OpenCRVS infrastructure provisioning can be customised using the following configuration file:
infrastructure/server-setup/group_vars/all.ymlThis file contains advanced Ansible configuration used during:
server provisioning
Kubernetes installation
backup configuration
disk encryption setup
networking configuration
Kubernetes cluster tuning
Most deployments can use the default values provided by the repository. Advanced users may customise these values to adapt provisioning for their infrastructure requirements.
This file contains many additional variables and configuration options not documented here. Refer directly to:
infrastructure/server-setup/group_vars/all.ymlfor the complete list of supported variables.
Defines versions for:
kubeadm
kubelet
kubectl
Changing this value upgrades the Kubernetes components installed during provisioning. Downgrades are not supported to ensure environment stability.
OpenCRVS recommends configuring Kubernetes eviction policies using absolute disk sizes instead of percentages.
This helps prevent:
unexpected pod evictions
failed upgrades
disk exhaustion
Example:
Recommended minimum:
10Gi free disk space for stable operation
20Gi soft threshold for proactive cleanup
Backup retention can be configured using:
This example keeps one week of backups.
Example encryption configuration:
[!WARNING] The example configuration stores encryption keys locally on the server. Production environments should use a Hardware Security Module (HSM) or external secret management solution.
Provisioning validates available disk space before Kubernetes installation.
This helps avoid installation failures caused by insufficient storage.
Last updated
kubernetes_version: "v1.35"eviction_hard_nodefs: "10Gi"
eviction_hard_imagefs: "10Gi"
eviction_soft_nodefs: "20Gi"
eviction_soft_imagefs: "20Gi"amount_of_backups_to_keep: 7disk_encryption_key_path: /root/disk-encryption-key.txt
data_file_path: /cryptfs_file_sparse.imgmin_free_disk_size: "30g"