diff --git a/etc/glance-cache.conf b/etc/glance-cache.conf index 3204a30506..6f8a93ef3b 100644 --- a/etc/glance-cache.conf +++ b/etc/glance-cache.conf @@ -88,6 +88,15 @@ swift_store_create_container_on_put = False # the maximum object size in Swift, which is 5GB swift_store_large_object_size = 5120 +# This file contains references for each of the configured +# Swift accounts/backing stores. If used, this option can prevent +# credentials being stored in the database. Using Swift references +# is disabled if this config is left blank. +#swift_store_config_file = glance-swift.conf + +# The reference to the default Swift parameters to use for adding new images. +#default_swift_reference = 'ref1' + # When doing a large object manifest, what size, in MB, should # Glance write chunks to Swift? This amount of data is written # to a temporary disk buffer during the process of chunking @@ -102,6 +111,39 @@ swift_store_large_object_chunk_size = 200 # Ex. https://example.com/v1.0/ -> https://snet-example.com/v1.0/ swift_enable_snet = False +# If set to True enables multi-tenant storage mode which causes Glance images +# to be stored in tenant specific Swift accounts. +#swift_store_multi_tenant = False + +# A list of swift ACL strings that will be applied as both read and +# write ACLs to the containers created by Glance in multi-tenant +# mode. This grants the specified tenants/users read and write access +# to all newly created image objects. The standard swift ACL string +# formats are allowed, including: +# <tenant_id>:<username> +# <tenant_name>:<username> +# *:<username> +# Multiple ACLs can be combined using a comma separated list, for +# example: swift_store_admin_tenants = service:glance,*:admin +#swift_store_admin_tenants = + +# The region of the swift endpoint to be used for single tenant. This setting +# is only necessary if the tenant has multiple swift endpoints. +#swift_store_region = + +# If set to False, disables SSL layer compression of https swift requests. +# Setting to 'False' may improve performance for images which are already +# in a compressed format, eg qcow2. If set to True, enables SSL layer +# compression (provided it is supported by the target swift proxy). +#swift_store_ssl_compression = True + +# The number of times a Swift download will be retried before the +# request fails +#swift_store_retry_get_count = 0 + +# Bypass SSL verification for Swift +#swift_store_auth_insecure = False + # ============ S3 Store Options ============================= # Address where the S3 authentication service lives