Cadoles/eole-one-frontend
20
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
8a17a7bdd7
eole-one-frontend/tmpl/sunstone-server.conf
Philippe Caseiro 4b48a82320 tmpl/nginx-nebula.conf: Ajout du paramètrage pour le support HTTPS. 
Afin de pouvoir bénéficier du HTTPS et de VNC on fait écouter sunstone sur l'IP
du serveur plutôt que sur 127.0.0.1 ainsi websocketify écoute également sur l'IP
et on a toujours accès au port VNC.

Cette méthode marche car le reverse proxy est sur la même machine.

Sunstone reste accessible sur le port 9000 aux IP listées dans ip_ssh_eth0

Sunstone en https est lui disponible pour les IP listées dans ip_admin_eth0.

fixes #9081 @1h00
2015-08-11 17:17:38 +02:00

163 lines
5.5 KiB
Plaintext
Raw Blame History

# -------------------------------------------------------------------------- #
# Copyright 2002-2013, OpenNebula Project (OpenNebula.org), C12G Labs #
# #
# Licensed under the Apache License, Version 2.0 (the "License"); you may #
# not use this file except in compliance with the License. You may obtain #
# a copy of the License at #
# #
# http://www.apache.org/licenses/LICENSE-2.0 #
# #
# Unless required by applicable law or agreed to in writing, software #
# distributed under the License is distributed on an "AS IS" BASIS, #
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. #
# See the License for the specific language governing permissions and #
# limitations under the License. #
#--------------------------------------------------------------------------- #
################################################################################
# Server Configuration
################################################################################
# Directory to store temp files when uploading images
#
:tmpdir: /var/tmp
# OpenNebula sever contact information
#
:one_xmlrpc: http://localhost:2633/RPC2
# Server Configuration
#
#:host: 127.0.0.1
:host: %%ip_sunstone
:port: %%port_sunstone
# Place where to store sessions, this value can be memory or memcache
# Use memcache when starting multiple server processes, for example,
# with passenger
#
# NOTE. memcache needs a separate memcached server to be configured. Refer
# to memcached documentation to configure the server.
:sessions: memory
# Memcache configuration
:memcache_host: localhost
:memcache_port: 11211
:memcache_namespace: opennebula.sunstone
################################################################################
# Log
################################################################################
# Log debug level
# 0 = ERROR, 1 = WARNING, 2 = INFO, 3 = DEBUG
#
:debug_level: 3
################################################################################
# Auth
################################################################################
# Authentication driver for incomming requests
# sunstone, for OpenNebula's user-password scheme
# x509, for x509 certificates based authentication
# opennebula, the authentication will be done by the opennebula core using the
# driver defined for the user
#
#:auth: sunstone
%if %%getVar('sunstone_auth_modes', 'sunstone') == 'ldap'
:auth: opennebula
%else
:auth: sunstone
%end if
# Authentication driver to communicate with OpenNebula core
# cipher, for symmetric cipher encryption of tokens
# x509, for x509 certificate encryption of tokens
#
:core_auth: cipher
# For LDAP auth. Encode credentials sent to OpenNebula. Turns espaces into %20.
# This only works with "opennebula" auth.
#
#:encode_user_password: true
################################################################################
# UI Settings
################################################################################
# :vnc_proxy_
# port: port where the vnc proxy will listen
# support_wss: no | yes | only. For yes and only, provide path to
# cert and key. "yes" means both ws and wss connections will be
# supported.
# vnc_proxy_cert: Certificate to encrypt wss connections.
# vnc_proxy_key: Key for wss connections. Only necessary if not included in cert.
# vnc_proxy_ipv6: Enable ipv6 support for novnc-server
:vnc_proxy_port: %%vnc_proxy_port_sunstone
:vnc_proxy_support_wss: yes
:vnc_proxy_cert: %%server_cert
:vnc_proxy_key: %%server_key
:vnc_proxy_ipv6: false
# Default language setting
:lang: %%langue_sunstone
# Default table order
:table_order: desc
################################################################################
# Marketplace
################################################################################
# Marketplace username and password
# If no credentials are provided, an anonymous client will be used
#
#:marketplace_username:
#:marketplace_password:
# Marketplace endpoint
#
%if %%getVar('activer_market_place','non') == 'oui'
:marketplace_url: %%market_place_url
%end if
%if %%getVar('activer_oneflow', 'non') == 'oui'
################################################################################
# OneFlow
################################################################################
# OneFlow endpoint
#
:oneflow_server: http://%%getVar('ip_oneflow','172.0.0.1'):%%getVar('port_oneflow', '2474')/
%end if
################################################################################
# Routes
################################################################################
# Array of files containing ruby code to extend the default sunstone-server
# routes. These files must be placed inside the custom_routes directory
# in the sunstone root dir (/usr/lib/one/sunstone/routes)
#
# Example:
# $ ls /usr/lib/one/sunstone/routes
# custom.rb other.rb
#
# $ cat /usr/lib/one/sunstone/routes/example.rb
# get '/custom' do
# body "It works"
# end
#
#:routes:
# - custom
# - other
:routes:
%if %%getVar('activer_oneflow', 'non') == 'oui'
- oneflow
%end if
%if %%getVar('activer_market_views', 'non') == 'oui'
- appmarket
%end if
Reference in New Issue View Git Blame Copy Permalink