openstack-ansible/playbooks/inventory/group_vars/keystone_all.yml

---
# Copyright 2014, Rackspace US, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

# The variables file used by the playbooks in the Keystone-api group.
# These don't have to be explicitly imported by vars_files: they are autopopulated.

## Service Name
service_name: keystone


## Service ports
service_port: 5000
admin_port: 35357


## Verbosity Options
debug: False
verbose: True

# only used when the lxc vg is present on the target
container_lvm_fstype: ext4
container_lvm_fssize: 5GB


## DB
container_mysql_user: keystone
container_mysql_password: "{{ keystone_container_mysql_password }}"
container_database: keystone


## AUTH
auth_methods: "password,token"
token_provider: "keystone.token.providers.uuid.Provider"

# If the "token_provider" is set to PKI set this to True
keystone_use_pki: False


## Keystone User / Group
system_user: keystone
system_group: keystone


## Enable SSL
keystone_ssl: false

## Optional SSL vars
# keystone_ssl_cert: /etc/ssl/certs/apache.cert
# keystone_ssl_key: /etc/ssl/certs/apache.key
# keystone_ssl_cert_path: /etc/ssl/certs


container_directories:
  - { name: /etc/keystone }
  - { name: /etc/keystone/ssl }
  - { name: /var/lib/keystone }
  - { name: /var/log/keystone, mode: 755 }
  - { name: /var/www/cgi-bin/keystone, mode: 755 }