witine/ansible-collection-crowdsec
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ansible-collection-crowdsec/roles/security_engine/templates/config.yaml.j2

70 lines
2.6 KiB
Django/Jinja
Raw Blame History

#jinja2:lstrip_blocks: True
# {{ ansible_managed }}
common:
daemonize: {{ crowdsec_daemonize | default(true) }}
log_media: {{ crowdsec_log_media | default('file') }}
log_level: {{ crowdsec_log_level | default('info') }}
log_dir: {{ crowdsec_log_dir }}/
log_max_size: {{ crowdsec_log_max_size | default(20) }}
compress_logs: {{ crowdsec_log_compress | default(true) }}
log_max_files: {{ crowdsec_log_max_files | default(10) }}
config_paths:
config_dir: /etc/crowdsec/
data_dir: {{ crowdsec_data_dir }}/
{% if crowdsec_simulation %}
simulation_path: /etc/crowdsec/simulation.yaml
{% endif %}
notification_dir: /etc/crowdsec/notifications/
plugin_dir: {{ crowdsec_plugin_dir }}/
crowdsec_service:
{% if crowdsec_acquisition is defined %}
acquisition_path: /etc/crowdsec/acquis.yaml
acquisition_dir: /etc/crowdsec/acquis.d
{% endif %}
parser_routines: 1
cscli:
output: {{ crowdsec_cli_output | default('human') }}
color: {{ crowdsec_cli_color | default('auto') }}
{% if crowdsec_database is defined %}
db_config:
{{ crowdsec_database | to_nice_yaml(indent=2) | trim | indent(2) }}
{% else %}
db_config:
log_level: info
type: sqlite
db_path: /var/lib/crowdsec/data/crowdsec.db
flush:
max_items: 5000
max_age: 7d
{% endif %}
plugin_config:
user: {{ crowdsec_plugin_user | default('nobody') }}
group: {{ crowdsec_plugin_group | default('nogroup') }}
api:
client:
insecure_skip_verify: {{ crowdsec_client_insecure_skip_verify | default(false) }}
credentials_path: /etc/crowdsec/local_api_credentials.yaml
server:
log_level: {{ crowdsec_server['log_level'] if 'log_level' in crowdsec_server else 'info' }}
listen_uri: {{ crowdsec_server['listen_uri'] if 'listen_uri' in crowdsec_server else '127.0.0.1:8080' }}
profiles_path: /etc/crowdsec/profiles.yaml
{% if crowdsec_console is defined %}
console_path: /etc/crowdsec/console.yaml
{% endif %}
{% if crowdsec_online_api is defined %}
online_client:
credentials_path: /etc/crowdsec/online_api_credentials.yaml
{% endif %}
trusted_ips:
{{ crowdsec_server_trusted_ips | to_nice_yaml(indent=2) | trim | indent(6) }}
{% if 'ssl' in crowdsec_server %}
tls:
cert_file: {{ crowdsec_server['ssl']['cert_file'] }}
key_file: {{ crowdsec_server['ssl']['key_file'] }}
{% endif %}
prometheus:
enabled: {{ crowdsec_prometheus_enabled | default(true) }}
level: {{ crowdsec_prometheus_level | default('full') }}
listen_addr: {{ crowdsec_prometheus_listen_addr | default('127.0.0.1') }}
listen_port: {{ crowdsec_prometheus_listen_port | default(6060) }}
Reference in a new issue View git blame Copy permalink