ansible-roles/docker-host/templates/daemon.json.j2

{
  "debug": false
  {# Docker data-dir (default to /var/lib/docker) #}
  ,"data-root": "{{ docker_home }}"
  {# Keep containers running while docker daemon downtime #}
  ,"live-restore": {{ docker_conf_live_restore | to_json }}
  {# Turn on user namespace remaping #}
  ,"userns-remap": "default"
{% if docker_conf_use_iptables %}
  {# Use iptables instead of docker-proxy #}
  ,"userland-proxy": false
  ,"iptables": true
{% endif %}
  {# Disable the possibility for containers processes to gain new privileges #}
  ,"no-new-privileges": {{ docker_conf_no_newprivileges | to_json }}
{% if docker_conf_disable_default_networking %}
  {# Disable all default network connectivity #}
  ,"bridge": "none"
  ,"icc": false
{% endif %}
{% if docker_tls_enabled %}
  ,"tls": true
  ,"tlscert": "{{ docker_tls_path }}/{{ docker_tls_cert }}"
  ,"tlscacert": "{{ docker_tls_path }}/{{ docker_tls_ca }}"
  ,"tlskey": "{{ docker_tls_path }}/{{ docker_tls_key }}"
{% endif %}
{% if docker_remote_access_enabled %}
  ,"hosts": ["tcp://{{ docker_daemon_listening_ip }}:{{ docker_daemon_port }}", "fd://"]
{% endif %}
}