31 lines
1.1 KiB
Django/Jinja
31 lines
1.1 KiB
Django/Jinja
{
|
|
"debug": false
|
|
{# Docker data-dir (default to /var/lib/docker) #}
|
|
,"data-root": "{{ docker_home }}"
|
|
{# Keep containers running while docker daemon downtime #}
|
|
,"live-restore": {{ docker_conf_live_restore | to_json }}
|
|
{# Turn on user namespace remaping #}
|
|
,"userns-remap": "default"
|
|
{% if docker_conf_use_iptables %}
|
|
{# Use iptables instead of docker-proxy #}
|
|
,"userland-proxy": false
|
|
,"iptables": true
|
|
{% endif %}
|
|
{# Disable the possibility for containers processes to gain new privileges #}
|
|
,"no-new-privileges": {{ docker_conf_no_newprivileges | to_json }}
|
|
{% if docker_conf_disable_default_networking %}
|
|
{# Disable all default network connectivity #}
|
|
,"bridge": "none"
|
|
,"icc": false
|
|
{% endif %}
|
|
{% if docker_tls_enabled %}
|
|
,"tls": true
|
|
,"tlscert": "{{ docker_tls_path }}/{{ docker_tls_cert }}"
|
|
,"tlscacert": "{{ docker_tls_path }}/{{ docker_tls_ca }}"
|
|
,"tlskey": "{{ docker_tls_path }}/{{ docker_tls_key }}"
|
|
{% endif %}
|
|
{% if docker_remote_access_enabled %}
|
|
,"hosts": ["tcp://{{ docker_daemon_listening_ip }}:{{ docker_daemon_port }}", "fd://"]
|
|
{% endif %}
|
|
}
|