-
Notifications
You must be signed in to change notification settings - Fork 1
/
enable-tsb.yml
40 lines (36 loc) · 1.06 KB
/
enable-tsb.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
- type: replace
path: /instance_groups/name=uaa/jobs/name=uaa/properties/uaa/clients/credhub_tsb_client?
value:
authorities: credhub.read,credhub.write
authorized-grant-types: client_credentials
secret: ((credhub_tsb_client_secret))
- type: replace
path: /instance_groups/name=credhub/jobs/name=credhub/provides?/credhub?
value:
as: credhub
shared: true
- type: replace
path: /addons/name=bosh-dns-aliases/jobs/name=bosh-dns-aliases/properties/aliases/-
value:
domain: tsb.service.cf.internal
targets:
- deployment: terraform-secure-backend
domain: bosh
instance_group: terraform-secure-backend
network: default
query: '*'
- type: replace
path: /instance_groups/name=credhub/jobs/name=credhub/properties/credhub/authorization/permissions/-
value:
actors:
- uaa-client:credhub_tsb_client
operations:
- read
- write
- delete
path: /terraform-secure-backend/tfstate/*
- type: replace
path: /variables/-
value:
name: credhub_tsb_client_secret
type: password