openstack/cookbook-openstack-common
Code Issues Proposed changes
df9900d25b
cookbook-openstack-common/attributes/default.rb

351 lines
12 KiB
Ruby
Raw Normal View History

Initial commit
2012-11-07 20:52:47 -05:00
#
Stein fixes - Switch to Stein release - Cookstyle fixes - Update cookbook etcd to ~> 5.6 - Update README - Add myself to author list and OSU Copyright - Properly fix completions recipe and ensure it works - Create and start the etcd service in the etcd recipe - Update delivery configuration to exclude integration cookbooks - Refactor and update RenderConfigFileMatcher to work with newer ChefSpec. This fixes output which was passing but showing error messages. Depends-On: https://review.opendev.org/701027 Change-Id: Iba3eeabe85ab9303147e43eeb550212a46d190f3
2020-01-07 16:33:05 -08:00
# Cookbook:: openstack-common
Initial commit
2012-11-07 20:52:47 -05:00
# Attributes:: default
#
Chef 17 support - Require Chef >= 16.0 - Enable unified_mode - Update to latest upstream cookbooks for etcd, mariadb and memcached - Update copyright years Depends-On: https://review.opendev.org/c/openstack/openstack-chef/+/813950 Change-Id: Ib410ed28388725751a6295c58ce1f5e89c529b28 Signed-off-by: Lance Albertson <lance@osuosl.org>
2021-10-13 23:28:32 -07:00
# Copyright:: 2012-2021, AT&T Services, Inc.
# Copyright:: 2013-2021, SUSE Linux GmbH
# Copyright:: 2016-2021, Oregon State University
Initial commit
2012-11-07 20:52:47 -05:00
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
# Release mode toggle for testing frameworks. Defaults to false.
# Override this to true at the environment level when you're ready.
default['openstack']['is_release'] = false
Move openrc to Common from Compute Since there are user cases for having an openrc created for other uses besides Compute, it makes sense to move the openrc recipe logic into Common to allow it to be used as needed with any project. - Added new recipe/template for openrc - Added tests - Will create patches to remove openrc from Compute and to add it to the all in one environment. Change-Id: I2ca2280ef92d78bcf3e8a7d85eb91c9565413e17 Implements: blueprint moveopenrc
2014-04-14 15:47:06 -05:00
# Set to some text value if you want templated config files
# to contain a custom banner at the top of the written file
default['openstack']['common']['custom_template_banner'] = '
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
# This file is automatically generated by Chef
# Any changes will be overwritten
Move openrc to Common from Compute Since there are user cases for having an openrc created for other uses besides Compute, it makes sense to move the openrc recipe logic into Common to allow it to be used as needed with any project. - Added new recipe/template for openrc - Added tests - Will create patches to remove openrc from Compute and to add it to the all in one environment. Change-Id: I2ca2280ef92d78bcf3e8a7d85eb91c9565413e17 Implements: blueprint moveopenrc
2014-04-14 15:47:06 -05:00
'
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
# OpenStack services and their project names
default['openstack']['common']['services'] = {
Add: aodh support Change-Id: Ifba4d1c4111b212f67a8a8850875b44fa4795dbb Partial-Bug: #1779940
2017-11-14 14:29:03 -05:00
'aodh' => 'aodh',
Rename bare-metal to baremetal for Ironic Change-Id: I55eb4401dbc1e7c8cbd098a2bafca7f414d250de
2018-09-04 15:29:28 -07:00
'baremetal' => 'ironic',
Convert hyphens to underscores for service names The Chef Style Guide[1] does not recommend using hyphens for cookbook or resource names. To maintain consistency, we should follow best practices. In order to pass Zuul's one-way CRD requirements[2], both hyphens and underscores must exist for a compatibility period. [1]: https://docs.chef.io/ruby.html#use-of-hyphens [2]: http://lists.openstack.org/pipermail/openstack-dev/2015-February/056515.html Change-Id: Ic2b6d8f1cdf719791faaebdbd7e29e789eb3f31c
2018-12-10 16:54:29 -08:00
'bare_metal' => 'ironic',
'block_storage' => 'cinder',
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
'block-storage' => 'cinder',
'compute' => 'nova',
added service compute_api for nova_api database creation * in mitaka nova needs a seperate database for nova api (used in cells v2) which needs to be created and synced during deployment. To follow the logic used for all other databases, the compute_api attribute was added to common.services Change-Id: Idf6645064a1c2f337f542b29a026969c7d35efbe
2016-03-15 15:26:50 +01:00
'compute_api' => 'nova_api',
Switch to Ocata release - Have Ocata as default release for master now - switch default auth strategy to Fernet as PKI tokens have been removed - Update OpenStackClient version - Provide a default WSGI template that can be used from other cookbooks - Add a fake compute_cell0 service in order to create another DB for nova Change-Id: I8bc2eb5622b14457ef80cb70bf7a1d60c9fe9793
2017-03-07 14:02:38 +00:00
'compute_cell0' => 'nova_cell0',
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
'dashboard' => 'horizon',
'database' => 'trove',
Add support for Designate DNSaaS project The cookbook for installing Designate is being developed at [1] currently, it needs to be added to some base service definitions. [1] https://github.com/cloudbau/cookbook-openstack-dns Change-Id: I3407e698dd990661d280f25fc3de93aaa1477354
2017-08-28 09:42:50 +00:00
'dns' => 'designate',
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
'identity' => 'keystone',
'image' => 'glance',
Add load-balancer service In preparation for an openstack-load-balancer cookbook add the service so that we can create a database, message queues and endpoints. Change-Id: I4e67ec649124a16470c72bc831bd2825b3741449
2020-10-01 11:19:36 +02:00
'load_balancer' => 'octavia',
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
'network' => 'neutron',
Convert hyphens to underscores for service names The Chef Style Guide[1] does not recommend using hyphens for cookbook or resource names. To maintain consistency, we should follow best practices. In order to pass Zuul's one-way CRD requirements[2], both hyphens and underscores must exist for a compatibility period. [1]: https://docs.chef.io/ruby.html#use-of-hyphens [2]: http://lists.openstack.org/pipermail/openstack-dev/2015-February/056515.html Change-Id: Ic2b6d8f1cdf719791faaebdbd7e29e789eb3f31c
2018-12-10 16:54:29 -08:00
'object_storage' => 'swift',
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
'orchestration' => 'heat',
Updates for Train Added: - Placement service Changed: - Update release to train - Cookstyle fixes - Update to mariadb ~> 4.0 Removed: - Unused rubocop rules Fixed: - ChefSpec for wrapper now correctly works with node.role? Depends-On: https://review.opendev.org/731849 Change-Id: I3e809350541e9c7beab311e5b3e768df1612d9f5
2020-05-23 14:21:33 -07:00
'placement' => 'placement',
add telemetry-metric => gnocchi to common services Change-Id: I22114b6d2d46cce561a2f292b92ff5f531cff533
2016-05-19 18:09:32 +02:00
'telemetry' => 'ceilometer',
Convert hyphens to underscores for service names The Chef Style Guide[1] does not recommend using hyphens for cookbook or resource names. To maintain consistency, we should follow best practices. In order to pass Zuul's one-way CRD requirements[2], both hyphens and underscores must exist for a compatibility period. [1]: https://docs.chef.io/ruby.html#use-of-hyphens [2]: http://lists.openstack.org/pipermail/openstack-dev/2015-February/056515.html Change-Id: Ic2b6d8f1cdf719791faaebdbd7e29e789eb3f31c
2018-12-10 16:54:29 -08:00
'telemetry_metric' => 'gnocchi',
'application_catalog' => 'murano',
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
}
Adds encrypted databag secret support * Adds ::Openstack::secret library routine to return decrypted databag values or supplied parameter values when in developer_mode * Adds documentation on library routine to README * Adds unit tests for secret to specs/
2012-12-18 16:33:16 -05:00
# Setting this to True means that database passwords and service user
# passwords for Keystone will be easy-to-remember values -- they will be
# the same value as the key. For instance, if a cookbook calls the
# ::Openstack::secret routine like so:
#
# pass = secret "passwords", "nova"
#
# The value of pass will be "nova"
allow for attribute storage of secrets as an alternative In addition to storing secrets in data bags (the default) we would like to be able to store them in attributes. This commit doesn't change the existing passwords API, get_password will now read from attributes when the node['openstack']['use_databags'] attribute is falsy. This commit deprecates the development_mode which was only used as a hack for getting passwords easier without data bags. The attribute storage of passwords should now be sufficient for all those use cases. Increased rubocop's methodlength maximum to 15 because there are some temporary deprecation warnings which add up, but should go away soon. Change-Id: I1f23878dd3fa83fb40f7b4b56960d57a7b9b89cc
2014-06-18 13:48:19 +02:00
#
Adds encrypted databag secret support * Adds ::Openstack::secret library routine to return decrypted databag values or supplied parameter values when in developer_mode * Adds documentation on library routine to README * Adds unit tests for secret to specs/
2012-12-18 16:33:16 -05:00
allow for attribute storage of secrets as an alternative In addition to storing secrets in data bags (the default) we would like to be able to store them in attributes. This commit doesn't change the existing passwords API, get_password will now read from attributes when the node['openstack']['use_databags'] attribute is falsy. This commit deprecates the development_mode which was only used as a hack for getting passwords easier without data bags. The attribute storage of passwords should now be sufficient for all those use cases. Increased rubocop's methodlength maximum to 15 because there are some temporary deprecation warnings which add up, but should go away soon. Change-Id: I1f23878dd3fa83fb40f7b4b56960d57a7b9b89cc
2014-06-18 13:48:19 +02:00
# Use data bags for storing passwords
# Set this to false in order to get the passwords from attributes like:
# node['openstack']['secret'][key][type]
default['openstack']['use_databags'] = true
allow unencrypted databags for storing secrets. This will allow for easier storage of secrets for CI/dev type environments as well as providing working unencrypted examples of how the databags should be structured. Documented that this should not be used for real secrets. Change-Id: I903086bea72fdcf76996fd5ebf98c552002de223
2014-07-01 11:07:23 -05:00
# Set databag type
Added chef-vault as option to store secrets *Added gem chef-vault to gemfile *Added method to decrypt chef-vault items *Added case for ['openstack']['databag_type'] = 'vault' *Added version for ['openstack']['vault_gem_version'] = '~> 2.3' *Moved ::Chef.log.warn for developer_mode from method 'secret' to private method 'dev_secret' to refactore and shrink the method 'secret' *Added link to opscode chef-vault documentation Change-Id: Icda0e288bbb920498aba856fefaf04c0f1852787
2014-09-19 17:08:14 +02:00
# acceptable values 'encrypted', 'standard', 'vault'
allow unencrypted databags for storing secrets. This will allow for easier storage of secrets for CI/dev type environments as well as providing working unencrypted examples of how the databags should be structured. Documented that this should not be used for real secrets. Change-Id: I903086bea72fdcf76996fd5ebf98c552002de223
2014-07-01 11:07:23 -05:00
# Set this to 'standard' in order to use regular databags.
# this is not recommended for anything other than dev/CI
# type environments. Storing real secrets in plaintext = craycray.
Added chef-vault as option to store secrets *Added gem chef-vault to gemfile *Added method to decrypt chef-vault items *Added case for ['openstack']['databag_type'] = 'vault' *Added version for ['openstack']['vault_gem_version'] = '~> 2.3' *Moved ::Chef.log.warn for developer_mode from method 'secret' to private method 'dev_secret' to refactore and shrink the method 'secret' *Added link to opscode chef-vault documentation Change-Id: Icda0e288bbb920498aba856fefaf04c0f1852787
2014-09-19 17:08:14 +02:00
# In addition to the encrypted data_bags which are an included
# feature of the official chef project, you can use 'vault' to
# encrypt your secrets with the method provided in the chef-vault gem.
allow unencrypted databags for storing secrets. This will allow for easier storage of secrets for CI/dev type environments as well as providing working unencrypted examples of how the databags should be structured. Documented that this should not be used for real secrets. Change-Id: I903086bea72fdcf76996fd5ebf98c552002de223
2014-07-01 11:07:23 -05:00
default['openstack']['databag_type'] = 'encrypted'
Fixes for Ocata, define socket for MySQL - bumped chefdk to 1.5 - bumped mariadb to 1.5 - style fixes to make rubocop/foodcritic happy - rewrote metadata.rb for readability - removed ancient Gemfile - removed openshift rubygems mirror since it doesn't help us Change-Id: I950605f384405b55737af77bc4224f1e18fee8e1
2017-08-02 01:01:23 -04:00
default['openstack']['vault_gem_version'] = '~> 3.2'
allow unencrypted databags for storing secrets. This will allow for easier storage of secrets for CI/dev type environments as well as providing working unencrypted examples of how the databags should be structured. Documented that this should not be used for real secrets. Change-Id: I903086bea72fdcf76996fd5ebf98c552002de223
2014-07-01 11:07:23 -05:00
allow for attribute storage of secrets as an alternative In addition to storing secrets in data bags (the default) we would like to be able to store them in attributes. This commit doesn't change the existing passwords API, get_password will now read from attributes when the node['openstack']['use_databags'] attribute is falsy. This commit deprecates the development_mode which was only used as a hack for getting passwords easier without data bags. The attribute storage of passwords should now be sufficient for all those use cases. Increased rubocop's methodlength maximum to 15 because there are some temporary deprecation warnings which add up, but should go away soon. Change-Id: I1f23878dd3fa83fb40f7b4b56960d57a7b9b89cc
2014-06-18 13:48:19 +02:00
# Default attributes when not using data bags (use_databags = false)
Unify database attributes This commit changed the default dashboard service database username from dash to horizon, please be aware of this change. Change-Id: Iddd032442577f0b6f14e79fed6110ec457aca562
2015-04-22 09:39:30 +08:00
node['openstack']['common']['services'].each_key do |service|
Cleanup minor rubocop offenses Cleaned up all the minor rubocop issues, the ones left relate to complex logic and what I think is a bug in rubocop for nested vs compact modules/class definitions. Change-Id: Ic0c0677de44642e0994c0b95a3c270cbd4749b40
2015-05-28 12:11:23 -05:00
%w(user service db token).each do |type|
allow for attribute storage of secrets as an alternative In addition to storing secrets in data bags (the default) we would like to be able to store them in attributes. This commit doesn't change the existing passwords API, get_password will now read from attributes when the node['openstack']['use_databags'] attribute is falsy. This commit deprecates the development_mode which was only used as a hack for getting passwords easier without data bags. The attribute storage of passwords should now be sufficient for all those use cases. Increased rubocop's methodlength maximum to 15 because there are some temporary deprecation warnings which add up, but should go away soon. Change-Id: I1f23878dd3fa83fb40f7b4b56960d57a7b9b89cc
2014-06-18 13:48:19 +02:00
default['openstack']['secret'][service][type] = "#{service}-#{type}"
end
end
Switch to Ocata release - Have Ocata as default release for master now - switch default auth strategy to Fernet as PKI tokens have been removed - Update OpenStackClient version - Provide a default WSGI template that can be used from other cookbooks - Add a fake compute_cell0 service in order to create another DB for nova Change-Id: I8bc2eb5622b14457ef80cb70bf7a1d60c9fe9793
2017-03-07 14:02:38 +00:00
# The type of token signing to use (uuid or fernet)
default['openstack']['auth']['strategy'] = 'fernet'
Added a global signing configuration Defaults to UUID. Other OpenStack cookbooks will reference this, much like they do with developer_mode.
2013-01-09 16:06:03 -08:00
Final changes related to PKI
2013-01-11 10:54:35 -05:00
# Set to true where using self-signed certs (in testing environments)
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
default['openstack']['auth']['validate_certs'] = true
Final changes related to PKI
2013-01-11 10:54:35 -05:00
Adds encrypted databag secret support * Adds ::Openstack::secret library routine to return decrypted databag values or supplied parameter values when in developer_mode * Adds documentation on library routine to README * Adds unit tests for secret to specs/
2012-12-18 16:33:16 -05:00
# ========================= Encrypted Databag Setup ===========================
#
# The openstack-common cookbook's default library contains a `secret`
# routine that looks up the value of encrypted databag values. This routine
# uses the secret key file located at the following location to decrypt the
# values in the data bag.
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
default['openstack']['secret']['key_path'] = '/etc/chef/openstack_data_bag_secret'
Adds encrypted databag secret support * Adds ::Openstack::secret library routine to return decrypted databag values or supplied parameter values when in developer_mode * Adds documentation on library routine to README * Adds unit tests for secret to specs/
2012-12-18 16:33:16 -05:00
Provide a get_secret library method Currently we do not provide a mechanism for a user to specify an alternate 'secrets' data bag. By adding a get_secret method, we can support this feature request without breaking other dependent cookbooks. Once this method is accepted, we can retrofit all calls to 'secret' with 'get_secret'. New tests added and all tests pass. Changelog and metadata updated to semver 8.3.0. Change-Id: Id2adaf7bc197b3d7fd94c5c9614fda145a8501f0 Closes-Bug: #1288784
2014-03-12 20:08:25 -04:00
# The name of the encrypted data bag that stores openstack secrets
default['openstack']['secret']['secrets_data_bag'] = 'secrets'
Databags can only have one level of indexing Since databags can only have a single level of indexing, it is not possible to use a single databag to store service, database, and user passwords, with each "section" being its own hash. This makes changes to set individual encrypted data bags for each "section" of database, user, and service passwords
2012-12-21 08:26:11 -05:00
# The name of the encrypted data bag that stores service user passwords, with
# each key in the data bag corresponding to a named OpenStack service, like
Service users are named after the project nicknames, not the official API
2012-12-18 18:26:58 -05:00
# "nova", "cinder", etc.
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
default['openstack']['secret']['service_passwords_data_bag'] = 'service_passwords'
Adds way to configure what sections of secret databag are called * Also adds two convenience routines for db_password and service_password
2012-12-18 17:45:23 -05:00
Databags can only have one level of indexing Since databags can only have a single level of indexing, it is not possible to use a single databag to store service, database, and user passwords, with each "section" being its own hash. This makes changes to set individual encrypted data bags for each "section" of database, user, and service passwords
2012-12-21 08:26:11 -05:00
# The name of the encrypted data bag that stores DB passwords, with
# each key in the data bag corresponding to a named OpenStack database, like
Adds way to configure what sections of secret databag are called * Also adds two convenience routines for db_password and service_password
2012-12-18 17:45:23 -05:00
# "nova", "cinder", etc.
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
default['openstack']['secret']['db_passwords_data_bag'] = 'db_passwords'
Adds way to configure what sections of secret databag are called * Also adds two convenience routines for db_password and service_password
2012-12-18 17:45:23 -05:00
Databags can only have one level of indexing Since databags can only have a single level of indexing, it is not possible to use a single databag to store service, database, and user passwords, with each "section" being its own hash. This makes changes to set individual encrypted data bags for each "section" of database, user, and service passwords
2012-12-21 08:26:11 -05:00
# The name of the encrypted data bag that stores Keystone user passwords, with
# each key in the data bag corresponding to a user (Keystone or otherwise).
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
default['openstack']['secret']['user_passwords_data_bag'] = 'user_passwords'
Adds user_password routine (used for ksadmin)
2012-12-18 21:09:16 -05:00
Adds APT repository setup to base openstack-common attributes and recipe * Only support for Debian/Ubuntu right now, following instructions on https://wiki.ubuntu.com/ServerTeam/CloudArchive for Folsom packages
2012-11-28 13:12:33 -05:00
# ========================= Package and Repository Setup ======================
#
# Various Linux distributions provide OpenStack packages and repositories.
# The provide some sensible defaults, but feel free to override per your
# needs.
# The coordinated release of OpenStack codename
Updates for Train Added: - Placement service Changed: - Update release to train - Cookstyle fixes - Update to mariadb ~> 4.0 Removed: - Unused rubocop rules Fixed: - ChefSpec for wrapper now correctly works with node.role? Depends-On: https://review.opendev.org/731849 Change-Id: I3e809350541e9c7beab311e5b3e768df1612d9f5
2020-05-23 14:21:33 -07:00
default['openstack']['release'] = 'train'
Adds APT repository setup to base openstack-common attributes and recipe * Only support for Debian/Ubuntu right now, following instructions on https://wiki.ubuntu.com/ServerTeam/CloudArchive for Folsom packages
2012-11-28 13:12:33 -05:00
# The Ubuntu Cloud Archive has packages for multiple Ubuntu releases. For
# more information, see: https://wiki.ubuntu.com/ServerTeam/CloudArchive.
# In the component strings, %codename% will be replaced by the value of
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
# the node['lsb']['codename'] Ohai value and %release% will be replaced
# by the value of node['openstack']['release']
Ensure apt runs before packages are updated. Previously on 12.04 this would attempt to update ubuntu-cloud-keyring and instantly fail when ran against vagrant images that hadn't done an apt-get update recently. Change-Id: I65f88668d7438f60aa741f4df032bd3040fa6a2b Closes-Bug: #1375443
2014-09-29 15:49:37 -04:00
#
# Change ['openstack']['apt']['update_apt_cache'] to true if you would like
Fix typo in default.rb "automaticly" should be "automatically" Change-Id: I098834fcfea5494f7043ce4381313c95e053179e
2016-12-19 07:46:46 +00:00
# have the cache automatically updated
Ensure apt runs before packages are updated. Previously on 12.04 this would attempt to update ubuntu-cloud-keyring and instantly fail when ran against vagrant images that hadn't done an apt-get update recently. Change-Id: I65f88668d7438f60aa741f4df032bd3040fa6a2b Closes-Bug: #1375443
2014-09-29 15:49:37 -04:00
default['openstack']['apt']['update_apt_cache'] = false
Fix unnecessary error messages in log Currently if you are working in an environment that cannot reach the target openstack-ppa uri/components,say you do not have internet access for instance, you will see an error in the log which is captured in the refferenced bug report. By adding a new flag attribute: ['openstack']['apt']['live_updates_enabled'], the opnstack ppa update can be disabled by setting this attribute to false. This patch intended to avoid executing an unnesessary code path by checking the new flag prior to attempting to fetch updates. Closes-Bug: #1289356 Change-Id: Ifca7c77e7a84834b88600c14d5a45cc0a64825f8
2014-03-06 10:08:29 -05:00
default['openstack']['apt']['live_updates_enabled'] = true
Rubocop support for attributes. Cleaned up double-quotes, spacing issues and added UTF-8 header. Addresses: blueprint rubocop-for-common Change-Id: I6693795072a684f21ff86bf4c75877f498af5b83
2014-01-10 17:18:32 -06:00
default['openstack']['apt']['uri'] = 'http://ubuntu-cloud.archive.canonical.com/ubuntu'
Switch to correct Newton package locations - increments RDO to Newton GA, removes delorean-deps repo - removes proposed from Ubuntu packages Change-Id: Iad16b2595c55e50a1941db923d918b9bf5e14478
2016-10-11 13:24:07 -07:00
default['openstack']['apt']['components'] = ['main']
Adds APT repository setup to base openstack-common attributes and recipe * Only support for Debian/Ubuntu right now, following instructions on https://wiki.ubuntu.com/ServerTeam/CloudArchive for Folsom packages
2012-11-28 13:12:33 -05:00
Corrects rabbitmq user, yum cache cleaning - corrects the rabbitmq 'guest' user to 'openstack' to for a more secure installation, as 'guest' is not secure and is deleted in other non-Chef deployments. - adds update_yum_cache attribute to conditionally include the yum recipe, removing the hardcoded entries from the run lists. This prevents yum.conf from showing up on Debian-based machines. - enforces GPG checking for RDO packages, uses correct key. Change-Id: I89714e06eab803985ebffcdff5ff77655287c3e6
2017-04-07 15:18:33 -07:00
default['openstack']['yum']['update_yum_cache'] = false
Add enable flag for RDO yum repository on RHEL Each user can have their own specific repository for OpenStack. Under this scenario, a flag is required to let user disable the RDO yum repository. Co-Authored-By: Matt Odden <mrodden@us.ibm.com> Change-Id: Ifb271b5e11f3e26c5a217fcdd64ad546e378447f Closes-Bug: #1269348
2014-01-15 19:14:37 +08:00
default['openstack']['yum']['rdo_enabled'] = true
Switch to correct Newton package locations - increments RDO to Newton GA, removes delorean-deps repo - removes proposed from Ubuntu packages Change-Id: Iad16b2595c55e50a1941db923d918b9bf5e14478
2016-10-11 13:24:07 -07:00
default['openstack']['yum']['uri'] = "http://mirror.centos.org/centos/$releasever/cloud/$basearch/openstack-#{node['openstack']['release']}"
Corrects rabbitmq user, yum cache cleaning - corrects the rabbitmq 'guest' user to 'openstack' to for a more secure installation, as 'guest' is not secure and is deleted in other non-Chef deployments. - adds update_yum_cache attribute to conditionally include the yum recipe, removing the hardcoded entries from the run lists. This prevents yum.conf from showing up on Debian-based machines. - enforces GPG checking for RDO packages, uses correct key. Change-Id: I89714e06eab803985ebffcdff5ff77655287c3e6
2017-04-07 15:18:33 -07:00
default['openstack']['yum']['repo-key'] = "https://github.com/rdo-infra/rdo-release/raw/#{node['openstack']['release']}-rdo/RPM-GPG-KEY-CentOS-SIG-Cloud"
Making gpgcheck configurable for RDO repo Currently, gpgcheck flag is not configurable and is always enabled by default. For certain use cases, for example, using these cookbooks in production where internet access is restricted, we need to disable gpgcheck. This commit makes the gpgcheck configurable so that users can override it if needed. Change-Id: I10620f2d5adc240fda6273680638d0429260b9cc Related-Bug: #1417119
2015-01-25 09:54:14 -08:00
# Enforcing GnuPG signature check for RDO repo. Set this to false if you want to disable the check.
Corrects rabbitmq user, yum cache cleaning - corrects the rabbitmq 'guest' user to 'openstack' to for a more secure installation, as 'guest' is not secure and is deleted in other non-Chef deployments. - adds update_yum_cache attribute to conditionally include the yum recipe, removing the hardcoded entries from the run lists. This prevents yum.conf from showing up on Debian-based machines. - enforces GPG checking for RDO packages, uses correct key. Change-Id: I89714e06eab803985ebffcdff5ff77655287c3e6
2017-04-07 15:18:33 -07:00
default['openstack']['yum']['gpgcheck'] = true
Allow address_for default family to be overridden When IPv6 is wanted as the default interface address family, allow single override to make that change. Change-Id: I0ec7cc1eaab3dec09f26c745c1a5b7133e17cd0a Implements: blueprint ipv6-support
2014-04-07 13:50:35 -05:00
default['openstack']['endpoints']['family'] = 'inet'
Adds db information lookup to defaults and library Add node['openstack']['db'] array of db info hashes Add ::Openstack::db() and ::Openstack::db_uri() methods to the library.
2012-11-12 15:51:03 -05:00
Add default region inherited by other cookbooks. - Allow all regions to be set by 1 attribute (but still be able to be overridden) - Set default['openstack']['region'] to RegionOne Change-Id: I15254d22bde3e2ae1291e8b37ce61f2b1d002440 Addresses: blueprint uniform-region
2014-02-18 09:12:35 +00:00
# Set a default region that other regions are set to - such that changing the region for all services can be done in one place
default['openstack']['region'] = 'RegionOne'
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
# Allow configured loggers in logging.conf
default['openstack']['logging']['loggers'] = {
'root' => {
'level' => 'NOTSET',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'handlers' => 'devel',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'ceilometer' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'ceilometer',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'cinder' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'cinder',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'glance' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'glance',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'horizon' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'horizon',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'keystone' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'keystone',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'nova' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'nova',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'neutron' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'neutron',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'trove' => {
'level' => 'DEBUG',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'trove',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'amqplib' => {
'level' => 'WARNING',
'handlers' => 'stderr',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'amqplib',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'sqlalchemy' => {
'level' => 'WARNING',
# "level' => 'INFO" logs SQL queries.
# "level' => 'DEBUG" logs SQL queries and results.
# "level' => 'WARNING" logs neither. (Recommended for production systems.)
'handlers' => 'stderr',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'sqlalchemy',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'boto' => {
'level' => 'WARNING',
'handlers' => 'stderr',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'boto',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'suds' => {
'level' => 'INFO',
'handlers' => 'stderr',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'suds',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'eventletwsgi' => {
'level' => 'WARNING',
'handlers' => 'stderr',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'eventlet.wsgi.server',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'nova_api_openstack_wsgi' => {
'level' => 'WARNING',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'nova.api.openstack.wsgi',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'nova_osapi_compute_wsgi_server' => {
'level' => 'WARNING',
'handlers' => 'prod,debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'qualname' => 'nova.osapi_compute.wsgi.server',
},
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
}
# Allow configured formatters in logging.conf
default['openstack']['logging']['formatters'] = {
'normal' => {
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'format' => '%(asctime)s %(levelname)s %(message)s',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'normal_with_name' => {
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'format' => '[%(name)s]: %(asctime)s %(levelname)s %(message)s',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'debug' => {
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'format' => '[%(name)s]: %(asctime)s %(levelname)s %(module)s.%(funcName)s %(message)s',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'syslog_with_name' => {
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'format' => '%(name)s: %(levelname)s %(message)s',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'syslog_debug' => {
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'format' => '%(name)s: %(levelname)s %(module)s.%(funcName)s %(message)s',
},
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
}
# Allow configured logging handlers in logging.conf
default['openstack']['logging']['handlers'] = {
'stderr' => {
'args' => '(sys.stderr,)',
'class' => 'StreamHandler',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'formatter' => 'debug',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'devel' => {
'args' => '(sys.stdout,)',
'class' => 'StreamHandler',
'formatter' => 'debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'level' => 'NOTSET',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'prod' => {
'args' => '((\'/dev/log\'), handlers.SysLogHandler.LOG_LOCAL0)',
'class' => 'handlers.SysLogHandler',
'formatter' => 'syslog_with_name',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'level' => 'INFO',
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
},
'debug' => {
'args' => '((\'/dev/log\'), handlers.SysLogHandler.LOG_LOCAL1)',
'class' => 'handlers.SysLogHandler',
'formatter' => 'syslog_debug',
Initial common Pike updates - Bumped chefdk to 1.6.1 - Switched release to pike - Added is_release attribute for testing, defaults to false - Added RDO deps repo for testing pre-release packages - Added ubuntu-cloud proposed repo for testing pre-release packages - Switched the default linter to cookstyle - Normalized the banner message - Dropped pip installation method for python-openstackclient since the packages are fresh enough Change-Id: I7a67ba2520b8e44efec6edd8506f96b0e0dc913b
2017-08-20 11:16:38 -04:00
'level' => 'DEBUG',
},
Allow logging.conf to be configured via attributes deprecated the ['logging']['ignore'] Allow custom logger, handler and formatter sections Change-Id: Icda718b18aecc0f6caefe6fd56599a720b24f4d0 Implements: blueprint allow-custom-logging-handlers
2014-07-17 12:59:44 -05:00
}
Allow for memcache_servers override attributes Right now the memcache_servers function is used throughout a number of the cookbooks. For those who have not defined a memcache role, this can be problematic as it uses search. This would also be problematic for those wanting to use chef-solo without search and/or test-kitchen. So, just provide an override attribute to override search for memcache_servers. New test added to support this and all tests pass. Change-Id: Iff655ff066d8aa933eedb67ac17611288b57a2f0
2013-05-23 14:19:48 -04:00
rename memcached_servers attribute for consistency Change-Id: I7fec53ae18f38a0cd86f84a101a7bd5d5230fafd
2013-06-18 14:44:41 +02:00
default['openstack']['memcached_servers'] = nil
Add common messaging attributes Similar to the way in which we handle database attributes, provide a mechanism that allows for centralized messaging configuration. Right now this supports rabbit, but there is no reason other message queues could not be added in the default['openstack']['mq'] namespace. Change-Id: Id9d34fa7c256920dd575eee57c7b3820dacf8068
2013-06-19 18:19:32 -04:00
Add support for openstack-common::sysctl There are a number of sysctl settings in the OpenStack documentation that are not managed by the cookbooks. This approach will iterate over any attributes added to the node['openstack']['sysctl'] hash and write them out to /etc/sysctl.d/60-openstack.conf. The README.md had the recipe description within the Libraries section, separated into new Recipes section. Change-Id: Ic32184b78a0bcf4c3e704c7dcd1e9d009b1d95c6
2013-10-22 14:57:41 -05:00
# Default sysctl settings
default['openstack']['sysctl']['net.ipv4.conf.all.rp_filter'] = 0
default['openstack']['sysctl']['net.ipv4.conf.default.rp_filter'] = 0
Add ceph_client recipe To use RBD as a block-storage backend, both the compute workers and the cinder-api service need to be able to talk to the Ceph cluster. Nova-compute makes use of the `rbd` CLI tool, cinder-api and libvirt use librbd's Python binding. Therefore, it might make sense to have this "common" recipe provide the necessary infrastructure to a) reach the ceph cluster and b) install ceph packages if need be. Besides block storage, RBD can also be used for storing images, so that's another reason to put this into openstack-common. This commit also introduces a template, "ceph.client.keyring.erb", to allow the creation of client keys from other recipes in a DRY way: template '/etc/ceph/client.cinder.keyring' do template 'ceph.client.keyring.erb' cookbook 'openstack-common' owner node['openstack']['block-storage']['user'] group node['openstack']['block-storage']['group'] mode '600' variables( name: rbd_user, key: rbd_key ) end A LWRP for this would be an improvement, but this should do for now. Implements: blueprint rbd-for-block-storage Change-Id: Icd046830c9542bd71fa3a1857c1f4d1bb3c41cec
2014-01-27 15:00:58 +01:00
Add python-openstackclient package support Add new client recipe for new common client package. As more new features are only supported via this new python client, we need to have a way to deploy it and Common seems like the right place. There is another blueprint for moving the openrc from Compute to Common that is related to this. Change-Id: I8ab56b375b28c979021f3c5bc81e364f1cc65226 Implements: blueprint openstack-client
2014-04-07 12:00:08 -05:00
case node['platform_family']
library cleanup and refactoring * version bump to 13.0.0 for mitaka release * removed suse support * removed general endpoint method, since we should be able to always specify which endpoint we need * removed fallbacks in specific_endpoint method, since this behaviour is not a very obvious one to the user and it should rather return an error than an unexpected result * dry public, internal and admin endpoint methods * removed obsolete private methods * adapted method calls for admin_endpoint in libraries/cli.rb * refactored set_endpoints_by_interface recipe to directly call address_for instead of address, since the recipe already checks for an existing attribute ..['bind_interface'] and therefore address would redirect to address_for anyways * moved the nested hash order for the public, internal and admin attributes to to be more clear and to break all existing calls to fix them during the refactoring process of all cookbooks e.g: node['openstack']['endpoints']['internal']['identity'] is now node['openstack']['endpoints']['identity']['internal'] and can be moved into the identity cookbook. This also streamlines these endpoint attributes with the bind_interface and host attributes * removed dependency on openstack-identity cookbooks by moving openrc recipe to opentack-identity (same for corrensponding specs and template) * removed address method and use the address (or hostname) defined in the endpoints hash directly (logic to set this attribute should rather be done in a wrapper (with a fitting method) instead of a static and predefined one) * removed set_endpoints_by_interface recipe since logic for defining the endpoints will be moved to wrapper cookbooks * added helper method merge_config_options for generation of config hashes used in service config templates * added template for openstack-service.conf.erb which can be used by all service cookbooks * deleted all endpoints attibutes, since these are moved to the service cookbooks for easier dependency handling Implements: blueprint cookbook-refactoring Change-Id: I0547182085eed91d05384fdd7734408a839a9a2c
2015-11-24 11:54:40 +01:00
when 'rhel'
CentOS 8 support - Add yum-centos cookbook to deps - Enable PowerTools and RabbitMQ repositories on EL8 - Update various packages for EL8 Depends-On: https://review.opendev.org/c/openstack/openstack-chef/+/814234 Change-Id: Ife3165204d9ffee132a0daacd4a6f30c7d31378b Signed-off-by: Lance Albertson <lance@osuosl.org>
2021-10-15 15:08:36 -07:00
default['openstack']['common']['platform'] =
if node['platform_version'].to_i >= 8
{
'common_client_packages' => ['python3-openstackclient'],
'python_packages' => %w(
python3-pip
python3-setuptools
python3-virtualenv
python3-wheel
python36
python36-devel
),
'package_overrides' => '',
}
else
{
'common_client_packages' => ['python-openstackclient'],
'python_packages' => %w(
python
python2-pip
python2-setuptools
python-devel
python-virtualenv
python-wheel
),
'package_overrides' => '',
}
end
Add python-openstackclient package support Add new client recipe for new common client package. As more new features are only supported via this new python client, we need to have a way to deploy it and Common seems like the right place. There is another blueprint for moving the openrc from Compute to Common that is related to this. Change-Id: I8ab56b375b28c979021f3c5bc81e364f1cc65226 Implements: blueprint openstack-client
2014-04-07 12:00:08 -05:00
when 'debian'
default['openstack']['common']['platform'] = {
Use python3 packages on Ubuntu Python2.7 is going EOL soon, let us deploy python3 for Rocky from the start, so we avoid having to switch later. Change-Id: I9cacde567f1d390311ac425649d6f6843abf929b
2019-09-18 11:07:21 +00:00
'common_client_packages' => ['python3-openstackclient'],
Stein fixes - Switch to Stein release - Cookstyle fixes - Update cookbook etcd to ~> 5.6 - Update README - Add myself to author list and OSU Copyright - Properly fix completions recipe and ensure it works - Create and start the etcd service in the etcd recipe - Update delivery configuration to exclude integration cookbooks - Refactor and update RenderConfigFileMatcher to work with newer ChefSpec. This fixes output which was passing but showing error messages. Depends-On: https://review.opendev.org/701027 Change-Id: Iba3eeabe85ab9303147e43eeb550212a46d190f3
2020-01-07 16:33:05 -08:00
'python_packages' => %w(
python3
python3-dev
python3-pip
python3-setuptools
python3-virtualenv
python3-wheel
virtualenv
),
common refactor for Pike and Chef 13 - changed the default RDBMS to MariaDB in accordance with install docs[0] - removed deprecated database, apt and yum cookbooks - incorporated `database' and MySQL-specific abstractions from database cookbook - implemented foodcritic and cookstyle corrections - deprecated node.foo.bar method access for node['foo']['bar'] bracket syntax - updated default recipe for core apt resource - use /etc/apt/apt.conf.d on Ubuntu instead of passing the dpkg overrides as command line options in every cookbook [0]: https://docs.openstack.org/install-guide/environment-sql-database.html Implements blueprint modern-chef Change-Id: I143e0ed0a2bdd76269fc0c402052696426d96d81 Depends-On: I00e2237cef0c9aa35f78d3ccec04a1c7b9271ce8 Depends-On: I7ee0f5eae4e79e5c70ee8de4a0094a7c34fdd18f
2017-11-26 22:40:50 -08:00
'package_overrides' => '',
Add python-openstackclient package support Add new client recipe for new common client package. As more new features are only supported via this new python client, we need to have a way to deploy it and Common seems like the right place. There is another blueprint for moving the openrc from Compute to Common that is related to this. Change-Id: I8ab56b375b28c979021f3c5bc81e364f1cc65226 Implements: blueprint openstack-client
2014-04-07 12:00:08 -05:00
}
end
Move openrc to Common from Compute Since there are user cases for having an openrc created for other uses besides Compute, it makes sense to move the openrc recipe logic into Common to allow it to be used as needed with any project. - Added new recipe/template for openrc - Added tests - Will create patches to remove openrc from Compute and to add it to the all in one environment. Change-Id: I2ca2280ef92d78bcf3e8a7d85eb91c9565413e17 Implements: blueprint moveopenrc
2014-04-14 15:47:06 -05:00
Add recipe to create bash completions for OSC The new recipe "completions" can be executed in order to create a file with command completions for the "openstack" command in bash. We want this to be dynamic because the set of available commands depends on the set of python plugins installed on the host. Change-Id: Ib6549c00596f6560dab74491309b6b580ae7b312
2019-04-23 10:19:09 +00:00
# The location of the OSC bash completion file
default['openstack']['common']['bash_complete'] = '/etc/bash_completion.d/osc.bash_completion'
Improve ChefSpec test speed by enabling caching This updates all references of let(:chef_run) to cached(:chef_run) to speed up tests. By doing this, we have to create a new cached(:chef_run) block whenever we need to adjust node attributes for testing. Some additional fixes include: - Add default['openstack']['common']['search_count_max'] attribute to allow speed ups during testing. - Improved a few tests - Adjusted some formatting - Remove deprecated ChefSpec::Coverage.start function - Show warnings - Use major version for redhat platform - Update to Ubuntu 18.04 Speed was improved from 4 minutes 16 seconds to 41.98 seconds. Change-Id: Icb9147036a01f92ec48a24c692dd022258e294c0
2019-12-07 16:29:45 -08:00
# Set maximum count for searches [1]
# [1] https://review.opendev.org/60126
default['openstack']['common']['search_count_max'] = 7
Move openrc to Common from Compute Since there are user cases for having an openrc created for other uses besides Compute, it makes sense to move the openrc recipe logic into Common to allow it to be used as needed with any project. - Added new recipe/template for openrc - Added tests - Will create patches to remove openrc from Compute and to add it to the all in one environment. Change-Id: I2ca2280ef92d78bcf3e8a7d85eb91c9565413e17 Implements: blueprint moveopenrc
2014-04-14 15:47:06 -05:00
# The name of the Chef role that installs the Keystone Service API
default['openstack']['identity_service_chef_role'] = 'os-identity'
Move role and recipe include methods to Common These small wrappers are now needed by other cookbooks. They provide a easy way to create a clean spec test. Will put these into the Common openstack library module namespace for easy use across the cookbooks. Added common role defintion for compute worker. Eventually all the role definitions should be moved here. Added new spec for these wrappers. Change-Id: If548a9d63a42799e1401b18540878eca5ba2a0e1 Related-Bug: #1448255
2015-04-24 13:52:01 -05:00
# The name of the Chef role that sets up the compute worker
default['openstack']['compute_worker_chef_role'] = 'os-compute-worker'
Copy Permalink