add gateway conf

2024-12-22 11:52:47 +01:00 · 2024-12-22 11:52:47 +01:00 · 6abf600c4d
commit 6abf600c4d
parent e54e83f74f
2 changed files with 100 additions and 0 deletions
--- a/k8s-gateway.json
+++ b/k8s-gateway.json
@ -0,0 +1,64 @@
+{
+    "ignition": {
+        "version": "3.5.0"
+    },
+    "passwd": {
+        "users": [
+            {
+                "name": "root",
+                "sshAuthorizedKeys": [
+                    "ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAACFBADaetOnr6mX9T+wd0ltUAv0G9JxoIkWZMjTvvBRabNqtGVe+WK9y1ZLyee8XxmxoZaZ/r/qSycC/oY0+dl7xv9ZwQHlhMeo1YYIFPd/R1NZu9laYRA+CNTnx+amggXSxccvbIIAu8hs1cX+vad/AVthkDWptrw40RqYyV82cRfVRrvqrQ== maciej@fedora"
+                ]
+            }
+        ]
+    },
+    "storage": {
+        "disks": [
+            {
+                "device": "/dev/disk/by-id/coreos-boot-disk",
+                "partitions": [
+                    {
+                        "label": "root",
+                        "number": 4,
+                        "resize": true,
+                        "sizeMiB": 0
+                    }
+                ]
+            }
+        ],
+        "filesystems": [
+            {
+                "device": "/dev/mapper/root",
+                "format": "btrfs",
+                "label": "root",
+                "mountOptions": [
+                    "noatime",
+                    "discard=async",
+                    "compress-force=zstd:1"
+                ],
+                "wipeFilesystem": true
+            }
+        ],
+        "luks": [
+            {
+                "device": "/dev/disk/by-partlabel/root",
+                "discard": true,
+                "keyFile": {
+                    "compression": "",
+                    "source": "data:,changeme"
+                },
+                "label": "root",
+                "name": "root",
+                "wipeVolume": true
+            }
+        ]
+    },
+    "systemd": {
+        "units": [
+            {
+                "enabled": false,
+                "name": "zincati.service"
+            }
+        ]
+    }
+}
--- a/src/k8s-gateway.yaml
+++ b/src/k8s-gateway.yaml
@ -0,0 +1,36 @@
+variant: fcos
+version: 1.6.0
+passwd:
+  users:
+  - name: root
+    ssh_authorized_keys:
+    - ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAACFBADaetOnr6mX9T+wd0ltUAv0G9JxoIkWZMjTvvBRabNqtGVe+WK9y1ZLyee8XxmxoZaZ/r/qSycC/oY0+dl7xv9ZwQHlhMeo1YYIFPd/R1NZu9laYRA+CNTnx+amggXSxccvbIIAu8hs1cX+vad/AVthkDWptrw40RqYyV82cRfVRrvqrQ== maciej@fedora
+storage:
+  disks:
+  - device: /dev/disk/by-id/coreos-boot-disk
+    partitions:
+    - label: root
+      number: 4
+      size_mib: 0
+      resize: true
+  filesystems:
+  - device: /dev/mapper/root
+    format: btrfs
+    mount_options:
+    - noatime
+    - discard=async
+    - compress-force=zstd:1
+    wipe_filesystem: true
+    label: root
+  luks:
+  - name: root
+    label: root
+    device: /dev/disk/by-partlabel/root
+    discard: true
+    key_file:
+      inline: changeme # remember to also update /etc/luks/root file
+    wipe_volume: true
+systemd:
+  units:
+  - name: "zincati.service"
+    enabled: false