2017-07-24 22:38:08 +02:00
|
|
|
{
|
2023-01-10 21:16:30 +01:00
|
|
|
"debug": false
|
2022-05-10 18:21:59 +02:00
|
|
|
{# Docker data-dir (default to /var/lib/docker) #}
|
2023-01-10 21:16:30 +01:00
|
|
|
,"data-root": "{{ docker_home }}"
|
2022-05-10 18:21:59 +02:00
|
|
|
{# Keep containers running while docker daemon downtime #}
|
2023-01-10 21:16:30 +01:00
|
|
|
,"live-restore": {{ docker_conf_live_restore | to_json }}
|
2022-05-10 18:21:59 +02:00
|
|
|
{# Turn on user namespace remaping #}
|
2023-01-10 21:16:30 +01:00
|
|
|
,"userns-remap": "default"
|
|
|
|
{% if docker_conf_use_iptables %}
|
2022-05-10 19:04:58 +02:00
|
|
|
{# Use iptables instead of docker-proxy #}
|
2023-01-10 21:16:30 +01:00
|
|
|
,"userland-proxy": false
|
|
|
|
,"iptables": true
|
|
|
|
{% endif %}
|
2022-05-10 19:04:58 +02:00
|
|
|
{# Disable the possibility for containers processes to gain new privileges #}
|
2023-01-10 21:16:30 +01:00
|
|
|
,"no-new-privileges": {{ docker_conf_no_newprivileges | to_json }}
|
|
|
|
{% if docker_conf_disable_default_networking %}
|
2022-05-10 19:04:58 +02:00
|
|
|
{# Disable all default network connectivity #}
|
2023-01-10 21:16:30 +01:00
|
|
|
,"bridge": "none"
|
|
|
|
,"icc": false
|
|
|
|
{% endif %}
|
|
|
|
{% if docker_tls_enabled %}
|
|
|
|
,"tls": true
|
|
|
|
,"tlscert": "{{ docker_tls_path }}/{{ docker_tls_cert }}"
|
|
|
|
,"tlscacert": "{{ docker_tls_path }}/{{ docker_tls_ca }}"
|
|
|
|
,"tlskey": "{{ docker_tls_path }}/{{ docker_tls_key }}"
|
|
|
|
{% endif %}
|
|
|
|
{% if docker_remote_access_enabled %}
|
|
|
|
,"hosts": ["tcp://{{ docker_daemon_listening_ip }}:{{ docker_daemon_port }}", "fd://"]
|
|
|
|
{% endif %}
|
2017-07-24 22:38:08 +02:00
|
|
|
}
|