464 lines
21 KiB
Plaintext
464 lines
21 KiB
Plaintext
keystone_identity_uri: http://{{LOCAL_IP}}:35357
|
|
nova_admin_auth_url: http://{{LOCAL_IP}}:35357
|
|
keystone_auth_uri: http://{{LOCAL_IP}}:5000/v3
|
|
keystone_region: 'regionOne'
|
|
|
|
debug: {{UNDERCLOUD_DEBUG}}
|
|
controller_host: {{LOCAL_IP}} #local-ipv4
|
|
controller_admin_vip: {{UNDERCLOUD_ADMIN_VIP}}
|
|
controller_public_vip: {{UNDERCLOUD_PUBLIC_VIP}}
|
|
service_certificate: {{UNDERCLOUD_SERVICE_CERTIFICATE}}
|
|
ntp::servers:
|
|
-
|
|
|
|
# Common Hiera data gets applied to all nodes
|
|
ssh::server::storeconfigs_enabled: false
|
|
|
|
# ceilometer settings used by compute and controller ceilo auth settings
|
|
ceilometer::agent::auth::auth_region: 'regionOne'
|
|
aodh::auth::auth_region: 'regionOne'
|
|
ceilometer::agent::auth::auth_tenant_name: 'service'
|
|
aodh::auth::auth_tenant_name: 'admin'
|
|
|
|
# Swift
|
|
swift::proxy::proxy_local_net_ip: {{LOCAL_IP}}
|
|
swift::proxy::authtoken::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
swift::proxy::authtoken::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
swift::storage::all::storage_local_net_ip: {{LOCAL_IP}}
|
|
swift::storage::all::incoming_chmod: 'Du=rwx,g=rx,o=rx,Fu=rw,g=r,o=r'
|
|
swift::storage::all::outgoing_chmod: 'Du=rwx,g=rx,o=rx,Fu=rw,g=r,o=r'
|
|
swift::swift_hash_suffix: {{UNDERCLOUD_SWIFT_HASH_SUFFIX}}
|
|
swift::proxy::account_autocreate: true
|
|
swift::proxy::authtoken::admin_password: {{UNDERCLOUD_SWIFT_PASSWORD}}
|
|
swift::keystone::auth::tenant: 'service'
|
|
swift::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_SWIFT_PUBLIC}}
|
|
swift::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_SWIFT_INTERNAL}}
|
|
swift::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_SWIFT_ADMIN}}
|
|
swift::keystone::auth::password: {{UNDERCLOUD_SWIFT_PASSWORD}}
|
|
swift::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
swift::keystone::auth::configure_s3_endpoint: false
|
|
swift::keystone::auth::operator_roles:
|
|
- admin
|
|
- swiftoperator
|
|
tripleo::ringbuilder::part_power: 10
|
|
tripleo::ringbuilder::replicas: 3
|
|
tripleo::ringbuilder::min_part_hours: 1
|
|
swift_mount_check: false
|
|
swift::ringbuilder::replicas: 1
|
|
|
|
swift::proxy::pipeline:
|
|
- 'catch_errors'
|
|
- 'healthcheck'
|
|
- 'cache'
|
|
- 'ratelimit'
|
|
- 'bulk'
|
|
- 'tempurl'
|
|
- 'formpost'
|
|
- 'authtoken'
|
|
- 'keystone'
|
|
- 'staticweb'
|
|
- 'proxy-logging'
|
|
- 'proxy-server'
|
|
|
|
# Glance
|
|
glance::api::bind_port: 9292
|
|
glance::api::bind_host: {{LOCAL_IP}}
|
|
glance::api::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
glance::api::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
glance::api::registry_host: {{LOCAL_IP}}
|
|
glance::api::keystone_password: {{UNDERCLOUD_GLANCE_PASSWORD}}
|
|
glance::api::known_stores:
|
|
- glance.store.filesystem.Store
|
|
- glance.store.swift.Store
|
|
glance::api::pipeline: 'keystone'
|
|
# used to construct glance_api_servers
|
|
glance_port: 9292
|
|
glance_protocol: http
|
|
glance_log_file: ''
|
|
glance::api::database_connection: mysql+pymysql://glance:{{UNDERCLOUD_GLANCE_PASSWORD}}@{{LOCAL_IP}}/glance
|
|
glance::registry::bind_host: {{LOCAL_IP}}
|
|
glance::registry::keystone_password: {{UNDERCLOUD_GLANCE_PASSWORD}}
|
|
glance::registry::database_connection: mysql+pymysql://glance:{{UNDERCLOUD_GLANCE_PASSWORD}}@{{LOCAL_IP}}/glance
|
|
glance::registry::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
glance::registry::registry_host: {{LOCAL_IP}}
|
|
glance::registry::bind_host: {{LOCAL_IP}}
|
|
glance::registry::manage_service: true
|
|
glance::registry::pipeline: 'keystone'
|
|
glance::registry::auth_host: false
|
|
glance::registry::auth_port: false
|
|
glance::registry::auth_protocol: false
|
|
glance::keystone::auth::tenant: 'service'
|
|
glance::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_GLANCE_PUBLIC}}
|
|
glance::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_GLANCE_INTERNAL}}
|
|
glance::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_GLANCE_ADMIN}}
|
|
glance::keystone::auth::password: {{UNDERCLOUD_GLANCE_PASSWORD}}
|
|
glance::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
glance::backend::swift::swift_store_auth_address: http://{{LOCAL_IP}}:35357/v2.0
|
|
glance::backend::swift::swift_store_user: service:glance
|
|
glance::backend::swift::swift_store_key: {{UNDERCLOUD_GLANCE_PASSWORD}}
|
|
glance::backend::swift::swift_store_create_container_on_put: true
|
|
glance::notify::rabbitmq::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
glance::notify::rabbitmq::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
glance::notify::rabbitmq::rabbit_host: {{LOCAL_IP}}
|
|
|
|
# Heat
|
|
heat_stack_domain_admin_password: {{UNDERCLOUD_HEAT_STACK_DOMAIN_ADMIN_PASSWORD}}
|
|
heat::engine::configure_delegated_roles: false
|
|
heat::engine::heat_stack_user_role: 'heat_stack_user'
|
|
heat::engine::heat_watch_server_url: http://{{LOCAL_IP}}:8003
|
|
heat::engine::heat_metadata_server_url: http://{{LOCAL_IP}}:8000
|
|
heat::engine::heat_waitcondition_server_url: http://{{LOCAL_IP}}:8000/v1/waitcondition
|
|
heat::engine::trusts_delegated_roles: []
|
|
heat::engine::auth_encryption_key: {{UNDERCLOUD_HEAT_ENCRYPTION_KEY}}
|
|
heat::engine::max_resources_per_stack: -1
|
|
heat::instance_user: heat-admin
|
|
heat::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
heat::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
heat::rabbit_host: {{LOCAL_IP}}
|
|
heat::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
heat::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
heat::keystone_password: {{UNDERCLOUD_HEAT_PASSWORD}}
|
|
heat::keystone::domain::domain_name: 'heat_stack'
|
|
heat::keystone::domain::domain_password: {{UNDERCLOUD_HEAT_STACK_DOMAIN_ADMIN_PASSWORD}}
|
|
heat::api::bind_host: {{LOCAL_IP}}
|
|
heat::api_cfn::bind_host: {{LOCAL_IP}}
|
|
heat::database_connection: mysql+pymysql://heat:{{UNDERCLOUD_HEAT_PASSWORD}}@{{LOCAL_IP}}/heat
|
|
heat_dsn: mysql+pymysql://heat:{{UNDERCLOUD_HEAT_PASSWORD}}@{{LOCAL_IP}}/heat
|
|
heat::rpc_response_timeout: 600
|
|
heat::keystone::auth::tenant: 'service'
|
|
heat::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_HEAT_PUBLIC}}
|
|
heat::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_HEAT_INTERNAL}}
|
|
heat::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_HEAT_ADMIN}}
|
|
heat::keystone::auth::password: {{UNDERCLOUD_HEAT_PASSWORD}}
|
|
heat::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
heat::cron::purge_deleted::age: 1
|
|
heat::cron::purge_deleted::age_type: 'days'
|
|
heat::cron::purge_deleted::destination: '/dev/null'
|
|
heat::notification_driver: 'messaging'
|
|
|
|
# Keystone
|
|
keystone::admin_token: {{UNDERCLOUD_ADMIN_TOKEN}}
|
|
keystone_ca_certificate: '{{KEYSTONE_CA_CERTIFICATE}}'
|
|
keystone_signing_key: '{{KEYSTONE_SIGNING_KEY}}'
|
|
keystone_signing_certificate: '{{KEYSTONE_SIGNING_CERTIFICATE}}'
|
|
keystone::database_connection: mysql+pymysql://keystone:{{UNDERCLOUD_ADMIN_TOKEN}}@{{LOCAL_IP}}/keystone
|
|
keystone::roles::admin::password: {{UNDERCLOUD_ADMIN_PASSWORD}}
|
|
keystone::roles::admin::email: 'root@localhost'
|
|
keystone::roles::admin::admin_tenant: 'admin'
|
|
keystone::roles::admin::service_tenant: 'service'
|
|
keystone::token_expiration: 14400
|
|
keystone::endpoint::public_url: {{UNDERCLOUD_ENDPOINT_KEYSTONE_PUBLIC}}
|
|
keystone::endpoint::internal_url: {{UNDERCLOUD_ENDPOINT_KEYSTONE_INTERNAL}}
|
|
keystone::endpoint::admin_url: "%{hiera('keystone_identity_uri')}"
|
|
keystone::endpoint::region: "%{hiera('keystone_region')}"
|
|
keystone::wsgi::apache::ssl: false
|
|
keystone::wsgi::apache::bind_host: {{LOCAL_IP}}
|
|
keystone::notification_driver: messaging
|
|
keystone::notification_topics: notifications
|
|
keystone::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
keystone::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
keystone::rabbit_host: {{LOCAL_IP}}
|
|
|
|
# MySQL
|
|
admin_password: {{UNDERCLOUD_ADMIN_PASSWORD}}
|
|
mysql_innodb_buffer_pool_size: 0
|
|
mysql_root_password: ''
|
|
mysql_cluster_name: unset
|
|
mysql::server::manage_config_file: true
|
|
mysql::server::restart: true
|
|
mysql_max_connections: 4096
|
|
|
|
# Neutron
|
|
neutron::bind_host: {{LOCAL_IP}}
|
|
neutron::core_plugin: ml2
|
|
neutron::dhcp_agents_per_network: 2
|
|
neutron::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
neutron::rabbit_user: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
neutron::server::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
neutron::server::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
neutron::server::database_connection: mysql+pymysql://neutron:{{UNDERCLOUD_NEUTRON_PASSWORD}}@{{LOCAL_IP}}/neutron
|
|
neutron::server::sync_db: true
|
|
neutron::agents::ml2::ovs::enable_tunneling: True
|
|
neutron::agents::ml2::ovs::local_ip: {{LOCAL_IP}}
|
|
neutron_mechanism_drivers: openvswitch
|
|
neutron_bridge_mappings: ctlplane:br-ctlplane
|
|
neutron_public_interface: {{LOCAL_INTERFACE}}
|
|
neutron_physical_bridge: br-ctlplane
|
|
neutron::server::auth_password: {{UNDERCLOUD_NEUTRON_PASSWORD}}
|
|
neutron::agents::metadata::auth_password: {{UNDERCLOUD_NEUTRON_PASSWORD}}
|
|
neutron::agents::dhcp::dhcp_domain: ''
|
|
neutron::quota::quota_port: -1
|
|
neutron::server::notifications::nova_url: http://{{LOCAL_IP}}:8774/v2
|
|
neutron::server::notifications::auth_url: "%{hiera('nova_admin_auth_url')}"
|
|
neutron::server::notifications::tenant_name: service
|
|
neutron::server::notifications::password: {{UNDERCLOUD_NOVA_PASSWORD}}
|
|
neutron::keystone::auth::tenant: 'service'
|
|
neutron::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_NEUTRON_PUBLIC}}
|
|
neutron::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_NEUTRON_INTERNAL}}
|
|
neutron::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_NEUTRON_ADMIN}}
|
|
neutron::keystone::auth::password: {{UNDERCLOUD_NEUTRON_PASSWORD}}
|
|
neutron::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
|
|
# Monitoring
|
|
# TODO(emilien) disable sensu repo when packaging ready
|
|
uchiwa::install_repo: false
|
|
uchiwa::sensu_api_endpoints:
|
|
- name: 'Undercloud Server'
|
|
host: {{LOCAL_IP}}
|
|
ssl: false
|
|
insecure: false
|
|
port: 4567
|
|
user: 'sensu'
|
|
pass: {{UNDERCLOUD_SENSU_PASSWORD}}
|
|
path: ''
|
|
timeout: 5000
|
|
|
|
sensu::server: true
|
|
sensu::install_repo: true
|
|
sensu::manage_services: true
|
|
sensu::manage_user: true
|
|
sensu::rabbitmq_host: {{LOCAL_IP}}
|
|
sensu::rabbitmq_vhost: '/'
|
|
sensu::rabbitmq_user: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
sensu::rabbitmq_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
sensu::api: true
|
|
sensu::api_user: 'sensu'
|
|
sensu::api_password: {{UNDERCLOUD_SENSU_PASSWORD}}
|
|
sensu::subscriptions:
|
|
- 'undercloud'
|
|
sensu::checks:
|
|
'check_keystone-api':
|
|
command: 'oschecks-check_keystone_api --os-auth-url http://{{LOCAL_IP}}:5000/v2.0 --os-username admin --os-password {{UNDERCLOUD_ADMIN_PASSWORD}} --os-tenant-name service'
|
|
subscribers: 'undercloud'
|
|
standalone: false
|
|
|
|
# Ceilometer
|
|
ceilometer::expirer::time_to_live: undef
|
|
ceilometer::metering_secret: {{UNDERCLOUD_CEILOMETER_METERING_SECRET}}
|
|
ceilometer::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
ceilometer::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
ceilometer::rabbit_host: {{LOCAL_IP}}
|
|
ceilometer::api::host: {{LOCAL_IP}}
|
|
ceilometer::api::keystone_password: {{UNDERCLOUD_CEILOMETER_PASSWORD}}
|
|
ceilometer::api::keystone_auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
ceilometer::api::keystone_identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
ceilometer::db::database_connection: mysql+pymysql://ceilometer:{{UNDERCLOUD_CEILOMETER_PASSWORD}}@{{LOCAL_IP}}/ceilometer
|
|
ceilometer::agent::auth::auth_password: {{UNDERCLOUD_CEILOMETER_PASSWORD}}
|
|
ceilometer::agent::notification::store_events: {{STORE_EVENTS}}
|
|
ceilometer_compute_agent: ''
|
|
snmpd_readonly_user_name: {{UNDERCLOUD_CEILOMETER_SNMPD_USER}}
|
|
snmpd_readonly_user_password: {{UNDERCLOUD_CEILOMETER_SNMPD_PASSWORD}}
|
|
ceilometer::keystone::auth::tenant: 'service'
|
|
ceilometer::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_CEILOMETER_PUBLIC}}
|
|
ceilometer::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_CEILOMETER_INTERNAL}}
|
|
ceilometer::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_CEILOMETER_ADMIN}}
|
|
ceilometer::keystone::auth::password: {{UNDERCLOUD_CEILOMETER_PASSWORD}}
|
|
ceilometer::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
|
|
# Aodh
|
|
aodh::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
aodh::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
aodh::rabbit_host: {{LOCAL_IP}}
|
|
aodh::api::host: {{LOCAL_IP}}
|
|
aodh::api::keystone_password: {{UNDERCLOUD_AODH_PASSWORD}}
|
|
aodh::api::keystone_auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
aodh::api::keystone_identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
aodh::api::service_name: 'httpd'
|
|
aodh::wsgi::apache::ssl: false
|
|
# for a migration path from ceilometer-alarm to aodh, we use the same database
|
|
aodh::db::database_connection: mysql+pymysql://ceilometer:{{UNDERCLOUD_CEILOMETER_PASSWORD}}@{{LOCAL_IP}}/ceilometer
|
|
aodh::auth::auth_password: {{UNDERCLOUD_AODH_PASSWORD}}
|
|
aodh::keystone::auth::tenant: 'service'
|
|
aodh::keystone::auth::public_url: http://{{LOCAL_IP}}:8042
|
|
aodh::keystone::auth::internal_url: http://{{LOCAL_IP}}:8042
|
|
aodh::keystone::auth::admin_url: http://{{LOCAL_IP}}:8042
|
|
aodh::keystone::auth::password: {{UNDERCLOUD_AODH_PASSWORD}}
|
|
aodh::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
|
|
# Nova
|
|
nova::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
nova::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
nova::notification_driver: messaging
|
|
nova::api::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
nova::api::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
nova::api::api_bind_address: {{LOCAL_IP}}
|
|
nova::api::enabled: true
|
|
nova::api::metadata_listen: {{LOCAL_IP}}
|
|
nova::api::admin_password: {{UNDERCLOUD_NOVA_PASSWORD}}
|
|
nova::api::osapi_v3: true
|
|
nova::api::enabled_apis: 'osapi_compute,metadata'
|
|
nova::api::sync_db_api: true
|
|
nova::conductor::enabled: true
|
|
nova::database_connection: mysql+pymysql://nova:{{UNDERCLOUD_NOVA_PASSWORD}}@{{LOCAL_IP}}/nova
|
|
nova::api_database_connection: mysql+pymysql://nova_api:{{UNDERCLOUD_NOVA_PASSWORD}}@{{LOCAL_IP}}/nova_api
|
|
nova::notify_on_state_change: 'vm_and_task_state'
|
|
nova::scheduler::enabled: true
|
|
nova::network::neutron::dhcp_domain: ''
|
|
nova::compute::force_config_drive: true
|
|
nova::compute::compute_manager: 'ironic.nova.compute.manager.ClusteredComputeManager'
|
|
nova::compute::reserved_host_memory: '0'
|
|
nova::compute::vnc_enabled: false
|
|
nova_sync_power_state_interval: -1
|
|
|
|
nova::compute::ironic::admin_username: 'ironic'
|
|
nova::compute::ironic::admin_password: {{UNDERCLOUD_IRONIC_PASSWORD}}
|
|
nova::compute::ironic::admin_tenant_name: 'service'
|
|
nova::compute::ironic::api_endpoint: "http://{{LOCAL_IP}}:6385/v1"
|
|
nova::compute::ironic::admin_url: "http://{{LOCAL_IP}}:35357/v2.0"
|
|
|
|
nova::network::neutron::neutron_auth_url: "http://%{hiera('controller_host')}:35357/v3"
|
|
nova::network::neutron::neutron_url: "http://%{hiera('controller_host')}:9696"
|
|
nova::network::neutron::neutron_password: "%{hiera('neutron::server::auth_password')}"
|
|
nova::network::neutron::neutron_project_name: "%{hiera('neutron::server::auth_tenant')}"
|
|
nova::network::neutron::neutron_region_name: ''
|
|
nova::network::neutron::neutron_auth_plugin: 'v3password'
|
|
|
|
nova::scheduler::filter::ram_allocation_ratio: '1.0'
|
|
nova::scheduler::filter::scheduler_host_manager: 'nova.scheduler.ironic_host_manager.IronicHostManager'
|
|
nova::scheduler::filter::scheduler_max_attempts: {{SCHEDULER_MAX_ATTEMPTS}}
|
|
nova::scheduler::filter::scheduler_available_filters: 'tripleo_common.filters.list.tripleo_filters'
|
|
nova::scheduler::filter::scheduler_default_filters: ['RetryFilter', 'TripleOCapabilitiesFilter', 'ComputeCapabilitiesFilter', 'AvailabilityZoneFilter', 'RamFilter', 'DiskFilter', 'ComputeFilter', 'ImagePropertiesFilter', 'ServerGroupAntiAffinityFilter', 'ServerGroupAffinityFilter']
|
|
|
|
nova::keystone::auth::tenant: 'service'
|
|
nova::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_NOVA_PUBLIC}}
|
|
nova::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_NOVA_INTERNAL}}
|
|
nova::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_NOVA_ADMIN}}
|
|
nova::keystone::auth::public_url_v3: {{UNDERCLOUD_ENDPOINT_NOVAV3_PUBLIC}}
|
|
nova::keystone::auth::internal_url_v3: {{UNDERCLOUD_ENDPOINT_NOVAV3_INTERNAL}}
|
|
nova::keystone::auth::admin_url_v3: {{UNDERCLOUD_ENDPOINT_NOVAV3_ADMIN}}
|
|
nova::keystone::auth::password: {{UNDERCLOUD_NOVA_PASSWORD}}
|
|
nova::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
nova::keystone::auth::configure_ec2_endpoint: false
|
|
|
|
# Ironic
|
|
ironic::api::admin_password: {{UNDERCLOUD_IRONIC_PASSWORD}}
|
|
ironic::api::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
ironic::api::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
ironic::api::neutron_url: "http://{{LOCAL_IP}}:9696/"
|
|
ironic::database_connection: mysql+pymysql://ironic:{{UNDERCLOUD_IRONIC_PASSWORD}}@{{LOCAL_IP}}/ironic
|
|
ironic::rabbit_host: {{LOCAL_IP}}
|
|
ironic::rabbit_hosts: {{LOCAL_IP:5672}}
|
|
ironic::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
ironic::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
ironic::conductor::force_power_state_during_sync: false
|
|
ironic::conductor::clean_nodes: false
|
|
ironic::keystone::auth::tenant: 'service'
|
|
ironic::keystone::auth::public_url: {{UNDERCLOUD_ENDPOINT_IRONIC_PUBLIC}}
|
|
ironic::keystone::auth::internal_url: {{UNDERCLOUD_ENDPOINT_IRONIC_INTERNAL}}
|
|
ironic::keystone::auth::admin_url: {{UNDERCLOUD_ENDPOINT_IRONIC_ADMIN}}
|
|
ironic::keystone::auth::password: {{UNDERCLOUD_IRONIC_PASSWORD}}
|
|
ironic::keystone::auth::region: "%{hiera('keystone_region')}"
|
|
|
|
ironic::keystone::auth_inspector::tenant: 'service'
|
|
ironic::keystone::auth_inspector::public_url: http://{{LOCAL_IP}}:5050
|
|
ironic::keystone::auth_inspector::internal_url: http://{{LOCAL_IP}}:5050
|
|
ironic::keystone::auth_inspector::admin_url: http://{{LOCAL_IP}}:5050
|
|
ironic::keystone::auth_inspector::password: {{UNDERCLOUD_IRONIC_PASSWORD}}
|
|
ironic::keystone::auth_inspector::region: "%{hiera('keystone_region')}"
|
|
|
|
# Ironic Inspector
|
|
ironic::inspector::debug: "%{hiera('debug')}"
|
|
ironic::inspector::pxe_transfer_protocol: 'http'
|
|
ironic::inspector::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
ironic::inspector::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
ironic::inspector::admin_user: 'ironic'
|
|
ironic::inspector::admin_password: "%{hiera('ironic::api::admin_password')}"
|
|
ironic::inspector::admin_tenant_name: 'service'
|
|
ironic::inspector::enable_setting_ipmi_credentials: true
|
|
ironic::inspector::keep_ports: 'added'
|
|
ironic::inspector::ironic_username: 'ironic'
|
|
ironic::inspector::ironic_password: "%{hiera('ironic::api::admin_password')}"
|
|
ironic::inspector::ironic_tenant_name: 'service'
|
|
ironic::inspector::ironic_auth_url: "http://{{LOCAL_IP}}:5000/v2.0"
|
|
ironic::inspector::ironic_max_retries: 6
|
|
ironic::inspector::ironic_retry_interval: 10
|
|
ironic::inspector::store_data: 'swift'
|
|
ironic::inspector::swift_username: 'ironic'
|
|
ironic::inspector::swift_password: "%{hiera('ironic::api::admin_password')}"
|
|
ironic::inspector::swift_tenant_name: 'service'
|
|
ironic::inspector::swift_auth_url: "http://{{LOCAL_IP}}:5000/v2.0"
|
|
ironic::inspector::dnsmasq_local_ip: {{LOCAL_IP}}
|
|
ironic::inspector::dnsmasq_ip_range: {{INSPECTION_IPRANGE}}
|
|
ironic::inspector::dnsmasq_interface: {{INSPECTION_INTERFACE}}
|
|
ironic::inspector::ramdisk_collectors: {{INSPECTION_COLLECTORS}}
|
|
ironic::inspector::additional_processing_hooks: 'extra_hardware'
|
|
ironic::inspector::ramdisk_kernel_args: {{INSPECTION_KERNEL_ARGS}}
|
|
|
|
# Rabbit
|
|
rabbit_cookie: {{UNDERCLOUD_RABBIT_COOKIE}}
|
|
rabbitmq::delete_guest_user: false
|
|
rabbitmq::node_ip_address: {{LOCAL_IP}}
|
|
rabbitmq::package_source: undef
|
|
rabbitmq::port: '5672'
|
|
rabbitmq::repos_ensure: false
|
|
rabbitmq::wipe_db_on_cookie_change: true
|
|
rabbitmq::default_user: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
rabbitmq::default_pass: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
|
|
# Horizon
|
|
horizon_secret_key: {{UNDERCLOUD_HORIZON_SECRET_KEY}}
|
|
horizon::allowed_hosts:
|
|
- "%{::fqdn}"
|
|
- "{{LOCAL_IP}}"
|
|
horizon::wsgi::apache::priority: 10
|
|
horizon::openstack_endpoint_type: internalURL
|
|
|
|
# Mistral
|
|
mistral::rabbit_userid: {{UNDERCLOUD_RABBIT_USERNAME}}
|
|
mistral::rabbit_password: {{UNDERCLOUD_RABBIT_PASSWORD}}
|
|
mistral::rabbit_host: {{LOCAL_IP}}
|
|
mistral::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
mistral::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
mistral::database_connection: mysql+pymysql://mistral:{{UNDERCLOUD_MISTRAL_PASSWORD}}@{{LOCAL_IP}}/mistral
|
|
mistral::rpc_backend: rabbit
|
|
mistral::keystone_password: {{UNDERCLOUD_MISTRAL_PASSWORD}}
|
|
mistral::keystone::auth::public_url: http://{{LOCAL_IP}}:8989/v2
|
|
mistral::keystone::auth::internal_url: http://{{LOCAL_IP}}:8989/v2
|
|
mistral::keystone::auth::admin_url: http://{{LOCAL_IP}}:8989/v2
|
|
mistral::keystone::auth::region: 'regionOne'
|
|
mistral::keystone::auth::password: {{UNDERCLOUD_MISTRAL_PASSWORD}}
|
|
mistral::keystone::auth::tenant: 'service'
|
|
mistral::api::service_name: 'httpd'
|
|
mistral::wsgi::apache::ssl: false
|
|
|
|
# Zaqar
|
|
zaqar::keystone::auth::tenant: 'service'
|
|
zaqar::admin_tenant_name: 'service'
|
|
zaqar::auth_uri: "%{hiera('keystone_auth_uri')}"
|
|
zaqar::identity_uri: "%{hiera('keystone_identity_uri')}"
|
|
zaqar::admin_password: {{UNDERCLOUD_ZAQAR_PASSWORD}}
|
|
zaqar::keystone::auth::public_url: http://{{LOCAL_IP}}:8888/
|
|
zaqar::keystone::auth::internal_url: http://{{LOCAL_IP}}:8888/
|
|
zaqar::keystone::auth::admin_url: http://{{LOCAL_IP}}:8888/
|
|
zaqar::keystone::auth::region: 'regionOne'
|
|
zaqar::keystone::auth::password: {{UNDERCLOUD_ZAQAR_PASSWORD}}
|
|
zaqar::unreliable: true
|
|
zaqar::transport::websocket::bind: {{LOCAL_IP}}
|
|
zaqar::transport::wsgi::bind: {{LOCAL_IP}}
|
|
zaqar::management::mongodb::uri: mongodb://127.0.0.1:27017
|
|
zaqar::messaging::mongodb::uri: mongodb://127.0.0.1:27017
|
|
|
|
# Loadbalancer
|
|
tripleo::loadbalancer::haproxy_stats_password: {{UNDERCLOUD_HAPROXY_STATS_PASSWORD}}
|
|
|
|
# service tenant
|
|
ceilometer::api::keystone_tenant: 'service'
|
|
aodh::api::keystone_tenant: 'service'
|
|
cinder::api::keystone_tenant: 'service'
|
|
glance::api::keystone_tenant: 'service'
|
|
glance::registry::keystone_tenant: 'service'
|
|
heat::keystone_tenant: 'service'
|
|
ironic::api::admin_tenant_name: 'service'
|
|
neutron::agents::metadata::auth_tenant: 'service'
|
|
neutron::server::auth_tenant: 'service'
|
|
nova::api::admin_tenant_name: 'service'
|
|
swift::proxy::authtoken::admin_tenant_name: 'service'
|
|
mistral::keystone_tenant: 'service'
|
|
|
|
# Options
|
|
enable_tempest: {{ENABLE_TEMPEST}}
|
|
enable_mistral: {{ENABLE_MISTRAL}}
|
|
enable_zaqar: {{ENABLE_ZAQAR}}
|
|
ipxe_deploy: {{IPXE_DEPLOY}}
|
|
enable_monitoring: {{ENABLE_MONITORING}}
|