openstack
/
fuel-library
Code Issues Proposed changes
fuel-library/deployment/puppet/openstack_tasks/manifests/sahara/sahara.pp

218 lines
9.0 KiB
Puppet
Raw Blame History

class openstack_tasks::sahara::sahara {
notice('MODULAR: sahara/sahara.pp')
prepare_network_config(hiera_hash('network_scheme', {}))
$access_admin = hiera_hash('access', {})
$sahara_hash = hiera_hash('sahara', {})
$rabbit_hash = hiera_hash('rabbit', {})
$public_ssl_hash = hiera_hash('public_ssl')
$ceilometer_hash = hiera_hash('ceilometer', {})
$primary_controller = hiera('primary_controller')
$public_vip = hiera('public_vip')
$database_vip = hiera('database_vip', undef)
$management_vip = hiera('management_vip')
$neutron_config = hiera_hash('neutron_config')
$use_neutron = hiera('use_neutron', false)
$service_endpoint = hiera('service_endpoint')
$syslog_log_facility_sahara = hiera('syslog_log_facility_sahara')
$debug = pick($sahara_hash['debug'], hiera('debug', false))
$verbose = pick($sahara_hash['verbose'], hiera('verbose', true))
$default_log_levels = hiera_hash('default_log_levels')
$use_syslog = hiera('use_syslog', true)
$use_stderr = hiera('use_stderr', false)
$rabbit_ha_queues = hiera('rabbit_ha_queues')
$amqp_port = hiera('amqp_port')
$amqp_hosts = hiera('amqp_hosts')
$external_lb = hiera('external_lb', false)
$ssl_hash = hiera_hash('use_ssl', {})
$internal_auth_protocol = get_ssl_property($ssl_hash, {}, 'keystone', 'internal', 'protocol', 'http')
$internal_auth_address = get_ssl_property($ssl_hash, {}, 'keystone', 'internal', 'hostname', [$service_endpoint, $management_vip])
$internal_auth_url = "${internal_auth_protocol}://${internal_auth_address}:5000"
$admin_identity_protocol = get_ssl_property($ssl_hash, {}, 'keystone', 'admin', 'protocol', 'http')
$admin_identity_address = get_ssl_property($ssl_hash, {}, 'keystone', 'admin', 'hostname', [$service_endpoint, $management_vip])
$admin_identity_uri = "${admin_identity_protocol}://${admin_identity_address}:35357"
$kombu_compression = hiera('kombu_compression', '')
$memcached_servers = hiera('memcached_servers')
#################################################################
if $sahara_hash['enabled'] {
$firewall_rule = '201 sahara-api'
$api_bind_port = '8386'
$api_bind_host = get_network_role_property('sahara/api', 'ipaddr')
$public_address = $public_ssl_hash['services'] ? {
true => $public_ssl_hash['hostname'],
default => $public_vip,
}
$public_protocol = $public_ssl_hash['services'] ? {
true => 'https',
default => 'http',
}
$sahara_user = pick($sahara_hash['user'], 'sahara')
$sahara_password = pick($sahara_hash['user_password'])
$tenant = pick($sahara_hash['tenant'], 'services')
$max_pool_size = min($::processorcount * 5 + 0, 30 + 0)
$max_overflow = min($::processorcount * 5 + 0, 60 + 0)
$max_retries = '-1'
$idle_timeout = '3600'
$db_type = 'mysql'
$db_user = pick($sahara_hash['db_user'], 'sahara')
$db_name = pick($sahara_hash['db_name'], 'sahara')
$db_password = pick($sahara_hash['db_password'])
$db_host = pick($sahara_hash['db_host'], $database_vip)
# LP#1526938 - python-mysqldb supports this, python-pymysql does not
if $::os_package_type == 'debian' {
$extra_params = { 'charset' => 'utf8', 'read_timeout' => 60 }
} else {
$extra_params = { 'charset' => 'utf8' }
}
$db_connection = os_database_connection({
'dialect' => $db_type,
'host' => $db_host,
'database' => $db_name,
'username' => $db_user,
'password' => $db_password,
'extra' => $extra_params
})
####### Disable upstart startup on install #######
tweaks::ubuntu_service_override { 'sahara-api': }
firewall { $firewall_rule :
dport => $api_bind_port,
proto => 'tcp',
action => 'accept',
}
class { '::sahara' :
host => $api_bind_host,
port => $api_bind_port,
verbose => $verbose,
debug => $debug,
use_syslog => $use_syslog,
use_stderr => $use_stderr,
plugins => [ 'ambari', 'cdh', 'mapr', 'spark', 'vanilla' ],
log_facility => $syslog_log_facility_sahara,
database_connection => $db_connection,
database_max_pool_size => $max_pool_size,
database_max_overflow => $max_overflow,
database_max_retries => $max_retries,
database_idle_timeout => $idle_timeout,
sync_db => $primary_controller,
auth_uri => "${internal_auth_url}/v2.0/",
identity_uri => $admin_identity_uri,
rpc_backend => 'rabbit',
use_neutron => $use_neutron,
admin_user => $sahara_user,
admin_password => $sahara_password,
admin_tenant_name => $tenant,
rabbit_userid => $rabbit_hash['user'],
rabbit_password => $rabbit_hash['password'],
rabbit_ha_queues => $rabbit_ha_queues,
rabbit_port => $amqp_port,
rabbit_hosts => split($amqp_hosts, ','),
memcached_servers => $memcached_servers,
}
if $public_ssl_hash['services'] {
file { '/etc/pki/tls/certs':
mode => '0755',
}
file { '/etc/pki/tls/certs/public_haproxy.pem':
mode => '0644',
}
sahara_config {
'object_store_access/public_identity_ca_file': value => '/etc/pki/tls/certs/public_haproxy.pem';
'object_store_access/public_object_store_ca_file': value => '/etc/pki/tls/certs/public_haproxy.pem';
}
}
class { '::sahara::service::api': }
class { '::sahara::service::engine': }
# TODO degorenko: move this to upstream module, when RDO & UCA will prepare sahara-dashboard package
if $::os_package_type == 'debian' {
package { 'sahara-dashboard':
name => 'python-sahara-dashboard',
ensure => present,
}
}
class { '::sahara::client': }
if $ceilometer_hash['enabled'] {
class { '::sahara::notify':
enable_notifications => true,
}
}
$haproxy_stats_url = "http://${management_vip}:10000/;csv"
$sahara_protocol = get_ssl_property($ssl_hash, {}, 'sahara', 'internal', 'protocol', 'http')
$sahara_address = get_ssl_property($ssl_hash, {}, 'sahara', 'internal', 'hostname', [$service_endpoint, $management_vip])
$sahara_url = "${sahara_protocol}://${sahara_address}:${api_bind_port}"
$lb_defaults = { 'provider' => 'haproxy', 'url' => $haproxy_stats_url }
if $external_lb {
$lb_backend_provider = 'http'
$lb_url = $sahara_url
}
$lb_hash = {
sahara => {
name => 'sahara',
provider => $lb_backend_provider,
url => $lb_url
}
}
::osnailyfacter::wait_for_backend {'sahara':
lb_hash => $lb_hash,
lb_defaults => $lb_defaults
}
if $primary_controller {
class { '::osnailyfacter::wait_for_keystone_backends':} ->
class { '::sahara_templates::create_templates' :
use_neutron => $use_neutron,
auth_user => $access_admin['user'],
auth_password => $access_admin['password'],
auth_tenant => $access_admin['tenant'],
auth_uri => "${public_protocol}://${public_address}:5000/v2.0/",
internal_net => try_get_value($neutron_config, 'default_private_net', 'admin_internal_net'),
}
Class['::osnailyfacter::wait_for_keystone_backends'] -> ::Osnailyfacter::Wait_for_backend['sahara']
::Osnailyfacter::Wait_for_backend['sahara'] -> Class['::sahara_templates::create_templates']
}
Firewall[$firewall_rule] -> Class['::sahara::service::api']
Service['sahara-api'] -> ::Osnailyfacter::Wait_for_backend['sahara']
if !defined(Sahara_config['oslo_messaging_rabbit/heartbeat_timeout_threshold']) {
sahara_config { 'oslo_messaging_rabbit/heartbeat_timeout_threshold': value => $::os_service_default; }
}
if !defined(Sahara_config['oslo_messaging_rabbit/heartbeat_rate']) {
sahara_config { 'oslo_messaging_rabbit/heartbeat_rate': value => $::os_service_default; }
}
# TODO (iberezovskiy): remove this workaround in N when sahara module
# will be switched to puppet-oslo usage for rabbit configuration
if $kombu_compression in ['gzip','bz2'] {
if !defined(Oslo::Messaging_rabbit['sahara_config']) and !defined(Sahara_config['oslo_messaging_rabbit/kombu_compression']) {
sahara_config { 'oslo_messaging_rabbit/kombu_compression': value => $kombu_compression; }
} else {
Sahara_config<| title == 'oslo_messaging_rabbit/kombu_compression' |> { value => $kombu_compression }
}
}
}
}
View Git Blame Copy Permalink