openstack
/
instack-undercloud
Code Issues Proposed changes
instack-undercloud/elements/puppet-stack-config/puppet-stack-config.yaml.te...

464 lines
21 KiB
Plaintext
Raw Blame History

keystone_identity_uri: http://{{LOCAL_IP}}:35357
nova_admin_auth_url: http://{{LOCAL_IP}}:35357
keystone_auth_uri: http://{{LOCAL_IP}}:5000/v3
keystone_region: 'regionOne'
debug: {{UNDERCLOUD_DEBUG}}
controller_host: {{LOCAL_IP}} #local-ipv4
controller_admin_vip: {{UNDERCLOUD_ADMIN_VIP}}
controller_public_vip: {{UNDERCLOUD_PUBLIC_VIP}}
service_certificate: {{UNDERCLOUD_SERVICE_CERTIFICATE}}
ntp::servers:
-
# Common Hiera data gets applied to all nodes
ssh::server::storeconfigs_enabled: false
# ceilometer settings used by compute and controller ceilo auth settings
ceilometer::agent::auth::auth_region: 'regionOne'
aodh::auth::auth_region: 'regionOne'
ceilometer::agent::auth::auth_tenant_name: 'service'
aodh::auth::auth_tenant_name: 'admin'
# Swift
swift::proxy::proxy_local_net_ip: {{LOCAL_IP}}
swift::proxy::authtoken::auth_uri: "%{hiera('keystone_auth_uri')}"
swift::proxy::authtoken::identity_uri: "%{hiera('keystone_identity_uri')}"
swift::storage::all::storage_local_net_ip: {{LOCAL_IP}}
swift::storage::all::incoming_chmod: 'Du=rwx,g=rx,o=rx,Fu=rw,g=r,o=r'
swift::storage::all::outgoing_chmod: 'Du=rwx,g=rx,o=rx,Fu=rw,g=r,o=r'
swift::swift_hash_suffix: {{UNDERCLOUD_SWIFT_HASH_SUFFIX}}
swift::proxy::account_autocreate: true
swift::proxy::authtoken::admin_password: {{UNDERCLOUD_SWIFT_PASSWORD}}
swift::keystone::auth::tenant: 'service'
swift::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_SWIFT_PUBLIC}}
swift::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_SWIFT_INTERNAL}}
swift::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_SWIFT_ADMIN}}
swift::keystone::auth::password: {{UNDERCLOUD_SWIFT_PASSWORD}}
swift::keystone::auth::region: "%{hiera('keystone_region')}"
swift::keystone::auth::configure_s3_endpoint: false
swift::keystone::auth::operator_roles:
- admin
- swiftoperator
tripleo::ringbuilder::part_power: 10
tripleo::ringbuilder::replicas: 3
tripleo::ringbuilder::min_part_hours: 1
swift_mount_check: false
swift::ringbuilder::replicas: 1
swift::proxy::pipeline:
- 'catch_errors'
- 'healthcheck'
- 'cache'
- 'ratelimit'
- 'bulk'
- 'tempurl'
- 'formpost'
- 'authtoken'
- 'keystone'
- 'staticweb'
- 'proxy-logging'
- 'proxy-server'
# Glance
glance::api::bind_port: 9292
glance::api::bind_host: {{LOCAL_IP}}
glance::api::auth_uri: "%{hiera('keystone_auth_uri')}"
glance::api::identity_uri: "%{hiera('keystone_identity_uri')}"
glance::api::registry_host: {{LOCAL_IP}}
glance::api::keystone_password: {{UNDERCLOUD_GLANCE_PASSWORD}}
glance::api::known_stores:
- glance.store.filesystem.Store
- glance.store.swift.Store
glance::api::pipeline: 'keystone'
# used to construct glance_api_servers
glance_port: 9292
glance_protocol: http
glance_log_file: ''
glance::api::database_connection: mysql+pymysql://glance:{{UNDERCLOUD_GLANCE_PASSWORD}}@{{LOCAL_IP}}/glance
glance::registry::bind_host: {{LOCAL_IP}}
glance::registry::keystone_password: {{UNDERCLOUD_GLANCE_PASSWORD}}
glance::registry::database_connection: mysql+pymysql://glance:{{UNDERCLOUD_GLANCE_PASSWORD}}@{{LOCAL_IP}}/glance
glance::registry::identity_uri: "%{hiera('keystone_identity_uri')}"
glance::registry::registry_host: {{LOCAL_IP}}
glance::registry::bind_host: {{LOCAL_IP}}
glance::registry::manage_service: true
glance::registry::pipeline: 'keystone'
glance::registry::auth_host: false
glance::registry::auth_port: false
glance::registry::auth_protocol: false
glance::keystone::auth::tenant: 'service'
glance::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_GLANCE_PUBLIC}}
glance::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_GLANCE_INTERNAL}}
glance::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_GLANCE_ADMIN}}
glance::keystone::auth::password: {{UNDERCLOUD_GLANCE_PASSWORD}}
glance::keystone::auth::region: "%{hiera('keystone_region')}"
glance::backend::swift::swift_store_auth_address: http://{{LOCAL_IP}}:35357/v2.0
glance::backend::swift::swift_store_user: service:glance
glance::backend::swift::swift_store_key: {{UNDERCLOUD_GLANCE_PASSWORD}}
glance::backend::swift::swift_store_create_container_on_put: true
glance::notify::rabbitmq::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
glance::notify::rabbitmq::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
glance::notify::rabbitmq::rabbit_host: {{LOCAL_IP}}
# Heat
heat_stack_domain_admin_password: {{UNDERCLOUD_HEAT_STACK_DOMAIN_ADMIN_PASSWORD}}
heat::engine::configure_delegated_roles: false
heat::engine::heat_stack_user_role: 'heat_stack_user'
heat::engine::heat_watch_server_url: http://{{LOCAL_IP}}:8003
heat::engine::heat_metadata_server_url: http://{{LOCAL_IP}}:8000
heat::engine::heat_waitcondition_server_url: http://{{LOCAL_IP}}:8000/v1/waitcondition
heat::engine::trusts_delegated_roles: []
heat::engine::auth_encryption_key: {{UNDERCLOUD_HEAT_ENCRYPTION_KEY}}
heat::engine::max_resources_per_stack: -1
heat::instance_user: heat-admin
heat::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
heat::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
heat::rabbit_host: {{LOCAL_IP}}
heat::auth_uri: "%{hiera('keystone_auth_uri')}"
heat::identity_uri: "%{hiera('keystone_identity_uri')}"
heat::keystone_password: {{UNDERCLOUD_HEAT_PASSWORD}}
heat::keystone::domain::domain_name: 'heat_stack'
heat::keystone::domain::domain_password: {{UNDERCLOUD_HEAT_STACK_DOMAIN_ADMIN_PASSWORD}}
heat::api::bind_host: {{LOCAL_IP}}
heat::api_cfn::bind_host: {{LOCAL_IP}}
heat::database_connection: mysql+pymysql://heat:{{UNDERCLOUD_HEAT_PASSWORD}}@{{LOCAL_IP}}/heat
heat_dsn: mysql+pymysql://heat:{{UNDERCLOUD_HEAT_PASSWORD}}@{{LOCAL_IP}}/heat
heat::rpc_response_timeout: 600
heat::keystone::auth::tenant: 'service'
heat::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_HEAT_PUBLIC}}
heat::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_HEAT_INTERNAL}}
heat::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_HEAT_ADMIN}}
heat::keystone::auth::password: {{UNDERCLOUD_HEAT_PASSWORD}}
heat::keystone::auth::region: "%{hiera('keystone_region')}"
heat::cron::purge_deleted::age: 1
heat::cron::purge_deleted::age_type: 'days'
heat::cron::purge_deleted::destination: '/dev/null'
heat::notification_driver: 'messaging'
# Keystone
keystone::admin_token: {{UNDERCLOUD_ADMIN_TOKEN}}
keystone_ca_certificate: '{{KEYSTONE_CA_CERTIFICATE}}'
keystone_signing_key: '{{KEYSTONE_SIGNING_KEY}}'
keystone_signing_certificate: '{{KEYSTONE_SIGNING_CERTIFICATE}}'
keystone::database_connection: mysql+pymysql://keystone:{{UNDERCLOUD_ADMIN_TOKEN}}@{{LOCAL_IP}}/keystone
keystone::roles::admin::password: {{UNDERCLOUD_ADMIN_PASSWORD}}
keystone::roles::admin::email: 'root@localhost'
keystone::roles::admin::admin_tenant: 'admin'
keystone::roles::admin::service_tenant: 'service'
keystone::token_expiration: 14400
keystone::endpoint::public_url: {{UNDERCLOUD_ENDPOINT_KEYSTONE_PUBLIC}}
keystone::endpoint::internal_url: {{UNDERCLOUD_ENDPOINT_KEYSTONE_INTERNAL}}
keystone::endpoint::admin_url: "%{hiera('keystone_identity_uri')}"
keystone::endpoint::region: "%{hiera('keystone_region')}"
keystone::wsgi::apache::ssl: false
keystone::wsgi::apache::bind_host: {{LOCAL_IP}}
keystone::notification_driver: messaging
keystone::notification_topics: notifications
keystone::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
keystone::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
keystone::rabbit_host: {{LOCAL_IP}}
# MySQL
admin_password: {{UNDERCLOUD_ADMIN_PASSWORD}}
mysql_innodb_buffer_pool_size: 0
mysql_root_password: ''
mysql_cluster_name: unset
mysql::server::manage_config_file: true
mysql::server::restart: true
mysql_max_connections: 4096
# Neutron
neutron::bind_host: {{LOCAL_IP}}
neutron::core_plugin: ml2
neutron::dhcp_agents_per_network: 2
neutron::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
neutron::rabbit_user: {{UNDERCLOUD_RABBIT_USERNAME}}
neutron::server::auth_uri: "%{hiera('keystone_auth_uri')}"
neutron::server::identity_uri: "%{hiera('keystone_identity_uri')}"
neutron::server::database_connection: mysql+pymysql://neutron:{{UNDERCLOUD_NEUTRON_PASSWORD}}@{{LOCAL_IP}}/neutron
neutron::server::sync_db: true
neutron::agents::ml2::ovs::enable_tunneling: True
neutron::agents::ml2::ovs::local_ip: {{LOCAL_IP}}
neutron_mechanism_drivers: openvswitch
neutron_bridge_mappings: ctlplane:br-ctlplane
neutron_public_interface: {{LOCAL_INTERFACE}}
neutron_physical_bridge: br-ctlplane
neutron::server::auth_password: {{UNDERCLOUD_NEUTRON_PASSWORD}}
neutron::agents::metadata::auth_password: {{UNDERCLOUD_NEUTRON_PASSWORD}}
neutron::agents::dhcp::dhcp_domain: ''
neutron::quota::quota_port: -1
neutron::server::notifications::nova_url: http://{{LOCAL_IP}}:8774/v2
neutron::server::notifications::auth_url: "%{hiera('nova_admin_auth_url')}"
neutron::server::notifications::tenant_name: service
neutron::server::notifications::password: {{UNDERCLOUD_NOVA_PASSWORD}}
neutron::keystone::auth::tenant: 'service'
neutron::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_NEUTRON_PUBLIC}}
neutron::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_NEUTRON_INTERNAL}}
neutron::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_NEUTRON_ADMIN}}
neutron::keystone::auth::password: {{UNDERCLOUD_NEUTRON_PASSWORD}}
neutron::keystone::auth::region: "%{hiera('keystone_region')}"
# Monitoring
# TODO(emilien) disable sensu repo when packaging ready
uchiwa::install_repo: false
uchiwa::sensu_api_endpoints:
- name: 'Undercloud Server'
host: {{LOCAL_IP}}
ssl: false
insecure: false
port: 4567
user: 'sensu'
pass: {{UNDERCLOUD_SENSU_PASSWORD}}
path: ''
timeout: 5000
sensu::server: true
sensu::install_repo: true
sensu::manage_services: true
sensu::manage_user: true
sensu::rabbitmq_host: {{LOCAL_IP}}
sensu::rabbitmq_vhost: '/'
sensu::rabbitmq_user: {{UNDERCLOUD_RABBIT_USERNAME}}
sensu::rabbitmq_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
sensu::api: true
sensu::api_user: 'sensu'
sensu::api_password: {{UNDERCLOUD_SENSU_PASSWORD}}
sensu::subscriptions:
- 'undercloud'
sensu::checks:
'check_keystone-api':
command: 'oschecks-check_keystone_api --os-auth-url http://{{LOCAL_IP}}:5000/v2.0 --os-username admin --os-password {{UNDERCLOUD_ADMIN_PASSWORD}} --os-tenant-name service'
subscribers: 'undercloud'
standalone: false
# Ceilometer
ceilometer::expirer::time_to_live: undef
ceilometer::metering_secret: {{UNDERCLOUD_CEILOMETER_METERING_SECRET}}
ceilometer::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
ceilometer::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
ceilometer::rabbit_host: {{LOCAL_IP}}
ceilometer::api::host: {{LOCAL_IP}}
ceilometer::api::keystone_password: {{UNDERCLOUD_CEILOMETER_PASSWORD}}
ceilometer::api::keystone_auth_uri: "%{hiera('keystone_auth_uri')}"
ceilometer::api::keystone_identity_uri: "%{hiera('keystone_identity_uri')}"
ceilometer::db::database_connection: mysql+pymysql://ceilometer:{{UNDERCLOUD_CEILOMETER_PASSWORD}}@{{LOCAL_IP}}/ceilometer
ceilometer::agent::auth::auth_password: {{UNDERCLOUD_CEILOMETER_PASSWORD}}
ceilometer::agent::notification::store_events: {{STORE_EVENTS}}
ceilometer_compute_agent: ''
snmpd_readonly_user_name: {{UNDERCLOUD_CEILOMETER_SNMPD_USER}}
snmpd_readonly_user_password: {{UNDERCLOUD_CEILOMETER_SNMPD_PASSWORD}}
ceilometer::keystone::auth::tenant: 'service'
ceilometer::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_CEILOMETER_PUBLIC}}
ceilometer::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_CEILOMETER_INTERNAL}}
ceilometer::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_CEILOMETER_ADMIN}}
ceilometer::keystone::auth::password: {{UNDERCLOUD_CEILOMETER_PASSWORD}}
ceilometer::keystone::auth::region: "%{hiera('keystone_region')}"
# Aodh
aodh::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
aodh::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
aodh::rabbit_host: {{LOCAL_IP}}
aodh::api::host: {{LOCAL_IP}}
aodh::api::keystone_password: {{UNDERCLOUD_AODH_PASSWORD}}
aodh::api::keystone_auth_uri: "%{hiera('keystone_auth_uri')}"
aodh::api::keystone_identity_uri: "%{hiera('keystone_identity_uri')}"
aodh::api::service_name: 'httpd'
aodh::wsgi::apache::ssl: false
# for a migration path from ceilometer-alarm to aodh, we use the same database
aodh::db::database_connection: mysql+pymysql://ceilometer:{{UNDERCLOUD_CEILOMETER_PASSWORD}}@{{LOCAL_IP}}/ceilometer
aodh::auth::auth_password: {{UNDERCLOUD_AODH_PASSWORD}}
aodh::keystone::auth::tenant: 'service'
aodh::keystone::auth::public_url: http://{{LOCAL_IP}}:8042
aodh::keystone::auth::internal_url: http://{{LOCAL_IP}}:8042
aodh::keystone::auth::admin_url: http://{{LOCAL_IP}}:8042
aodh::keystone::auth::password: {{UNDERCLOUD_AODH_PASSWORD}}
aodh::keystone::auth::region: "%{hiera('keystone_region')}"
# Nova
nova::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
nova::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
nova::notification_driver: messaging
nova::api::auth_uri: "%{hiera('keystone_auth_uri')}"
nova::api::identity_uri: "%{hiera('keystone_identity_uri')}"
nova::api::api_bind_address: {{LOCAL_IP}}
nova::api::enabled: true
nova::api::metadata_listen: {{LOCAL_IP}}
nova::api::admin_password: {{UNDERCLOUD_NOVA_PASSWORD}}
nova::api::osapi_v3: true
nova::api::enabled_apis: 'osapi_compute,metadata'
nova::api::sync_db_api: true
nova::conductor::enabled: true
nova::database_connection: mysql+pymysql://nova:{{UNDERCLOUD_NOVA_PASSWORD}}@{{LOCAL_IP}}/nova
nova::api_database_connection: mysql+pymysql://nova_api:{{UNDERCLOUD_NOVA_PASSWORD}}@{{LOCAL_IP}}/nova_api
nova::notify_on_state_change: 'vm_and_task_state'
nova::scheduler::enabled: true
nova::network::neutron::dhcp_domain: ''
nova::compute::force_config_drive: true
nova::compute::compute_manager: 'ironic.nova.compute.manager.ClusteredComputeManager'
nova::compute::reserved_host_memory: '0'
nova::compute::vnc_enabled: false
nova_sync_power_state_interval: -1
nova::compute::ironic::admin_username: 'ironic'
nova::compute::ironic::admin_password: {{UNDERCLOUD_IRONIC_PASSWORD}}
nova::compute::ironic::admin_tenant_name: 'service'
nova::compute::ironic::api_endpoint: "http://{{LOCAL_IP}}:6385/v1"
nova::compute::ironic::admin_url: "http://{{LOCAL_IP}}:35357/v2.0"
nova::network::neutron::neutron_auth_url: "http://%{hiera('controller_host')}:35357/v3"
nova::network::neutron::neutron_url: "http://%{hiera('controller_host')}:9696"
nova::network::neutron::neutron_password: "%{hiera('neutron::server::auth_password')}"
nova::network::neutron::neutron_project_name: "%{hiera('neutron::server::auth_tenant')}"
nova::network::neutron::neutron_region_name: ''
nova::network::neutron::neutron_auth_plugin: 'v3password'
nova::scheduler::filter::ram_allocation_ratio: '1.0'
nova::scheduler::filter::scheduler_host_manager: 'nova.scheduler.ironic_host_manager.IronicHostManager'
nova::scheduler::filter::scheduler_max_attempts: {{SCHEDULER_MAX_ATTEMPTS}}
nova::scheduler::filter::scheduler_available_filters: 'tripleo_common.filters.list.tripleo_filters'
nova::scheduler::filter::scheduler_default_filters: ['RetryFilter', 'TripleOCapabilitiesFilter', 'ComputeCapabilitiesFilter', 'AvailabilityZoneFilter', 'RamFilter', 'DiskFilter', 'ComputeFilter', 'ImagePropertiesFilter', 'ServerGroupAntiAffinityFilter', 'ServerGroupAffinityFilter']
nova::keystone::auth::tenant: 'service'
nova::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_NOVA_PUBLIC}}
nova::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_NOVA_INTERNAL}}
nova::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_NOVA_ADMIN}}
nova::keystone::auth::public_url_v3: {{UNDERCLOUD_ENDPOINT_NOVAV3_PUBLIC}}
nova::keystone::auth::internal_url_v3: {{UNDERCLOUD_ENDPOINT_NOVAV3_INTERNAL}}
nova::keystone::auth::admin_url_v3: {{UNDERCLOUD_ENDPOINT_NOVAV3_ADMIN}}
nova::keystone::auth::password: {{UNDERCLOUD_NOVA_PASSWORD}}
nova::keystone::auth::region: "%{hiera('keystone_region')}"
nova::keystone::auth::configure_ec2_endpoint: false
# Ironic
ironic::api::admin_password: {{UNDERCLOUD_IRONIC_PASSWORD}}
ironic::api::auth_uri: "%{hiera('keystone_auth_uri')}"
ironic::api::identity_uri: "%{hiera('keystone_identity_uri')}"
ironic::api::neutron_url: "http://{{LOCAL_IP}}:9696/"
ironic::database_connection: mysql+pymysql://ironic:{{UNDERCLOUD_IRONIC_PASSWORD}}@{{LOCAL_IP}}/ironic
ironic::rabbit_host: {{LOCAL_IP}}
ironic::rabbit_hosts: {{LOCAL_IP:5672}}
ironic::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
ironic::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
ironic::conductor::force_power_state_during_sync: false
ironic::conductor::clean_nodes: false
ironic::keystone::auth::tenant: 'service'
ironic::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_IRONIC_PUBLIC}}
ironic::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_IRONIC_INTERNAL}}
ironic::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_IRONIC_ADMIN}}
ironic::keystone::auth::password: {{UNDERCLOUD_IRONIC_PASSWORD}}
ironic::keystone::auth::region: "%{hiera('keystone_region')}"
ironic::keystone::auth_inspector::tenant: 'service'
ironic::keystone::auth_inspector::public_url: http://{{LOCAL_IP}}:5050
ironic::keystone::auth_inspector::internal_url: http://{{LOCAL_IP}}:5050
ironic::keystone::auth_inspector::admin_url: http://{{LOCAL_IP}}:5050
ironic::keystone::auth_inspector::password: {{UNDERCLOUD_IRONIC_PASSWORD}}
ironic::keystone::auth_inspector::region: "%{hiera('keystone_region')}"
# Ironic Inspector
ironic::inspector::debug: "%{hiera('debug')}"
ironic::inspector::pxe_transfer_protocol: 'http'
ironic::inspector::auth_uri: "%{hiera('keystone_auth_uri')}"
ironic::inspector::identity_uri: "%{hiera('keystone_identity_uri')}"
ironic::inspector::admin_user: 'ironic'
ironic::inspector::admin_password: "%{hiera('ironic::api::admin_password')}"
ironic::inspector::admin_tenant_name: 'service'
ironic::inspector::enable_setting_ipmi_credentials: true
ironic::inspector::keep_ports: 'added'
ironic::inspector::ironic_username: 'ironic'
ironic::inspector::ironic_password: "%{hiera('ironic::api::admin_password')}"
ironic::inspector::ironic_tenant_name: 'service'
ironic::inspector::ironic_auth_url: "http://{{LOCAL_IP}}:5000/v2.0"
ironic::inspector::ironic_max_retries: 6
ironic::inspector::ironic_retry_interval: 10
ironic::inspector::store_data: 'swift'
ironic::inspector::swift_username: 'ironic'
ironic::inspector::swift_password: "%{hiera('ironic::api::admin_password')}"
ironic::inspector::swift_tenant_name: 'service'
ironic::inspector::swift_auth_url: "http://{{LOCAL_IP}}:5000/v2.0"
ironic::inspector::dnsmasq_local_ip: {{LOCAL_IP}}
ironic::inspector::dnsmasq_ip_range: {{INSPECTION_IPRANGE}}
ironic::inspector::dnsmasq_interface: {{INSPECTION_INTERFACE}}
ironic::inspector::ramdisk_collectors: {{INSPECTION_COLLECTORS}}
ironic::inspector::additional_processing_hooks: 'extra_hardware'
ironic::inspector::ramdisk_kernel_args: {{INSPECTION_KERNEL_ARGS}}
# Rabbit
rabbit_cookie: {{UNDERCLOUD_RABBIT_COOKIE}}
rabbitmq::delete_guest_user: false
rabbitmq::node_ip_address: {{LOCAL_IP}}
rabbitmq::package_source: undef
rabbitmq::port: '5672'
rabbitmq::repos_ensure: false
rabbitmq::wipe_db_on_cookie_change: true
rabbitmq::default_user: {{UNDERCLOUD_RABBIT_USERNAME}}
rabbitmq::default_pass: {{UNDERCLOUD_RABBIT_PASSWORD}}
# Horizon
horizon_secret_key: {{UNDERCLOUD_HORIZON_SECRET_KEY}}
horizon::allowed_hosts:
- "%{::fqdn}"
- "{{LOCAL_IP}}"
horizon::wsgi::apache::priority: 10
horizon::openstack_endpoint_type: internalURL
# Mistral
mistral::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
mistral::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
mistral::rabbit_host: {{LOCAL_IP}}
mistral::auth_uri: "%{hiera('keystone_auth_uri')}"
mistral::identity_uri: "%{hiera('keystone_identity_uri')}"
mistral::database_connection: mysql+pymysql://mistral:{{UNDERCLOUD_MISTRAL_PASSWORD}}@{{LOCAL_IP}}/mistral
mistral::rpc_backend: rabbit
mistral::keystone_password: {{UNDERCLOUD_MISTRAL_PASSWORD}}
mistral::keystone::auth::public_url: http://{{LOCAL_IP}}:8989/v2
mistral::keystone::auth::internal_url: http://{{LOCAL_IP}}:8989/v2
mistral::keystone::auth::admin_url: http://{{LOCAL_IP}}:8989/v2
mistral::keystone::auth::region: 'regionOne'
mistral::keystone::auth::password: {{UNDERCLOUD_MISTRAL_PASSWORD}}
mistral::keystone::auth::tenant: 'service'
mistral::api::service_name: 'httpd'
mistral::wsgi::apache::ssl: false
# Zaqar
zaqar::keystone::auth::tenant: 'service'
zaqar::admin_tenant_name: 'service'
zaqar::auth_uri: "%{hiera('keystone_auth_uri')}"
zaqar::identity_uri: "%{hiera('keystone_identity_uri')}"
zaqar::admin_password: {{UNDERCLOUD_ZAQAR_PASSWORD}}
zaqar::keystone::auth::public_url: http://{{LOCAL_IP}}:8888/
zaqar::keystone::auth::internal_url: http://{{LOCAL_IP}}:8888/
zaqar::keystone::auth::admin_url: http://{{LOCAL_IP}}:8888/
zaqar::keystone::auth::region: 'regionOne'
zaqar::keystone::auth::password: {{UNDERCLOUD_ZAQAR_PASSWORD}}
zaqar::unreliable: true
zaqar::transport::websocket::bind: {{LOCAL_IP}}
zaqar::transport::wsgi::bind: {{LOCAL_IP}}
zaqar::management::mongodb::uri: mongodb://127.0.0.1:27017
zaqar::messaging::mongodb::uri: mongodb://127.0.0.1:27017
# Loadbalancer
tripleo::loadbalancer::haproxy_stats_password: {{UNDERCLOUD_HAPROXY_STATS_PASSWORD}}
# service tenant
ceilometer::api::keystone_tenant: 'service'
aodh::api::keystone_tenant: 'service'
cinder::api::keystone_tenant: 'service'
glance::api::keystone_tenant: 'service'
glance::registry::keystone_tenant: 'service'
heat::keystone_tenant: 'service'
ironic::api::admin_tenant_name: 'service'
neutron::agents::metadata::auth_tenant: 'service'
neutron::server::auth_tenant: 'service'
nova::api::admin_tenant_name: 'service'
swift::proxy::authtoken::admin_tenant_name: 'service'
mistral::keystone_tenant: 'service'
# Options
enable_tempest: {{ENABLE_TEMPEST}}
enable_mistral: {{ENABLE_MISTRAL}}
enable_zaqar: {{ENABLE_ZAQAR}}
ipxe_deploy: {{IPXE_DEPLOY}}
enable_monitoring: {{ENABLE_MONITORING}}
View Git Blame Copy Permalink