openstack
/
openstack-ansible-os_cinder
Code Issues Proposed changes
Role os_cinder for OpenStack-Ansible
667 Commits 8 Branches 17 Tags 8.1 MiB
Jinja 51.8%
Python 34.6%
Shell 13.6%
Go to file
Florian Haas 8c436038e3 cinder.conf: add [nova] section, override interface defaults 
To the best of my knowledge, the [nova] section in cinder.conf
is only ever used if the Cinder scheduler is acting as a Nova client
when the operator has enabled the InstanceLocalityFilter.

Per https://docs.openstack.org/cinder/latest/configuration/block-storage/samples/cinder.conf.html,
Cinder defaults to using the public Nova endpoint when using the
Nova API. This is contrary to OSA precedent, where services
normally use internal endpoints for service-to-service API requests.

When enabling the InstanceLocalityFilter in combination with Cinder
talking to the public Nova endpoint, this can create a very confusing
situation, particularly in pre-production clusters: if the public
endpoint has a self-signed SSL certificate, and Cinder is not
explicitly configured not to verify certificates, then this creates
a whole load of connection errors.

Thus, in order to follow POLA, configure the [nova] section to use
the internal endpoint, and (in case the internal endpoint does
use HTTPS) honor the keystone_service_internaluri_insecure setting,
as for other services.

Change-Id: Ie31a7e2917a188027db49ac51e6a77ee39a9abf0
 		2019-02-15 15:56:29 +01:00
defaults Cleanup files and templates using smart sources 2019-01-19 18:02:51 -06:00
doc Add possibility to have private cinder volume types 2018-11-22 15:46:04 +01:00
examples Trivial: Fix the pep8 warning 2018-08-06 07:21:04 +00:00
handlers Cleanup files and templates using smart sources 2019-01-19 18:02:51 -06:00
meta SUSE: Add support for openSUSE Leap 15 2018-09-28 13:25:33 +01:00
releasenotes Add possibility to have private cinder volume types 2018-11-22 15:46:04 +01:00
tasks Ensure cinder-volumes tool packages install correct ceph dependancies 2019-02-11 12:06:40 +00:00
templates cinder.conf: add [nova] section, override interface defaults 2019-02-15 15:56:29 +01:00
tests Set container_name as host_var in test inventory 2018-10-20 15:28:29 -07:00
vars Ensure cinder-volumes tool packages install correct ceph dependancies 2019-02-11 12:06:40 +00:00
zuul.d Test using integrated build 2019-01-09 15:36:45 +00:00
.gitignore Updated from OpenStack Ansible Tests 2018-10-02 14:52:22 +00:00
.gitreview Implement base configuration for independent repository 2016-03-01 09:38:00 -08:00
CONTRIBUTING.rst Replace Chinese punctuation with English punctuation 2018-09-12 13:01:29 +00:00
LICENSE Convert existing roles into galaxy roles 2015-02-18 10:56:25 +00:00
README.rst Add bugs url link to README 2018-12-04 02:20:14 -08:00
Vagrantfile Updated from OpenStack Ansible Tests 2018-09-28 06:19:05 +00:00
bindep.txt Updated from OpenStack Ansible Tests 2017-12-06 00:05:54 +00:00
manual-test.rc Ansible 2.1.1 update 2016-09-27 15:00:22 +00:00
run_tests.sh Updated from OpenStack Ansible Tests 2018-09-29 04:53:52 +00:00
setup.cfg Update mailinglist from dev to discuss 2018-12-05 09:16:40 +08:00
setup.py Updated from global requirements 2017-03-02 11:51:34 +00:00
tox.ini fix tox python3 overrides 2018-11-08 13:41:40 +00:00

README.rst

Team and repository tags

image

OpenStack-Ansible cinder

This Ansible role installs and configures OpenStack cinder.

Documentation for the project can be found at:

https://docs.openstack.org/openstack-ansible-os_cinder/latest/

Release notes for the project can be found at:

https://docs.openstack.org/releasenotes/openstack-ansible-os_cinder

The project source code repository is located at:

https://git.openstack.org/cgit/openstack/openstack-ansible-os_cinder

The project home is at:

https://launchpad.net/openstack-ansible

The project bug tracker is located at:

https://bugs.launchpad.net/openstack-ansible