This patch includes the updates to the configuration files for Heat
for the Liberty release.
DocImpact
UpgradeImpact
Implements: blueprint liberty-release
Change-Id: I07baa2b6cc5becdfef995f70ff3d1e8dcde1a21e
This change makes the cinder backup enable flag in the Horizon
configuration a variable.
It also enables this flag automatically through group_vars when
cinder_service_backup_program_enabled = True.
Change-Id: Ib64532bbd7a3774f16766de0d3d221579aecc9ff
Closes-Bug: #1504279
This commit conditionally allows the os_swift role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
In this PR, like all of the other venv related PRs, the
`is_metal` flag was removed from the role however unlike
some of the other PRs this removal required moving some
of the `is_metal` logic out of the role and into the
play. This was done for consistency as well as making
the role more standalone. The only thing that the role
should care about, in terms of installation, is whether
or not to install in a venv.
Change-Id: I6f5b883a853611659567bd12e8bcf572189854b7
Implements: blueprint enable-venv-support-within-the-roles
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
neutron_post_install.yml uses the deprecated keystone client to fetch the
service tenant ID, and save it in a fact for presumably future use. But
upon further inspection, the fact is not even used anywhere anymore.
Change-Id: I32ec6df7161c28ec7007e9ad331a67e48884f80f
Closes-Bug: #1506574
This commit conditionally allows the os_ceilometer role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
Change-Id: Ic12d0cb2151124fc5150170205d5d226dab53e5b
Implements: blueprint enable-venv-support-within-the-roles
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This patch includes the following updates based on the updated
source in Nova's Liberty release:
- api-paste.ini
- policy.json
- rootwrap.d/compute.filters
- rootwrap.d/network.filters
The Nova S3 and v3 API's have been removed in Liberty, so all
related variables and configuration file entries have been
removed.
The Nova EC2 API is deprecated in Liberty. All related variables in
OpenStack-Ansible and configuration files have been removed as all
deployers are recommended to make use of the actively developed
replacement: https://github.com/stackforge/ec2-api
The Nova v2 and v1.1 API's are enabled using the upstream default
compatibility layer. Neither of these versions will be registered in
the service catalog.
The default API version is set to v2.1. For new environments, no
other API versions are registered in the service catalog.
The following variables have been removed:
- S3 API
- nova_s3_service_name
- nova_s3_service_type
- nova_s3_service_proto
- nova_s3_service_publicuri_proto
- nova_s3_service_adminuri_proto
- nova_s3_service_internaluri_proto
- nova_s3_service_port
- nova_s3_service_description
- nova_s3_service_publicuri
- nova_s3_service_publicurl
- nova_s3_service_adminuri
- nova_s3_service_adminurl
- nova_s3_service_internaluri
- nova_s3_service_internalurl
- nova_s3_program_name
- nova_s3_deprecated_but_enabled
- EC2 API
- nova_ec2_service_name
- nova_ec2_service_type
- nova_ec2_service_proto
- nova_ec2_service_publicuri_proto
- nova_ec2_service_adminuri_proto
- nova_ec2_service_internaluri_proto
- nova_ec2_service_port
- nova_ec2_service_description
- nova_ec2_service_publicuri
- nova_ec2_service_publicurl
- nova_ec2_service_adminuri
- nova_ec2_service_adminurl
- nova_ec2_service_internaluri
- nova_ec2_service_internalurl
- nova_ec2_program_name
- nova_ec2_deprecated_but_enabled
- v3 API
- nova_v3_service_name
- nova_v3_service_type
- nova_v3_service_proto
- nova_v3_service_publicuri_proto
- nova_v3_service_adminuri_proto
- nova_v3_service_internaluri_proto
- nova_v3_service_port
- nova_v3_service_description
- nova_v3_service_publicuri
- nova_v3_service_publicurl
- nova_v3_service_adminuri
- nova_v3_service_adminurl
- nova_v3_service_internaluri
- nova_v3_service_internalurl
- nova_v3_deprecated_but_enabled
- v2.1 API
- nova_v21_service_name -> nova_service_name
- nova_v21_service_type -> nova_service_type
- nova_v21_service_proto -> nova_service_proto
- nova_v21_service_publicuri_proto -> nova_service_publicuri_proto
- nova_v21_service_adminuri_proto -> nova_service_adminuri_proto
- nova_v21_service_internaluri_proto -> nova_service_internaluri_proto
- nova_v21_service_port -> nova_service_port
- nova_v21_service_description -> nova_service_description
- nova_v21_service_publicuri -> nova_service_publicuri
- nova_v21_service_publicurl -> nova_service_publicurl
- nova_v21_service_adminuri -> nova_service_adminuri
- nova_v21_service_adminurl -> nova_service_adminurl
- nova_v21_service_internaluri -> nova_service_internaluri
- nova_v21_service_internalurl -> nova_service_internalurl
- nova_v21_enabled
DocImpact
UpgradeImpact
Implements: blueprint liberty-release
Change-Id: Ie5a42059c10e7fd0bfc4dba8d87dea3f32db968e
The change removes the documented "HARD" requirement to have
a physical load balancer which is absolutly not true when deploying
the project.
Change-Id: I9832a1f8fd67c148800a0062bbf8f264920cba5c
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This patch implements the ability to configure Horizon for use with multiple
Keystone v3 Domains.
Change-Id: I0872e0aa5c40c9e8b27597ae684468f7fb47a285
Closes-Bug: #1489406
The OS_IDENTITY_API_VERSION need to be set to 2.0 instead of 2 when
using the Keystone Identity API version 2. Other settings are currently
not affected
Change-Id: I574bf1c1e908833b139a14b1f402df8db837344b
Closes-Bug: #1506231
This change sets the cinder storage address based on the
facts the play is able to set about the environment.
This will correct configure the iscsi address within cinder
to use the correct network which is not always the default
container address.
Change-Id: I647161c0154cad11bf2f31b6b7cd8476e0662f12
Closes-Bug: #1504208
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This commit conditionally allows the os_cinder role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
Implements: blueprint enable-venv-support-within-the-roles
Change-Id: Icd764b78ee887f4fe2ecd4bb67b97ae4651e6fa3
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This commit conditionally allows the os_heat role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
Change-Id: I55c0ad20d67c9d97df9d11d01e4c63fa0a904188
Implements: blueprint enable-venv-support-within-the-roles
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This commit conditionally allows the os_keystone role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
Change-Id: Ie9e51926c96125a543e05eaa1912684fb01fecda
Implements: blueprint enable-venv-support-within-the-roles
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This patch add the packages necessary to allow for
the nova config_drive_format vfat
Change-Id: I304b25f68914d032e6aee0e62338c72165c6e62f
Closes-Bug: #1489225
Remove the cap as the issue has been removed upstream. More details
are covered in the below-mentioned bug. This covers multiple
projects and patches, so I don't think it's appropriate to list
all the related upstream patches seeing as they're covered in the
bug.
Change-Id: I6931eb0459dd116027a9d0ae4c2b76d7d98c2d6b
Closes-Bug: #1505153
This patch removes the oslo.versionedobjects 0.11.0 block as the
issue requiring the block was resolved upstream in:
https://review.openstack.org/234166
Change-Id: I181cb5ccf7c2ae24cff1345eed2f6d4842c081b4
Closes-Bug: #1505677
This commit conditionally allows the os_glance role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
Change-Id: If58b1f2ebe15672602effe5c06c85524385562ba
Implements: blueprint enable-venv-support-within-the-roles
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
As part of the cross-project effort [1] to prepare OpenStack for
Python3 as the primary Python version used, the decision has been
made to switch from using MySQL-python to PyMySQL [2].
This patch switches all OpenStack Services to use the PyMySQL
library.
[1] https://etherpad.openstack.org/p/liberty-cross-project-python3
[2] https://review.openstack.org/184388
UpgradeImpact
Implements: blueprint liberty-release
Change-Id: I7532b5dd72cd2f682f1e4ffdf290b741c2185cb3
This commit conditionally allows the os_horizon role to
install build and deploy within a venv. This is the new
default behavior of the role however the functionality
can be disabled.
Change-Id: I136eed8bd40f4ae5bc77f3fa925e4cbc6f842271
Implements: blueprint enable-venv-support-within-the-roles
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This change is needed because some python files being checked
by the flake8 check will have jinja2 expressions within them
which will cause flake syntax failures.
Change-Id: Id9291c2c1c9ab2632f5fd9b94e13fa4eb62eb05e
Signed-off-by: Kevin Carter <kevin.carter@rackspace.com>
This patch includes the following updates based on the updated source in
Cinder's Liberty release:
- api-paste.ini (no changes)
- policy.json
- rootwrap.d/volume.filters
DocImpact
UpgradeImpact
Implements: blueprint liberty-release
Change-Id: I7f03f3c4c2223d445bb2157dd09ae37ebc961121
This patch includes the following updates based on the updated source in
Glance's Liberty release:
- glance-api-paste.ini
- glance-api.conf
- glance-registry-paste.ini
- glance-registry.conf
- glance-cache.conf
- glance-manage.conf
- glance-scrubber.conf
The following defaults have their values changed based on new defaults for the
Liberty release. Note that any user_variables.yml values that have been set to
customise these will need to be reviewed and adjusted accordingly for liberty.
- glance_digest_algorithm
Note also that the glance_swift_store_auth_version has been set to use '3' as
the default, meaning that it will use Keystone's v3 API as the default.
New configurable options:
- glance_swift_store_auth_version
This is the Keystone API auth version to use. The previous default
was 2, but this patch changes it to 3.
- glance_swift_store_user_domain
This is the Domain ID for the user used to authenticate to Swift.
- glance_swift_store_project_domain
This is the Domain ID for the project used to authenticate to Swift.
Note that the policy.json file included is not the same as the upstream
default. Changes have been included which improve the security of image
publication and image group membership.
DocImpact
UpgradeImpact
Closes-Bug: #1479131
Implements: blueprint liberty-release
Co-Authored-By: Ian Cordasco <graffatcolmingov@gmail.com>
Change-Id: I2f58c0dbdb3ee55c0a4792df6e7b5b15aa8f0b01
During execution of our bootstrap scripts, we need to install some
packages before we have constructed any of the infrastructure. In
this case when installing behind a proxy we should respect that
proxy.
When $HTTPS_PROXY is not set but $HTTP_PROXY is, that will be used
instead. The use of trusted-host or other pip configurations to
enable this usage are out of scope and can be resolved separately.
Change-Id: I3df5ef6a7d33a3357e8c00f138b019c06c6bc3d6
Closes-Bug: 1504405
