RETIRED, Heat templates for deploying OpenStack

Go to file

Juan Antonio Osorio Robles 994922a8ba Disable live migration over TLS Due to the fact that it doesn't use a separate CA (or sub CA) for libvirtd, and that proper SASL is not being used. We are disabling this option since it doesn't meet the appropriate security requirements. We'll look into adding this back once these issues get fixed. Change-Id: I6a5e4db1b6dd6bc8b7e73e53b614b070d15b8a23 Closes-Bug: #1730370 (cherry picked from commit `645757cbd6`)		2017-11-11 10:36:50 +00:00
ci	Re-enable containerized fluentd	2017-11-09 09:02:19 +00:00
common	Refactor cellv2 host discovery logic to avoid races	2017-11-10 09:25:25 +00:00
deployed-server	Merge "Create short lived ssh key for enable-ssh-admin.sh" into stable/pike	2017-10-24 19:46:07 +00:00
docker	Disable live migration over TLS	2017-11-11 10:36:50 +00:00
environments	Merge "Env files for ODL deployments" into stable/pike	2017-11-10 12:03:11 +00:00
extraconfig	Merge "RHSM: when using proxy, test its connectivity first" into stable/pike	2017-11-05 12:41:24 +00:00
firstboot	Merge "Don't curl metadata server in userdata example"	2017-08-09 04:41:12 +00:00
network	Merge "Fix some missed hard-coded network references" into stable/pike	2017-10-19 04:54:09 +00:00
plan-samples	Workflow input parameter update in plan-environment	2017-07-05 07:57:43 -04:00
puppet	Disable live migration over TLS	2017-11-11 10:36:50 +00:00
releasenotes	Disable live migration over TLS	2017-11-11 10:36:50 +00:00
roles	Add IronicPxe to the default controller	2017-10-10 01:54:02 +00:00
sample-env-generator	Fix standalone ControllerOpenstack vars	2017-10-31 01:15:58 +00:00
scripts	Avoid awk error in hosts-config.sh for large deployments	2017-04-07 10:50:39 +01:00
tools	Refactor cellv2 host discovery logic to avoid races	2017-11-10 09:25:25 +00:00
tripleo_heat_templates	Convert enable-internal-tls.yaml to be generated	2017-09-02 04:18:31 +00:00
validation-scripts	Tolerate network errors in pingtest retry logic	2017-06-30 11:56:55 +01:00
.gitignore	Sample environment generator	2017-06-12 15:02:50 -05:00
.gitreview	Update .gitreview for stable/pike	2017-08-24 21:05:07 +00:00
.testr.conf	Sample environment generator	2017-06-12 15:02:50 -05:00
LICENSE	Add license file	2014-01-20 11:58:20 +01:00
MANIFEST.in	Add release configuration.	2013-10-22 17:49:35 +01:00
README.rst	README: Fix CI coverage layout	2017-08-16 10:28:29 -07:00
all-nodes-validation.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
babel.cfg	Add release configuration.	2013-10-22 17:49:35 +01:00
bindep.txt	Add in roles data validation	2017-07-07 09:51:40 -06:00
bootstrap-config.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
capabilities-map.yaml	Add support for Dell EMC Isilon Manila backend	2017-09-05 17:37:45 +00:00
default_passwords.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
hosts-config.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
j2_excludes.yaml	Remove ipv6 specific network templates	2017-09-01 17:59:24 +00:00
net-config-bond.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-bridge.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-linux-bridge.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-noop.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-static-bridge-with-external-dhcp.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-static-bridge.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-static.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-undercloud.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
network_data.yaml	Revert "Fixes heat resource name for Internal API Network"	2017-10-12 15:56:08 -04:00
overcloud-resource-registry-puppet.j2.yaml	Remove Heat Cloudwatch API during upgrade and disable by default	2017-10-17 17:28:24 +00:00
overcloud.j2.yaml	Refactor cellv2 host discovery logic to avoid races	2017-11-10 09:25:25 +00:00
plan-environment.yaml	Add name and description fields to plan-environment.yaml	2017-04-12 17:25:40 +02:00
requirements.txt	Add in roles data validation	2017-07-07 09:51:40 -06:00
roles_data.yaml	Add IronicPxe to the default controller	2017-10-10 01:54:02 +00:00
roles_data_undercloud.yaml	Add logrotate with crond service	2017-08-21 08:56:29 +02:00
setup.cfg	Drop deprecated templates/Makefile/merge.py	2015-11-25 15:00:13 -05:00
setup.py	Updated from global requirements	2017-03-28 13:03:01 +00:00
test-requirements.txt	Updated from global requirements	2017-09-01 13:02:52 +00:00
tox.ini	Update UPPER_CONSTRAINTS_FILE for stable/pike	2017-08-24 21:05:08 +00:00

README.rst

Team and repository tags

tripleo-heat-templates

Heat templates to deploy OpenStack using OpenStack.

Free software: Apache license
Documentation: http://docs.openstack.org/developer/tripleo-docs
Source: http://git.openstack.org/cgit/openstack/tripleo-heat-templates
Bugs: http://bugs.launchpad.net/tripleo

Features

The ability to deploy a multi-node, role based OpenStack deployment using OpenStack Heat. Notable features include:

Choice of deployment/configuration tooling: puppet, (soon) docker

Role based deployment: roles for the controller, compute, ceph, swift, and cinder storage

physical network configuration: support for isolated networks, bonding, and standard ctlplane networking

Directories

A description of the directory layout in TripleO Heat Templates.

environments: contains heat environment files that can be used with -e

on the command like to enable features, etc.

extraconfig: templates used to enable 'extra' functionality. Includes

functionality for distro specific registration and upgrades.

firstboot: example first_boot scripts that can be used when initially

creating instances.

network: heat templates to help create isolated networks and ports

puppet: templates mostly driven by configuration with puppet. To use these

templates you can use the overcloud-resource-registry-puppet.yaml.

validation-scripts: validation scripts useful to all deployment

configurations

roles: example roles that can be used with the tripleoclient to generate

a roles_data.yaml for a deployment See the roles/README.rst for additional details.

Service testing matrix

The configuration for the CI scenarios will be defined in tripleo-heat-templates/ci/ and should be executed according to the following table:

+----------------+-------------+-------------+-------------+-------------+-----------------++-------------+ | - | scenario001 | scenario002 | scenario003 | scenario004 | multinode-nonha | scenario007 | +================+=============+=============+=============+=============+=================+==============+ | keystone | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | glance | rbd | swift | file | swift + rbd | swift | file | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | cinder | rbd | iscsi | | | iscsi | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | heat | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | mysql | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | neutron | ovs | ovs | ovs | ovs | X | ovn | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | neutron-bgpvpn | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ovn | | | | | | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | neutron-l2gw | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | rabbitmq | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | mongodb | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | redis | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | haproxy | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | keepalived | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | memcached | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | pacemaker | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | nova | qemu | qemu | qemu | qemu | X | qemu | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ntp | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | snmp | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | timezone | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | sahara | | | X | | | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | mistral | | | X | | | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | swift | | X | | | X | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | aodh | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ceilometer | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | gnocchi | rbd | swift | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | panko | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | barbican | | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | zaqar | | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ec2api | | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | cephrgw | | X | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | tacker | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | congress | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | cephmds | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | manila | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | collectd | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | fluentd | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | sensu-client | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+