openstack
/
fuel-library
Code Issues Proposed changes
fuel-library/deployment/puppet/fuel/manifests/auth.pp

75 lines
2.0 KiB
Puppet
Raw Blame History

# == Class: fuel::auth
#
# This class creates keystone users, services, endpoints, and roles
# for Nailgun services.
#
# The user is given the admin role in the services tenant.
#
# === Parameters
# [*auth_user*]
# String. The name of the user.
# Optional. Defaults to 'nailgun'.
#
# [*password*]
# String. The user's password.
# Optional. Defaults to 'nailgun'.
#
class fuel::auth(
$auth_name = $::fuel::params::keystone_nailgun_user,
$password = $::fuel::params::keystone_nailgun_password,
$address = $::fuel::params::keystone_host,
$keystone_domain = $::fuel::params::keystone_domain,
$internal_address = undef,
$admin_address = undef,
$public_address = undef,
$port = '8000',
$region = 'RegionOne',
) inherits fuel::params {
if ($internal_address == undef) {
$internal_address_real = $address
} else {
$internal_address_real = $internal_address
}
if ($admin_address == undef) {
$admin_address_real = $address
} else {
$admin_address_real = $admin_address
}
if ($public_address == undef) {
$public_address_real = $address
} else {
$public_address_real = $public_address
}
keystone_user { $auth_name:
ensure => present,
enabled => 'True',
password => $password,
domain => $keystone_domain,
}
keystone_user_role { "${auth_name}@services":
ensure => present,
roles => ['admin'],
user_domain => $keystone_domain,
project_domain => $keystone_domain,
}
keystone_service { 'nailgun':
ensure => present,
type => 'fuel',
description => 'Nailgun API',
}
keystone_endpoint { "$region/nailgun":
ensure => present,
public_url => "http://${public_address_real}:${port}/api",
admin_url => "http://${admin_address_real}:${port}/api",
internal_url => "http://${internal_address_real}:${port}/api",
type => 'fuel',
require => Keystone_Service['nailgun'],
}
}
View Git Blame Copy Permalink