	default:
	- gateway
	- dns
	static_ips:
	- 10.0.0.91

	- name: cat
	lifecycle: errand
	resource_pool: small
	instances: 1
	templates:
	- name: acceptance-tests
	release: cf
	networks:
	- name: cf1
	default:
	- gateway
	- dns
	static_ips:
	- 10.0.0.92

	properties:
	# name: "vcap"
	# build: "2222"
	# version: "2"
	description: CF on OpenStack
	support_address: https://nttlabs.info/
	domain: 192.168.13.70.xip.io
	system_domain: 192.168.13.70.xip.io
	system_domain_organization: system
	app_domains:
	- 192.168.13.70.xip.io

	# request_timeout_in_seconds: 900
	# heartbeat_interval_in_milliseconds: 50
	# election_timeout_in_milliseconds: 1000
	disk_quota_enabled: true
	ssl:
	skip_cert_verify: true

	networks:
	apps: cf1
	management: cf1

	databases:
	databases:
	- tag: cc
	name: ccdb
	citext: true
	- tag: uaa
	name: uaadb
	citext: true
	roles:
	- tag: admin
	name: ccadmin
	password: c1oudc0w
	- tag: admin
	name: uaaadmin
	password: c1oudc0w
	db_scheme: postgres
	address: 10.0.0.11
	port: 5524

	ccdb:
	db_scheme: postgres
	address: 10.0.0.11
	port: 5524
	databases:
	- tag: cc
	name: ccdb
	citext: true
	roles:
	- tag: admin
	name: ccadmin
	password: c1oudc0w
	# max_connections: 25
	# max_ar_connections: 5
	# pool_timeout: 10

	uaadb:
	db_scheme: postgresql
	address: 10.0.0.11
	port: 5524
	databases:
	- tag: uaa
	name: uaadb
	citext: true
	roles:
	- tag: admin
	name: uaaadmin
	password: c1oudc0w

	nats:
	machines:
	- 10.0.0.11
	address: 10.0.0.11
	port: 30010
	user: nats
	password: c1oudc0w
	# authorization_timeout: 15
	# debug: false
	# trace: false
	# monitor_port: 0
	# prof_port: 0

	etcd:
	machines:
	- 10.0.0.11
	# maxconcurrentrequests: 10

	# etcd_metrics_server:
	# etcd:
	# machine: 127.0.0.1
	# port: 4001
	# nats:
	# machines:
	# - 10.0.0.11
	# port: 30010
	# username: nats
	# password: c1oudc0w
	# status:
	# user: ""
	# password: ""
	# port: 0

	consul:
	agent:
	servers:
	lan:
	- 10.0.0.11
	# datacenter: dc1
	# services: {}
	# protocol_version: 2
	# sync_timeout_in_seconds: 60
	# log_level: info

	router:
	# port: 80
	# requested_route_registration_interval_in_seconds: 20
	enable_routing_api: false
	# number_of_cpus: -1
	# client_inactivity_timeout: 120 #DEPRECATED?
	# app_inactivity_timeout: 120 #DEPRECATED?
	# secure_cookies: false
	# enable_ssl: false
	# ssl_cert: ""
	# ssl_key: ""
	# ssl_skip_validation: false
	# cipher_suites: TLS_RSA_WITH_RC4_128_SHA:TLS_RSA_WITH_AES_128_CBC_SHA:TLS_RSA_WITH_AES_256_CBC_SHA:TLS_ECDHE_ECDSA_WITH_RC4_128_SHA:TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256:TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA:TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA:TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256:TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA:TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA:TLS_ECDHE_RSA_WITH_RC4_128_SHA
	# route_service_secret: c1oudc0w
	# route_service_timeout: 60
	# offset: 0
	# trace_key: 22
	status:
	# port: 8080
	user: gorouter
	password: c1oudc0w
	# debug_addr: "0.0.0.0:17001"

	# routing-api:
	# port: 3000
	# max_ttl: 60
	# metrics_reporting_interval: "30s"
	# statsd_endpoint: "localhost:8125"
	# debug_address: "0.0.0.0:17002"
	# statsd_client_flush_interval: "300ms"

	cc:
	diego_docker: false
	default_to_diego_backend: false
	users_can_select_backend: true
	# allow_app_ssh_access: true
	billing_event_writing_enabled: true
	development_mode: false
	# logging_level: debug2
	# db_logging_level: debug2
	# logging_max_retries: 1

	srv_api_uri: http://api.192.168.13.70.xip.io
	external_protocol: http
	external_host: api
	# external_port: 9022

	# info:
	# name:
	# build:
	# version:
	# support_address:
	# description:
	# custom:

	client_max_body_size: 1536M
	# app_bits_max_body_size: 1536M
	# app_bits_upload_grace_period_in_seconds: 1200
	# renderer:
	# max_results_per_page: 100
	# default_results_per_page: 50
	# max_inline_relations_depth: 2

	# staging_timeout_in_seconds: 900
	# default_health_check_timeout: 60
	# maximum_health_check_timeout: 180
	# flapping_crash_count_threshold: 3

	default_app_memory: 256 #MB
	# default_app_disk_in_mb: 1024
	# maximum_app_disk_in_mb: 2048
	# instance_file_descriptor_limit: 16384
	# staging_file_descriptor_limit: 16384
	# min_cli_version: null
	# min_recommended_cli_version: null

	quota_definitions:
	default:
	memory_limit: 10240
	non_basic_services_allowed: true
	total_routes: 1000
	total_services: 100
	# default_quota_definition: default

	# thresholds:
	# api:
	# alert_if_above_mb: 2250
	# restart_if_consistently_above_mb: 2250
	# restart_if_above_mb: 2450
	# worker:
	# alert_if_above_mb: 384
	# restart_if_consistently_above_mb: 384
	# restart_if_above_mb: 512

	db_encryption_key: c1oudc0w # <= mandatory
	# bulk_api_user: "bulk_api"
	bulk_api_password: c1oudc0w
	# internal_api_user: "internal_user"
	internal_api_password: c1oudc0w
	service_name: cloud-controller-ng
	staging_upload_user: bosh
	staging_upload_password: c1oudc0w

	# uaa_resource_id: "cloud_controller,cloud_controller_service_permissions"

	# stacks:
	# - name: "lucid64"
	# description: "Ubuntu 10.04 on x86-64"
	# - name: "cflinuxfs2"
	# description: "Cloud Foundry Linux-based filesystem"
	# - name: "windows2012R2"
	# description: "Windows Server 2012 R2"
	# default_stack: "cflinuxfs2"

	security_group_definitions:
	- name: public_networks
	rules:
	- destination: 0.0.0.0-9.255.255.255
	protocol: all
	- destination: 11.0.0.0-169.253.255.255
	protocol: all
	- destination: 169.255.0.0-172.15.255.255
	protocol: all
	- destination: 172.32.0.0-192.167.255.255
	protocol: all
	- destination: 192.169.0.0-255.255.255.255
	protocol: all
	- name: dns
	rules:
	- destination: 0.0.0.0/0
	ports: "53"
	protocol: tcp
	- destination: 0.0.0.0/0
	ports: "53"
	protocol: udp
	default_running_security_groups:
	- public_networks
	- dns
	default_staging_security_groups:
	- public_networks
	- dns

	allowed_cors_domains: []

	# directories:
	# tmpdir: "/var/vcap/data/cloud_controller_ng/tmp"
	# diagnostics: "/var/vcap/data/cloud_controller_ng/diagnostics"
	default_fog_connection:
	# provider: "Local"
	local_root: /var/vcap/store
	# resource_pool:
	# resource_directory_key: cc-resources
	# minimum_size: 65536
	# maximum_size: 536870912
	# fog_connection: null
	# cdn:
	# uri: ""
	# private_key: ""
	# key_pair_id: ""
	# packages:
	# app_package_directory_key: cc-packages
	# max_package_size: 1073741824
	# fog_connection: null
	# cdn:
	# uri: ""
	# private_key: ""
	# key_pair_id: ""
	# droplets:
	# droplet_directory_key: cc-droplets
	# fog_connection: null
	# cdn:
	# uri: ""
	# private_key: ""
	# key_pair_id: ""
	# buildpacks:
	# buildpack_directory_key: cc-buildpacks
	# fog_connection: null
	# cdn:
	# uri: ""
	# private_key: ""
	# key_pair_id: ""

	install_buildpacks:
	- name: java_buildpack
	package: buildpack_java
	- name: ruby_buildpack
	package: buildpack_ruby
	- name: nodejs_buildpack
	package: buildpack_nodejs
	- name: go_buildpack
	package: buildpack_go
	- name: python_buildpack
	package: buildpack_python
	- name: php_buildpack
	package: buildpack_php
	- name: staticfile_buildpack
	package: buildpack_staticfile
	- name: binary_buildpack
	package: buildpack_binary
	user_buildpacks: []
	disable_custom_buildpacks: false

	# jobs:
	# global:
	# timeout_in_seconds: 14400
	# app_bits_packer:
	# timeout_in_seconds: null
	# app_events_cleanup:
	# timeout_in_seconds: null
	# app_usage_events_cleanup:
	# timeout_in_seconds: null
	# blobstore_delete:
	# timeout_in_seconds: null
	# blobstore_upload:
	# timeout_in_seconds: null
	# droplet_deletion:
	# timeout_in_seconds: null
	# droplet_upload:
	# timeout_in_seconds: null
	# model_deletion:
	# timeout_in_seconds: null
	# generic:
	# number_of_workers: 1
	# local:
	# number_of_workers: 2
	app_events:
	cutoff_age_in_days: 10
	app_usage_events:
	cutoff_age_in_days: 10
	audit_events:
	cutoff_age_in_days: 10
	failed_jobs:
	cutoff_age_in_days: 10

	# broker_client_timeout_seconds: 60
	# broker_client_default_async_poll_interval_seconds: 60
	# broker_client_max_async_poll_duration_minutes: 10080

	# statsd_host: 127.0.0.1
	# statsd_port: 8125

	# newrelic: null

	dea_next:
	# stacks:
	# - name: "cflinuxfs2"
	# package_path: "/var/vcap/packages/rootfs_cflinuxfs2/rootfs"

	memory_mb: 4096
	memory_overcommit_factor: 3
	# disk_mb: 32000
	# disk_overcommit_factor: 1
	# instance_disk_inode_limit: 200000
	# instance_memory_to_cpu_share_ratio: 8
	# instance_min_cpu_share_limit: 1
	# instance_max_cpu_share_limit: 256
	# staging_memory_limit_mb: 1024
	# staging_disk_limit_mb: 6144
	# staging_disk_inode_limit: 200000
	# staging_cpu_limit_shares: 512
	# rlimit_core: 0

	# max_staging_duration: 900
	# default_health_check_timeout: 60
	# streaming_timeout: 60
	# advertise_interval_in_seconds: 5
	heartbeat_interval_in_seconds: 10
	# crash_lifetime_secs: 3600
	# evacuation_bail_out_time_in_seconds: 115

	# kernel_network_tuning_enabled: true
	# mtu: 1500
	directory_server_protocol: http
	# zone: default
	# allow_host_access: false
	allow_networks: null
	deny_networks: null
	# logging_level: debug

	hm9000:
	url: http://hm9000.192.168.13.70.xip.io
	# desired_state_batch_size: 5000
	# fetcher_network_timeout_in_seconds: 30

	login:
	enabled: false
	# analytics:
	# code: null
	# domain: null
	# url: null
	# catalina_opts: -Xmx768m -XX:MaxPermSize=256m
	# uaa_certificate: null
	# protocol: http
	# brand: oss
	# asset_base_url: null
	# uaa_base: null
	# invitations_enabled: null
	# self_service_links_enabled: null
	# signups_enabled: null
	# invitations_enabled: null
	# spring_profiles: null
	# messages: null
	# notifications:
	# url: null
	# smtp:
	# host: null
	# password: null
	# port: null
	# user: null
	# links:
	# home: https://console.192.168.13.70.xip.io
	# network: null
	# passwd: https://console.192.168.13.70.xip.io/password_resets/new
	# signup: https://console.192.168.13.70.xip.io/register
	# signup-network: null
	# logout: null
	# tiles: null
	# saml: null
	# restricted_ips_regex: 10\.\d{1,3}\.\d{1,3}\.\d{1,3}\|192\.168\.\d{1,3}\.\d{1,3}\|169\.254\.\d{1,3}\.\d{1,3}\|127\.\d{1,3}\.\d{1,3}\.\d{1,3}\|172\.1[6-9]{1}\.\d{1,3}\.\d{1,3}\|172\.2[0-9]{1}\.\d{1,3}\.\d{1,3}\|172\.3[0-1]{1}\.\d{1,3}\.\d{1,3}

	uaa:
	# catalina_opts: -Xmx768m -XX:MaxPermSize=256m
	# spring_profiles: #DEPRECATED
	# database:
	# max_connections: 100
	# max_idle_connections: 10
	# remove_abandoned: false
	# abandoned_timeout: 300
	# log_abandoned: true
	# case_insensitive: null

	# dump_requests: null
	# newrelic: null

	url: http://uaa.192.168.13.70.xip.io
	issuer: http://uaa.192.168.13.70.xip.io
	no_ssl: true
	# port: 38080
	# require_https: null
	# zones:
	# internal:
	# hostnames:
	# - uaa.service.cf.internal
	# restricted_ips_regex: 10\.\d{1,3}\.\d{1,3}\.\d{1,3}\|192\.168\.\d{1,3}\.\d{1,3}\|169\.254\.\d{1,3}\.\d{1,3}\|127\.\d{1,3}\.\d{1,3}\.\d{1,3}\|172\.1[6-9]{1}\.\d{1,3}\.\d{1,3}\|172\.2[0-9]{1}\.\d{1,3}\.\d{1,3}\|172\.3[0-1]{1}\.\d{1,3}\.\d{1,3}

	scim:
	users:
	- admin\|c1oudc0w\|scim.write,scim.read,openid,cloud_controller.admin,doppler.firehose
	# user:
	# override: true
	# userids_enabled: true
	# external_groups: null

	jwt:
	signing_key: \|
	-----BEGIN RSA PRIVATE KEY-----
	MIICXAIBAAKBgQDHFr+KICms+tuT1OXJwhCUmR2dKVy7psa8xzElSyzqx7oJyfJ1
	JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMXqHxf+ZH9BL1gk9Y6kCnbM5R6
	0gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBugspULZVNRxq7veq/fzwIDAQAB
	AoGBAJ8dRTQFhIllbHx4GLbpTQsWXJ6w4hZvskJKCLM/o8R4n+0W45pQ1xEiYKdA
	Z/DRcnjltylRImBD8XuLL8iYOQSZXNMb1h3g5/UGbUXLmCgQLOUUlnYt34QOQm+0
	KvUqfMSFBbKMsYBAoQmNdTHBaz3dZa8ON9hh/f5TT8u0OWNRAkEA5opzsIXv+52J
	duc1VGyX3SwlxiE2dStW8wZqGiuLH142n6MKnkLU4ctNLiclw6BZePXFZYIK+AkE
	xQ+k16je5QJBAN0TIKMPWIbbHVr5rkdUqOyezlFFWYOwnMmw/BKa1d3zp54VP/P8
	+5aQ2d4sMoKEOfdWH7UqMe3FszfYFvSu5KMCQFMYeFaaEEP7Jn8rGzfQ5HQd44ek
	lQJqmq6CE2BXbY/i34FuvPcKU70HEEygY6Y9d8J3o6zQ0K9SYNu+pcXt4lkCQA3h
	jJQQe5uEGJTExqed7jllQ0khFJzLMx0K6tj0NeeIzAaGCQz13oo2sCdeGRHO4aDh
	HH6Qlq/6UOV5wP8+GAcCQFgRCcB+hrje8hfEEefHcFpyKH+5g1Eu1k0mLrxK2zd+
	4SlotYRHgPCEubokb2S1zfZDWIXW3HmggnGgM949TlY=
	-----END RSA PRIVATE KEY-----
	verification_key: \|
	-----BEGIN PUBLIC KEY-----
	MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHFr+KICms+tuT1OXJwhCUmR2d
	KVy7psa8xzElSyzqx7oJyfJ1JZyOzToj9T5SfTIq396agbHJWVfYphNahvZ/7uMX
	qHxf+ZH9BL1gk9Y6kCnbM5R60gfwjyW1/dQPjOzn9N394zd2FJoFHwdq9Qs0wBug
	spULZVNRxq7veq/fzwIDAQAB
	-----END PUBLIC KEY-----
	# authentication:
	# policy:
	# lockoutAfterFailures: null
	# countFailuresWithinSeconds: null
	# lockoutPeriodSeconds: null
	# password:
	# policy:
	# minLength: 0
	# maxLength: 255
	# requireUpperCaseCharacter: 0
	# requireLowerCaseCharacter: 0
	# requireDigit: 0
	# requireSpecialCharactor: 0
	# requirePasswordInMonths: 0

	cc:
	client_secret: c1oudc0w
	# token_secret: c1oudc0w #DO NOT SET if uaa.jwt.verification_key is set
	admin:
	client_secret: c1oudc0w
	batch:
	username: batchuser
	password: c1oudc0w
	# login:
	# client_secret: #DEPRECATED
	# ldap:
	# enabled: false
	# user:
	# authorities:
	# - openid
	# - scim.me
	# - cloud_controller.read
	# - cloud_controller.write
	# - cloud_controller_service_permissions.read
	# - password.write
	# - uaa.user
	# - approvals.me
	# - oauth.approvals
	# - notification_preferences.read
	# - notification_preferences.write
	# client:
	# autoapprove:
	# - cf
	clients:
	cloud_controller_username_lookup:
	authorities: scim.userids #DEPRECATED?
	authorized-grant-types: client_credentials #DEPRECATED?
	client: cc
	secret: c1oudc0w
	doppler:
	authorities: uaa.resource #DEPRECATED?
	override: true #DEPRECATED?
	secret: c1oudc0w
	login:
	secret: c1oudc0w
	# authorities: oauth.login,scim.write,clients.read,notifications.write,critical_notifications.write,emails.write,scim.userids,password.write
	# authorized-grant-types: authorization_code,client_credentials,refresh_token
	# override: true
	# redirect-uri: http://login.cfdiego.nttlabs.info
	# scope: openid,oauth.approvals
	notifications:
	authorities: cloud_controller.admin,scim.read
	authorized-grant-types: client_credentials
	secret: c1oudc0w
	gorouter:
	secret: c1oudc0w

	syslog_daemon_config: null

	dropsonde:
	enabled: true

	# dea_logging_agent:
	# debug: false
	# status:
	# user: ""
	# password: ""
	# port: 0

	# statsd_injector:
	# metron_port: 3457
	# statsd_port: 8125
	# log_level: info

	metron_endpoint:
	shared_secret: c1oudc0w
	# host: 127.0.0.1
	# port: 3456
	# dropsonde_port: 3457

	metron_agent:
	deployment: cf
	zone: z1
	# incoming_port: 3456
	# dropsonde_incoming_port: 3457
	# statsd_incoming_port: 8125
	# debug: false
	# status:
	# user: ""
	# password: ""
	# port: 0
	# etcd_query_interval_milliseconds: 5000
	# collector_registrar_interval_milliseconds: 60000

	loggregator_endpoint:
	shared_secret: c1oudc0w

	loggregator:
	incoming_port: 13456
	dropsonde_incoming_port: 13457
	doppler_port: 18081
	outgoing_dropsonde_port: 28081

	doppler_endpoint:
	shared_secret: c1oudc0w

	doppler:
	enabled: true
	use_ssl: false
	port: 80
	incoming_port: 13456
	dropsonde_incoming_port: 13457
	outgoing_port: 18081
	zone: z1
	# debug: false
	# status:
	# user: ""
	# password: ""
	# port: 0
	# maxRetainedLogMessages: 100
	# blacklisted_syslog_ranges: null
	# container_metric_ttl_seconds: 120
	# collector_registrar_interval_milliseconds: 60000
	# unmarshaller_count: 5
	# sink_inactivity_timeout_seconds: 3600
	# uaa_client_id: doppler

	traffic_controller:
	incoming_port: 23456
	outgoing_port: 28080
	zone: z1
	# host: 0.0.0.0
	# debug: false
	# status:
	# user: ""
	# password: ""
	# port: 0
	# collector_registrar_interval_milliseconds: 60000

	logger_endpoint:
	use_ssl: false
	port: 80

	# syslog_drain_binder:
	# drain_url_ttl_seconds: 60
	# update_interval_seconds: 15
	# polling_batch_size: 1000
	# debug: false

	uaa_client_id: cf
	uaa_endpoint: http://uaa.192.168.13.70.xip.io
	uaa_client_auth_credentials:
	username: admin
	password: c1oudc0w

	smoke_tests:
	# suite_name: CF_SMOKE_TESTS
	api: http://api.192.168.13.70.xip.io
	apps_domain: 192.168.13.70.xip.io
	user: admin
	password: c1oudc0w
	org: SMOKE_TEST_ORG
	space: SMOKE_TEST_SPACE
	# use_existing_org: false
	# use_existing_space: false
	# logging_app: ''
	# runtime_app: ''
	# skip_ssl_validation: false
	ginkgo_opts: '-v'

	acceptance_tests:
	api: http://api.192.168.13.70.xip.io
	apps_domain: 192.168.13.70.xip.io
	admin_user: admin
	admin_password: c1oudc0w
	# skip_ssl_validation: false
	system_domain: 192.168.13.70.xip.io
	client_secret: c1oudc0w
	# nodes: 2
	# verbose: false
	# include_sso: false
	# include_operator: false
	# include_logging: false
	# include_security_groups: false
	# include_internet_dependent: false
	# include_services: false
	# include_v3: false
	# include_routing: false
	# use_diego: false
	# skip_regex: null
	default_timeout: 60 #default 30sec
	cf_push_timeout: 240 #default 120sec
	long_curl_timeout: 240 #default 120sec
	broker_start_timeout: 600 #default 600sec

	collector: null