global:
  clusterName: pleasechangeme
  highAvailable: false

# -- set to $HOSTNAME
nodeName: kubezero-node
domain: changeme.org

# -- Needs to be set to primary node IP
listenAddress: 0.0.0.0

api:
  endpoint: kube-api.changeme.org:6443
  listenPort: 6443
  etcdServers: "https://etcd:2379"
  extraArgs: {}
  # -- https://s3.${REGION}.amazonaws.com/${CFN[ConfigBucket]}/k8s/$CLUSTERNAME
  serviceAccountIssuer: ""
  # -- s3://${CFN[ConfigBucket]}/k8s/$CLUSTERNAME
  oidcEndpoint: ""
  apiAudiences: "istio-ca"

  awsIamAuth:
    enabled: false
    workerNodeRole: "arn:aws:iam::000000000000:role/KubernetesNode"
    kubeAdminRole: "arn:aws:iam::000000000000:role/KubernetesNode"

  falco:
    enabled: false

etcd:
  nodeName: etcd
  state: new
  extraArgs: {}

# -- Set to false for openrc, eg. on Gentoo or Alpine
systemd: false
protectKernelDefaults: false

# patches: /tmp/patches