moments/asset/manifest.yml

app: moments
environments:
  prod:
    components:
      api:
        hosts: [nikola.kosherinata.internal]
        config:
          # Reachable across the WG mesh from oolon (the per-site nginx
          # ingress for rob.tn). Firewalld restricts ingress; see
          # asset/firewalld/moments-api.xml.
          bind: 0.0.0.0:42424
          db_role: moments_ro
          db_host: magrathea.kosherinata.internal
          db_port: 5432
          db_name: moments
      worker:
        hosts: [frootmig.kosherinata.internal]
        config:
          db_role: moments_rw
          db_host: magrathea.kosherinata.internal
          db_port: 5432
          db_name: moments
          github_user: grenade
          gitea_host: git.lair.cafe
          gitea_user: grenade
          hg_host: hg-edge.mozilla.org
          hg_repos: build/puppet,build/tools,build/buildbot-configs
          hg_author_terms: thijssen,grenade
          bugzilla_host: bugzilla.mozilla.org
          bugzilla_email: rthijssen@mozilla.com
        secrets:
          GITHUB_TOKEN: github.com/grenade/admin-token
          # GITEA_TOKEN, BUGZILLA_API_KEY: optional, omit unless required.
      web:
        hosts: [oolon.hanzalova.internal]
        config:
          server_name: rob.tn
          root: /var/www/moments
          api_upstream: http://nikola.kosherinata.internal:42424