Files

Jesse Pretorius 4341b79b3a Enable all services to use Keystone 'insecurely'

This patch introduces an insecure flag for the Keystone internal
 and admin endpoints:

* keystone_service_adminuri_insecure
* keystone_service_internaluri_insecure

Both values default to false. If you have setup SSL endpoints
for Keystone using an untrusted certificate then you should
set the appropriate flag to true in your user_variables.

This patch is used to enable testing and development with
Keystone SSL endpoints without having to make use of SSL
certificates signed by a trusted, public CA.

The patch introduces a new optional argument (insecure) to the
keystone, glance and neutron Ansible libraries. This is a
boolean value which, when true, enables these libraries to
access Keystone endpoints 'insecurely'. When these libraries
are used in plays, the appropriate value is set automatically
as per the above conditions.

Implements: blueprint keystone-federation
Change-Id: Ia07e7e201f901042dd06a86efe5c6f6725e9ce13

2015-07-10 14:06:25 +01:00

defaults

Enable all services to use Keystone 'insecurely'

2015-07-10 14:06:25 +01:00

README.rst

OpenStack openrc file

tags: openstack, openrc, cloud, ansible
category: *nix

Role for the creation of an openrc file for the intended purpose to set credentials up for use within OpenStack.

- name: Install memcached
  hosts: memcached
  user: root
  roles:
    - { role: "memcached_server", tags: [ "memcached-server" ] }
  vars:
    openrc_cinder_endpoint_type: internalURL
    openrc_nova_endpoint_type: internalURL
    openrc_os_endpoint_type: internalURL
    openrc_os_username: admin
    openrc_os_tenant_name: admin
    openrc_os_auth_url: "http://10.0.0.1:5000"
    openrc_os_password: "secrete"
    openrc_file_dest: /root/openrc