Set project that owns managed resources

This change allow deployer to set project that will be owner of managed
resources like auto-created records and zones.
The owner is specified using project name and defaults to service
tenant.

Depends-On: https://review.openstack.org/628979
Change-Id: I620be82d890aaa547decc59f81f55345f7177900
This commit is contained in:
Damian Cikowski 2019-01-06 22:24:12 +01:00
parent b9d883443a
commit 8facdee36c
3 changed files with 23 additions and 2 deletions

View File

@ -162,6 +162,9 @@ designate_role_name: admin
# algorithm: "hmac-md5" # algorithm: "hmac-md5"
# secret: "<key>" # secret: "<key>"
# Owner of all managed resources - like auto-created records etc.
designate_managed_resource_project_name: "{{ designate_service_project_name }}"
## Service Type and Data ## Service Type and Data
designate_service_region: RegionOne designate_service_region: RegionOne
designate_service_endpoint_type: internalURL designate_service_endpoint_type: internalURL

View File

@ -13,6 +13,25 @@
# See the License for the specific language governing permissions and # See the License for the specific language governing permissions and
# limitations under the License. # limitations under the License.
- name: Get project id for managed resources
delegate_to: "{{ designate_service_setup_host }}"
vars:
ansible_python_interpreter: >-
{{ (designate_service_setup_host == 'localhost') | ternary(ansible_playbook_python, ansible_python['executable']) }}
os_project_facts:
cloud: default
name: "{{ designate_managed_resource_project_name }}"
interface: internal
validate_certs: "{{ not (keystone_service_internaluri_insecure | bool) }}"
register: _get_managed_resource_project
until: _get_managed_resource_project is success
retries: 5
delay: 15
- name: Store project id for managed resources
set_fact:
designate_managed_resource_tenant_id: "{{ ansible_facts.openstack_projects[0].id }}"
- name: Copy designate config - name: Copy designate config
config_template: config_template:
src: "{{ item.src }}" src: "{{ item.src }}"

View File

@ -66,8 +66,7 @@ transport_url = {{ designate_oslomsg_notify_transport }}://{% for host in design
#managed_resource_email = hostmaster@example.com. #managed_resource_email = hostmaster@example.com.
# Tenant ID to own all managed resources - like auto-created records etc. # Tenant ID to own all managed resources - like auto-created records etc.
# TODO(odyssey4me) - Check on whether this should be set to something managed_resource_tenant_id = {{ designate_managed_resource_tenant_id }}
#managed_resource_tenant_id = 123456
#----------------------- #-----------------------
# API Service # API Service