-
Notifications
You must be signed in to change notification settings - Fork 2
/
defaults.jinja
75 lines (68 loc) · 2.17 KB
/
defaults.jinja
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
{% load_yaml as defaults %}
store:
nspawn_config: /etc/systemd/nspawn
nspawn_run: /run/systemd/nspawn
nspawn_target: /var/lib/machines
nspawn_volume: /var/lib/volumes/nspawn
mkosi_config: /etc/mkosi
mkosi_cache: /var/cache/mkosi
mkosi_target: /var/lib/mkosi
image:
{% for distro in ['focal'] %}
{{ distro }}:
mkosi:
Distribution:
Distribution: ubuntu
Release: {{ distro }}
Repositories: main,universe,multiverse,restricted
Output:
Format: directory
Bootable: false
Hostname: {{ distro }}
Content:
WithNetwork: true
Packages:
WithNetwork: true
PostInstallationScript: mkosi.postinst
NSpawnSettings: mkosi.nspawn
Packages:
- lsb-release
- tzdata
- iproute2
- iputils-ping
- openssh-client
- openssh-server
- python3
Host: {}
Validation: {}
machine:
# enabled: if false, service will not get started and will be stopped if running
enabled: true
# environment: dict of key,value pairs to be included in the target environment
environment: {}
nspawn:
Exec:
Boot: true
LinkJournal: try-guest
PrivateUsers: pick
ResolvConf: copy-host
Files:
PrivateUsersChown: true
Network:
Private: true
VirtualEthernet: true
Zone: nspawn
postinst:
# after creation of machine, a script can be copied to and executed
# on the target machine once. the source will be copied to /tmp/machine.postinst
# and called using $0 <userid> <groupid> <username> <homedir>
source: salt://systemd/nspawn/machine.postinst
# defaults arguments for the postinst script
args: ['1000' , '1000', 'user', '/home/user']
# ssh keys string authorized for root and <userid>,
# will be created at /tmp/authorized_keys for usage in postinst
authorized_keys: ""
{% endfor %}
{% endload %}
{%- set settings = salt['grains.filter_by']({'default': defaults},
grain='default', default= 'default', merge= salt['pillar.get']('systemd:nspawn', {})) %}