-
Notifications
You must be signed in to change notification settings - Fork 16
Expand file tree
/
Copy pathbootstrap.env
More file actions
55 lines (50 loc) · 2.4 KB
/
Copy pathbootstrap.env
File metadata and controls
55 lines (50 loc) · 2.4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
export UNIQUE_TEST_ID="$(uuidgen | tr "[:upper:]" "[:lower:]" | head -c 10)"
export CONJUR_APPLIANCE_IMAGE=registry.tld/conjur-appliance:5.0-stable
export CONJUR_FOLLOWER_COUNT=1
export CONJUR_ACCOUNT=account-$UNIQUE_TEST_ID
export AUTHENTICATOR_ID=conjur-$UNIQUE_TEST_ID-test
export CONJUR_AUTHENTICATORS=authn,authn-k8s/${AUTHENTICATOR_ID},authn-jwt/${AUTHENTICATOR_ID},authn-iam/${AUTHENTICATOR_ID},authn-azure/${AUTHENTICATOR_ID},authn-gcp
export CONJUR_ADMIN_PASSWORD=ADmin123!!!!
export DEPLOY_MASTER_CLUSTER=true
export CONJUR_NAMESPACE_NAME=conjur-$UNIQUE_TEST_ID
export TEST_RUNNER_IMAGE=runner-$UNIQUE_TEST_ID
export DEV=false
export KIND=false
export APP_NAMESPACE_NAME=app-$UNIQUE_TEST_ID
#######
# Local DEV Env (uncomment all lines if using this configuration)
#######
# export PLATFORM=kubernetes
# export TEST_PLATFORM=gke
# export AUTHENTICATOR_ID=authn-dev-env
# export CONJUR_AUTHENTICATORS=authn,authn-k8s/${AUTHENTICATOR_ID},authn-jwt/${AUTHENTICATOR_ID}
# export APP_NAMESPACE_NAME=local-secrets-provider
# export CONJUR_NAMESPACE_NAME=local-conjur
# export RUN_IN_DOCKER=false
# export CONJUR_DEPLOYMENT=oss
# export SUMMON_ENV=gke
# export STOP_RUNNING_ENV=true
# export CONJUR_ACCOUNT=cucumber
# export CONJUR_LOG_LEVEL=debug
# export LOG_LEVEL=debug
# export DEV=true
# export SECRETS_MODE=k8s # Supported: [k8s, k8s-rotation, p2f, p2f-rotation, standalone]
# Uncomment to use labeled secrets (only supported in k8s/k8s-rotation secrets mode)
# export LABELED_SECRETS=true
# export SECRETS_REFRESH_INTERVAL=10m # optional but makes informer-based refreshes more apparent
# Uncomment to use JWT Authenticator
# export CONJUR_AUTHN_LOGIN=host/conjur/authn-jwt/${AUTHENTICATOR_ID}/apps/system:serviceaccount:${APP_NAMESPACE_NAME}-sa
# export SERVICE_ACCOUNT=${APP_NAMESPACE_NAME}-sa
# export CONJUR_AUTHN_TYPE=jwt
# Uncomment to deploy the Secrets Provider using HELM
# export DEV_HELM=true
# Uncomment to deploy with Conjur Cloud (provide necessary tenant variables)
# export CONJUR_DEPLOYMENT=cloud
# export CONJUR_ACCOUNT=conjur
# export SERVICE_ACCOUNT=${APP_NAMESPACE_NAME}-sa
# export CONJUR_AUTHN_LOGIN=host/data/system:serviceaccount:${APP_NAMESPACE_NAME}:${SERVICE_ACCOUNT}
# export CONJUR_AUTHN_TYPE=jwt
# export TENANT_ID= # must be provided (format: abc1234)
# export TENANT_NAME= # must be provided
# export TENANT_USER= # must be provided
# export TENANT_PASSWORD= # must be provided