b2b37d370f
astute.yaml now provides passwords for the following services: * mcollective * astute * cobbler * postgres (keystone, nailgun and ostf DBs) All statically defined passwords for these services are now sourced from astute.yaml Corrected small bug for astute user/pass in rabbitmq role. Adjusted Cobbler bootstrap profile to include mcollective credentials. blueprint secure-fuel-master-services blueprint access-control-master-node Change-Id: I3db33e35ad18fd9ff258c86d8842db51b21a6931
50 lines
1.4 KiB
Puppet
50 lines
1.4 KiB
Puppet
$fuel_settings = parseyaml($astute_settings_yaml)
|
|
|
|
$postgres_default_version = '8.4'
|
|
|
|
# install and configure postgresql server
|
|
class { 'postgresql::server':
|
|
config_hash => {
|
|
'ip_mask_allow_all_users' => '0.0.0.0/0',
|
|
'listen_addresses' => '0.0.0.0',
|
|
},
|
|
}
|
|
|
|
# nailgun db and grants
|
|
$database_name = $::fuel_settings['postgres']['nailgun_dbname']
|
|
$database_engine = "postgresql"
|
|
$database_port = "5432"
|
|
$database_user = $::fuel_settings['postgres']['nailgun_user']
|
|
$database_passwd = $::fuel_settings['postgres']['nailgun_password']
|
|
|
|
class { "nailgun::database":
|
|
user => $database_user,
|
|
password => $database_passwd,
|
|
dbname => $database_name,
|
|
}
|
|
|
|
# keystone db and grants
|
|
$keystone_dbname = $::fuel_settings['postgres']['keystone_dbname']
|
|
$keystone_dbuser = $::fuel_settings['postgres']['keystone_user']
|
|
$keystone_dbpass = $::fuel_settings['postgres']['keystone_password']
|
|
|
|
postgresql::db { $keystone_dbname:
|
|
user => $keystone_dbuser,
|
|
password => $keystone_dbpass,
|
|
grant => 'all',
|
|
require => Class['::postgresql::server'],
|
|
}
|
|
|
|
# ostf db and grants
|
|
$ostf_dbname = $::fuel_settings['postgres']['ostf_dbname']
|
|
$ostf_dbuser = $::fuel_settings['postgres']['ostf_user']
|
|
$ostf_dbpass = $::fuel_settings['postgres']['ostf_password']
|
|
|
|
postgresql::db { $ostf_dbname:
|
|
user => $ostf_dbuser,
|
|
password => $ostf_dbpass,
|
|
grant => 'all',
|
|
require => Class['::postgresql::server'],
|
|
}
|
|
|