The cloudkitty-storage-init command by default loads
/etc/cloudkitty/cloudkitty.conf. Removing the override allows us to use
additional paths such as cloudkitty.conf.d in the future.
Change-Id: I3109005c76a1ffd8f23b3aebd92861a0a4fb419a
The oslo.policy library has implementations to detect change in policy
rules and reload the new rules without service restart.
Change-Id: I1355983024146ddc22128f6affcd67b2036b4848
The class parameter has been ignored and the given value was not put
in the config file properly. This fixes the problem.
Change-Id: I764a98553b766e64fad71d418f4158a47e413282
This removes a few parameters deprecated in favor of the new
cloudkitty::fetcher::keystone class.
[1] 4e6806f54f
Change-Id: I0e363d7269bfea31464d8d74b07828bebd792c3a
The purge_config parameters only accept boolean values. This enforces
that using the typed parameters.
Change-Id: Ia5ecf568545d11a10cd35f064af85e43136ce838
This ensures the parameters used by if-else logic accept only boolean
values because non-boolean can result in unexpected behavior.
Change-Id: I20a381329797402627cb14a6104014fae7ac839d
Both Debian and Ubuntu are using python3-cloudkitty-dashboard,
not cloudkitty-dashboard, as package name. Let's fix this
(so the Debian specific patch can be removed form pacakging).
Change-Id: I990398d27da898a60fc5c5991e6c2c3c5aa36672
The coordination_url option can sometimes contain secrets.
For example when redis coordination backend is used and authentication
is enabled in redis, the plain redis password is put as an URL element.
[orchestrator]
coordination_url=redis://:password@127.0.0.1:6379
Closes-Bug: #2012246
Change-Id: Iba1e7715b290ee4c104f11221e250b23936b12dc
The option has been managed by the underlying puppet-oslo module but
has not been configurable. This introduces the parameter to customize
the option.
Change-Id: Ia4e917d879a175c1919131bfa0bee9d679fe1a76
Add parameters for advanced logging configurations in Apache to
support piped logging and support for syslog (via mod_syslog
available in Apache >= 2.5.0)
Co-Authored-By: Andy Botting <andy@andybotting.com>
Change-Id: Iee4cf4b3e20d16624b89f6b004cc857ed5288510
This replaces one remaining hard-coded user which was left by
the previous attempt[1] to remove individual hard-codes.
[1] 4828d650b3
Change-Id: Iba7e9af291621deeca7651ef9f67ddce453180af
The puppetlabs-apache module is enforcing more strict data type
validation[1].
This change updates the default values to adapt to that change.
[1] f41251e336
Closes-Bug: #1983300
Depends-on: https://review.opendev.org/851652
Change-Id: Idd4918618831ffab98db91fa90ae493775373bc9
The headers option in apache::vhost is required in some case, for
example when adding the X-XSS-Protection header. This change allows
customizing the option for the api vhost.
This change also adds support for request_headers so that both request
headers and response headers can customized.
Change-Id: I4ff7ea57f9c1b29b2209506969497b773cef02ec
During the previous cycle, a warning message was added to inform users
of this change.
Now the default value is updated so that SSL is disabled by default.
Change-Id: I705dabab19974c2d9323e49051c8952e6d537820
After spending huge effort to understand the exact requirements to
enforce SRBAC, we learned it's very difficult to find the required
scope in each credential. This requires understanding implementation of
client-side as well as server-side, and requirement might be different
according to the deployment architecture or features used.
Instead of implementing support based on the actual implementation,
this introduces support for system scope credentials to all places
where keystone user credential is defined, and make all credential
configurations consistent.
Change-Id: I50c029b07a30c201b4d9bd4821265d4bf465ba9f
This change introduces a separate new class to manage [orchestrator]
parameters. The max_workers parameter in the processor class is
deprecated in favor of that new class.
Change-Id: Icd30923802064aec6a3ae9716b2ae30665998aae
The cloudkitty::ui class has been added to install the dashboard plugin
package. However the current implementation is incomplete and does not
define the required dependencies to install the plugin package before
starting the horizon service. Furthermore, the same can be achieved by
the horizon::dashboard resource type and that is considered to be more
"native" way.
This change deprecates the ui class so that we can get rid of it in
a future release.
Change-Id: I8eab557c13b3a6455a38b24732c692c5e823421a
Zuul