b878370a0b
Currently the playbooks do not allow Ceph to be configured as a backend for Cinder, Glance or Nova. This commit adds a new role called ceph_client to do the required configuration of the hosts and updates the service roles to include the required configuration file changes. This commit requires that a Ceph cluster already exists and does not make any changes to that cluster. ceph_client role, run on the OpenStack service hosts - configures the Ceph apt repo - installs any required Ceph dependencies - copies the ceph.conf file and appropriate keyring file to /etc/ceph - creates the necessary libvirt secrets os_glance role glance-api.conf will set the following variables for Ceph: - [DEFAULT]/show_image_direct_url - [glance_store]/stores - [glance_store]/rbd_store_pool - [glance_store]/rbd_store_user - [glance_store]/rbd_store_ceph_conf - [glance_store]/rbd_store_chunk_size os_nova role nova.conf will set the following variables for Ceph: - [libvirt]/rbd_user - [libvirt]/rbd_secret_uuid - [libvirt]/images_type - [libvirt]/images_rbd_pool - [libvirt]/images_rbd_ceph_conf - [libvirt]/inject_password - [libvirt]/inject_key - [libvirt]/inject_partition - [libvirt]/live_migration_flag os_cinder is not updated because ceph is defined as a backend and that is generated from a dictionary of the config, for an example backend config, see etc/openstack_deploy/openstack_user_config.yml.example pw-token-gen.py is updated so that variables ending in uuid are assigned a UUID. DocImpact Implements: blueprint ceph-block-devices Closes-Bug: #1455238 Change-Id: Ie484ce0bbb93adc53c30be32f291aa5058b20028
88 lines
2.2 KiB
YAML
88 lines
2.2 KiB
YAML
---
|
|
# Copyright 2014, Rackspace US, Inc.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
|
|
|
|
## Rabbitmq Options
|
|
rabbitmq_password:
|
|
rabbitmq_cookie_token:
|
|
|
|
## Tokens
|
|
memcached_encryption_key:
|
|
|
|
## Container default user
|
|
container_openstack_password:
|
|
|
|
## Galera Options
|
|
galera_root_password:
|
|
|
|
## Keystone Options
|
|
keystone_container_mysql_password:
|
|
keystone_auth_admin_token:
|
|
keystone_auth_admin_password:
|
|
keystone_service_password:
|
|
|
|
## Ceilometer Options:
|
|
ceilometer_container_db_password:
|
|
ceilometer_service_password:
|
|
ceilometer_telemetry_secret:
|
|
|
|
## Cinder Options
|
|
cinder_container_mysql_password:
|
|
cinder_service_password:
|
|
cinder_v2_service_password:
|
|
cinder_profiler_hmac_key:
|
|
## Ceph/rbd: a UUID to be used by libvirt to refer to the client.cinder user
|
|
#cinder_ceph_client_uuid:
|
|
|
|
## Glance Options
|
|
glance_container_mysql_password:
|
|
glance_service_password:
|
|
glance_profiler_hmac_key:
|
|
|
|
## Heat Options
|
|
heat_stack_domain_admin_password:
|
|
heat_container_mysql_password:
|
|
### THE HEAT AUTH KEY NEEDS TO BE 32 CHARACTERS LONG ##
|
|
heat_auth_encryption_key:
|
|
### THE HEAT AUTH KEY NEEDS TO BE 32 CHARACTERS LONG ##
|
|
heat_service_password:
|
|
heat_cfn_service_password:
|
|
heat_profiler_hmac_key:
|
|
|
|
## Horizon Options
|
|
horizon_container_mysql_password:
|
|
horizon_secret_key:
|
|
|
|
## Neutron Options
|
|
neutron_container_mysql_password:
|
|
neutron_service_password:
|
|
|
|
## Nova Options
|
|
nova_container_mysql_password:
|
|
nova_metadata_proxy_secret:
|
|
nova_ec2_service_password:
|
|
nova_service_password:
|
|
nova_v3_service_password:
|
|
nova_v21_service_password:
|
|
nova_s3_service_password:
|
|
|
|
## Swift Options:
|
|
swift_service_password:
|
|
swift_container_mysql_password:
|
|
swift_dispersion_password:
|
|
### Once the swift cluster has been setup DO NOT change these hash values!
|
|
swift_hash_path_suffix:
|
|
swift_hash_path_prefix:
|