default => 2,
optional => 1,
minimum => 1,
- maximum => 3,
+ maximum => 7,
},
pg_bits => {
description => "Placement group bits, used to specify the " .
minimum => 6,
maximum => 14,
},
+ disable_cephx => {
+ description => "Disable cephx authentification.\n\n" .
+ "WARNING: cephx is a security feature protecting against " .
+ "man-in-the-middle attacks. Only consider disabling cephx ".
+ "if your network is private!",
+ type => 'boolean',
+ optional => 1,
+ default => 0,
+ },
},
},
returns => { type => 'null' },
UUID::generate($uuid);
UUID::unparse($uuid, $fsid);
+ my $auth = $param->{disable_cephx} ? 'none' : 'cephx';
+
$cfg->{global} = {
'fsid' => $fsid,
- 'auth cluster required' => 'cephx',
- 'auth service required' => 'cephx',
- 'auth client required' => 'cephx',
- 'filestore xattr use omap' => 'true',
+ 'auth cluster required' => $auth,
+ 'auth service required' => $auth,
+ 'auth client required' => $auth,
'osd journal size' => $pve_osd_default_journal_size,
'osd pool default min size' => 1,
+ 'mon allow pool delete' => 'true',
};
# this does not work for default pools
default => 2,
optional => 1,
minimum => 1,
- maximum => 3,
+ maximum => 7,
},
min_size => {
description => 'Minimum number of replicas per object',
default => 1,
optional => 1,
minimum => 1,
- maximum => 3,
+ maximum => 7,
},
pg_num => {
description => "Number of placement groups.",