Commit Graph

1198 Commits

Author SHA1 Message Date
Zuul 651b8e4307 Merge "Support rbac_service_* options" 2024-03-26 03:50:33 +00:00
Takashi Kajinami b2a7f54584 Support rbac_service_* options
... which were added recently to ironic. Note that the specific default
value is defined for rbac_service_project_name, because in Puppet
OpenStack modules 'services' is widely used for service project instead
of 'service', which is the default in ironic.

Depends-on: https://review.opendev.org/907148
Change-Id: I28485f7946d5a040a039e6c200de264a840ba7c4
2024-03-22 13:48:50 +09:00
Takashi Kajinami d921c974c6 pxe: Validate more path parameters
Some parameters are used to determine file path (or name) so should
accept only absolute path (or a non-empty string).

Change-Id: I74a137693c18a187d12cd53462c36759828c5b5b
2024-03-19 18:03:11 +09:00
Takashi Kajinami 224679340d Require valid values for (i)PXE parameters
Related-Bug: #2058229
Change-Id: I228074623f1400985bb7f5a4c187ac14cf28c435
2024-03-19 13:42:12 +09:00
Zuul 3817181245 Merge "inspector: Fix wrong type of default pxe_timeout" 2024-03-18 16:24:06 +00:00
Zuul 6a7b2ddf09 Merge "pxe: Support more flexible configurations of apache vhost" 2024-03-18 16:24:04 +00:00
Takashi Kajinami 055a0f1749 inspector: Fix wrong type of default pxe_timeout
The pxe_timeout parameter should be set to an integer value (or
a string representing an integer) and can't be set to
the os_service_default fact.

Closes-Bug: #2058229
Change-Id: I7b04e5586c82fc528f960beddfe50a7b355f6580
2024-03-18 20:14:42 +09:00
Takashi Kajinami 7f66fbdfad pxe: Support more flexible configurations of apache vhost
Closes-Bug: #2056305
Change-Id: I6df8ed173d466c0cd547b322b6798d31f6713607
2024-03-18 00:57:39 +09:00
Zuul 51cd1038d8 Merge "Stop hard-coding config file for db sync" 2024-03-15 03:57:49 +00:00
Zuul 2425ab34ef Merge "Expose rabbit_transient_quorum_queue" 2024-03-14 19:30:36 +00:00
Takashi Kajinami 28149003cd Expose rabbit_transient_quorum_queue
Depends-on: https://review.opendev.org/911021
Change-Id: I8501190b817e8f2da0941056d86c21cda48aeee0
2024-03-14 09:31:11 +09:00
Takashi Kajinami 8dbb5954cb Stop hard-coding config file for db sync
The ironic-dbsync command by default load service config files.
Removing the override allows us to use additional paths such as
ironic.conf.d in the future.

Note that we still need the hard-coded path for ironic-inspector-dbsync
because the service config file is installed at a path different from
the default one oslo.config attempts to load (the file name should be
"ironic-inspector.conf")

Change-Id: I07e066d240dbe4da3eb2fce9040685cc15997ca0
2024-03-13 10:27:46 +09:00
Zuul 76b07c7bda Merge "healthcheck: Expose ignore_proxied_requests parameter" 2024-02-26 03:10:03 +00:00
Takashi Kajinami 875efc2990 healthcheck: Expose ignore_proxied_requests parameter
Depends-on: https://review.opendev.org/909807
Change-Id: I140092e9b370aefc802f8c89d9033f559c0ddbe2
2024-02-26 01:32:35 +09:00
OpenStack Release Bot b660819456 reno: Update master for unmaintained/yoga
Update the yoga release notes configuration to build from
unmaintained/yoga.

Change-Id: Ibd4c965dd02e837c6bfdef7194f7d99c5e441ba1
2024-02-21 16:46:03 +00:00
Takashi Kajinami 770aa303c1 Add support for oslo.reports options
Depends-on: https://review.opendev.org/907091
Change-Id: I316de2106716b97fcffc0eec02d4480bb94db972
2024-01-30 01:58:15 +09:00
Zuul eeee4b004e Merge "healthcheck: Expose allowed_source_ranges" 2024-01-18 11:46:46 +00:00
Takashi Kajinami 39c8e50eab healthcheck: Expose allowed_source_ranges
... which was added to puppet-oslo recently.

Depends-on: https://review.opendev.org/905557
Change-Id: Ie089505d31cc5481e446d74fd299ffed6809d613
2024-01-17 15:07:03 +09:00
Zuul 40fc997ba1 Merge "inspector: Prepare to use ironic-inspector user by default" 2024-01-10 10:36:17 +00:00
Zuul d51f55b237 Merge "Make password parameters required" 2023-12-19 08:48:11 +00:00
Zuul fcf88063a7 Merge "inspector: Make password parameters required" 2023-12-19 00:02:25 +00:00
Zuul 9afaa658ee Merge "authtoken: Make password required" 2023-12-18 23:53:31 +00:00
Takashi Kajinami 2eaa4e1aa0 inspector: Prepare to use ironic-inspector user by default
Currently even ironic-inspector services use the ironic keystone user
though the ironic-inspector keystone user is created. This adds
a warning message to make users aware of the future change to use
the own service user.

Change-Id: I62b7cf88496a811f4068244d7a3fb563a53aa1d6
2023-12-19 01:22:31 +09:00
Takashi Kajinami ba0bf93c2e Make password parameters required
... because these parameters are actually required for authentication.

Also, fix the inconsistent default values of auth_url parameter.

Depends-on: https://review.opendev.org/903851
Change-Id: I41cdf7f04b8ced4f591d7b1ceb5b1138462ff4fd
2023-12-18 12:48:58 +09:00
Takashi Kajinami 1cd6c98b05 inspector: Make password parameters required
... because these parameters are actually required for authentication.

Also, fix the inconsistent default values of auth_url parameter.

Change-Id: Ic2c0e5d51825b7baa5c11be5c8bbf842f60b2f22
2023-12-18 09:56:57 +09:00
Takashi Kajinami 588fe70ddf authtoken: Make password required
The password parameter is not really optional. This makes it
a required parameter to give more sensible validation error.

Change-Id: I38d4f000905ac01ac1cf50bfbc48cb30af609cf7
2023-12-18 01:41:47 +09:00
Takashi Kajinami 0e78daf80d Simplify logic to locate efi/shim file
... using the operating system name. This may allow the module to work
with untested distributions such as Rocky.

Change-Id: Idd73ccd4d5366ccbb9373d7e3bfcba120fc238bb
2023-12-11 22:26:17 +09:00
Zuul 4ea8a53abf Merge "inspector: non-standalone mode support" 2023-11-27 10:33:27 +00:00
Zuul f9f444b928 Merge "Create separate dbsync anchors for ironic-inspector" 2023-11-20 18:49:41 +00:00
Zuul de546b6500 Merge "Refactor unit tests for ironic class" 2023-11-20 18:49:40 +00:00
Zuul 397918f9cc Merge "inspector: Support oslo.messaging options" 2023-11-20 18:49:39 +00:00
Zuul 59b380fc3f Merge "Use new openstackclient tag" 2023-11-20 18:49:37 +00:00
Zuul c3f4e82488 Merge "Use core provider implementation to look up keystone resources" 2023-11-20 18:49:36 +00:00
Takashi Kajinami 60a2180ffa inspector: non-standalone mode support
The ironic-inspector service can be deployed using separate api service
and conductor service. This introduces the initial support for that
deployment pattern. Note that the non-standalone mode is supported in
only RHEL and CentOS. We may add Debian support later.

Change-Id: Ic53d454841252cfb6802cd7856faaab2435b984b
2023-11-21 01:54:12 +09:00
Takashi Kajinami 2b8f21080c Create separate dbsync anchors for ironic-inspector
... to make the two implementations for ironic and ironic-inspector
more consistent.

Change-Id: I62290eba14785a00dad15918ce63cea0eed8fcac
2023-11-20 16:11:01 +09:00
Takashi Kajinami 6dd89d34a5 inspector: Support oslo.messaging options
The ironic-inspector service has api workers and rpc workers and these
communicate over rabbitmq.

Closes-Bug: #2043931
Change-Id: I759c856d9f19c970390a10ca3b19ba0458190203
2023-11-20 09:55:33 +09:00
Takashi Kajinami 3e5b48234f Refactor unit tests for ironic class
... and improves parameter coverage.

Change-Id: I2f1173dbaf0494d667e2e3a38e0d4bcad18b7a75
2023-11-20 02:59:13 +09:00
Takashi Kajinami 1e8d747269 Use new openstackclient tag
The new openstackclient tag was added so that we can get all resources
about openstack CLI more easily. This adds this tag to ironicclient
because the plugin provides some sub-commands.

This also removes the support package tag because the client package is
not at all used by ironic itself.

In addition, openstackclient is needed to query keystone api when
transform in ironic_config is used.

Depends-on: https://review.opendev.org/899594
Change-Id: I46dcf0f8e7f9b72d27317d310bffdd25653a25cf
2023-11-20 01:07:52 +09:00
Takashi Kajinami 06e65b5fee Use core provider implementation to look up keystone resources
... so that the credentials in clouds.yaml file can be used if
available instead of openrc.

Also, the transformation from project name to project uuid is still
needed so the transform_to method has been undeprecated.

Change-Id: I0e0d42d92e8272f3f7faf809e07e599805bbedaa
2023-11-18 15:07:10 +00:00
Takashi Kajinami 029df239fc Bump supported Debian version to 12 (Bookworm)
Debian 12 was released in June 2023. Recent versions of OpenStack
(actually, 2023.1 and later) no longer support Debian 11.

Change-Id: I500a7659652ce33c569343d23feae72a48921e4b
2023-11-18 09:16:07 +00:00
Zuul b757316ed7 Merge "Remove unused functions from base provider" 2023-11-17 18:43:36 +00:00
Zuul 5c5909f5fc Merge "Fix wrong conversion from project name to uuid" 2023-11-17 18:33:33 +00:00
Takashi Kajinami 3cad74dac3 Remove unused functions from base provider
These functions in the base provider has been unused.

Change-Id: I265ddb8236335abfabc01abd30eafaa2cda6712d
2023-11-16 14:54:29 +00:00
Takashi Kajinami 2985cdc613 Fix wrong conversion from project name to uuid
The transform_to => 'project_uuid' should transform a value between
the following two formats.
 <project name>  <=>  AUTH_<project uuid>

However the existing logic adds unnecessary AUTH_ prefix when
transforming the uuid format back to a project name.

This removes the wrong AUTH_ prefix so that the value is transformed
back to the original value.

Change-Id: I2cba1d06d0c9f18ae2a9679592f3f95c82868a90
2023-11-16 23:52:55 +09:00
Zuul 90cb5b7b74 Merge "inspector: Add support for iptables PXE filter options" 2023-11-07 21:06:28 +00:00
Zuul 53c4c4cc2a Merge "inspector: Show warning when dhcp hostsdir is not configured" 2023-11-07 21:05:42 +00:00
Zuul 4d9ea8925a Merge "inspector: Drop redundant hard-coded defaults" 2023-11-07 21:05:41 +00:00
Takashi Kajinami 0cd31ddc21 inspector: Add support for iptables PXE filter options
This introduces a new class to manage [pxe] options, which are used by
the iptables PXE filter options.

The configuration of [pxe] dnsmasq_interface option will be moved to
the new class, following the existing implementation to configure
the [dnsmasq_pxe_filter] dhcp_hostsdir option.

Change-Id: If0ec9eecb70d9976de76899fc115fc9facc75fdd
2023-11-05 23:19:12 +09:00
Takashi Kajinami 247d4ac3d3 inspector: Show warning when dhcp hostsdir is not configured
The dnsmasq_dhcp_hostsdir should be set to a specific path when dnsmasq
PXE filter is used. This adds a warning message to inform possible
mis-configuration.

Note that dhcp hostsdir is not needed when the other PXE filter such
as iptables PXE filter is used, thus we avoid updating the default
value.

Closes-Bug: #2042731
Change-Id: If127bd4661709835ab0d9d39e0341367fdef51b7
2023-11-05 09:14:45 +00:00
Takashi Kajinami 7b754779a4 inspector: Drop redundant hard-coded defaults
Some of the hard-coded defaults exactly match the defaults in
ironic-inspector.

Change-Id: I1eb2ded6661474d820fba0e72e3c476dedd06475
2023-11-05 00:28:46 +09:00