823a80bd44
The placement service is already setup to use UWsgi, we need to move the other Nova services to follow suit as part of our community goal for Pike. Additionally, we need to clean up the nginx configuration as we are moving away from fronting uWSGI with nginx inside the roles. Depends-On: Ib66b9709fb88205eaf3f133c87357a4dbbdde5ae Change-Id: If6c30e00c1c753692c970457b75e3ae7f5cc066c Implements: blueprint goal-deploy-api-in-wsgi
199 lines
6.4 KiB
YAML
199 lines
6.4 KiB
YAML
---
|
|
# Copyright 2014, Rackspace US, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
# Create a service
|
|
- name: Ensure nova service
|
|
keystone:
|
|
command: "ensure_service"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
service_name: "{{ nova_service_name }}"
|
|
service_type: "{{ nova_service_type }}"
|
|
description: "{{ nova_service_description }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
register: add_service
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 2
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
- nova-setup
|
|
|
|
# Create an admin user
|
|
- name: Ensure nova user
|
|
keystone:
|
|
command: "ensure_user"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
user_name: "{{ nova_service_user_name }}"
|
|
tenant_name: "{{ nova_service_project_name }}"
|
|
password: "{{ nova_service_password }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
register: add_service
|
|
when:
|
|
- not nova_service_in_ldap | bool
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 10
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
- nova-setup
|
|
|
|
# Add a role to the user
|
|
- name: Ensure nova user to admin role
|
|
keystone:
|
|
command: "ensure_user_role"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
user_name: "{{ nova_service_user_name }}"
|
|
tenant_name: "{{ nova_service_project_name }}"
|
|
role_name: "{{ nova_service_role_name }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
register: add_service
|
|
when:
|
|
- not nova_service_in_ldap | bool
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 10
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
- nova-setup
|
|
|
|
# Create an endpoint
|
|
- name: Ensure nova endpoint
|
|
keystone:
|
|
command: "ensure_endpoint"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
region_name: "{{ nova_service_region }}"
|
|
service_name: "{{ nova_service_name }}"
|
|
service_type: "{{ nova_service_type }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
endpoint_list:
|
|
- url: "{{ nova_service_publicurl }}"
|
|
interface: "public"
|
|
- url: "{{ nova_service_internalurl }}"
|
|
interface: "internal"
|
|
- url: "{{ nova_service_adminurl }}"
|
|
interface: "admin"
|
|
register: add_service
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 10
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
- nova-setup
|
|
|
|
# Create a service
|
|
- name: Ensure nova placement service
|
|
keystone:
|
|
command: "ensure_service"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
service_name: "{{ nova_placement_service_name }}"
|
|
service_type: "{{ nova_placement_service_type }}"
|
|
description: "{{ nova_placement_service_description }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
register: add_service
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 2
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
|
|
# Create an admin user
|
|
- name: Ensure nova placement user
|
|
keystone:
|
|
command: "ensure_user"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
user_name: "{{ nova_placement_service_username }}"
|
|
tenant_name: "{{ nova_placement_service_project_name }}"
|
|
password: "{{ nova_placement_service_password }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
register: add_service
|
|
when: not nova_placement_service_in_ldap | bool
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 10
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
|
|
# Add a role to the user
|
|
- name: Ensure nova user to admin role
|
|
keystone:
|
|
command: "ensure_user_role"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
user_name: "{{ nova_placement_service_username }}"
|
|
tenant_name: "{{ nova_placement_service_project_name }}"
|
|
role_name: "{{ nova_placement_service_role_name }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
register: add_service
|
|
when: not nova_placement_service_in_ldap | bool
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 10
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|
|
|
|
# Create an endpoint
|
|
- name: Ensure nova endpoint
|
|
keystone:
|
|
command: "ensure_endpoint"
|
|
endpoint: "{{ keystone_service_adminurl }}"
|
|
login_user: "{{ keystone_admin_user_name }}"
|
|
login_password: "{{ keystone_auth_admin_password }}"
|
|
login_project_name: "{{ keystone_admin_tenant_name }}"
|
|
region_name: "{{ nova_placement_service_region }}"
|
|
service_name: "{{ nova_placement_service_name }}"
|
|
service_type: "{{ nova_placement_service_type }}"
|
|
insecure: "{{ keystone_service_adminuri_insecure }}"
|
|
endpoint_list:
|
|
- url: "{{ nova_placement_service_publicurl }}"
|
|
interface: "public"
|
|
- url: "{{ nova_placement_service_internalurl }}"
|
|
interface: "internal"
|
|
- url: "{{ nova_placement_service_adminurl }}"
|
|
interface: "admin"
|
|
register: add_service
|
|
until: add_service|success
|
|
retries: 5
|
|
delay: 10
|
|
tags:
|
|
- nova-api-setup
|
|
- nova-service-add
|