[install-guide] Ubuntu release package updates

Update the following items for the Ubuntu release packages
(2015.1):

1) Use RabbitMQ packages from the cloud archive repository.

2) Change default role from '_member_' to 'user' to avoid
   potential interference with an internal role.

3) Remove explicit configuration of 'log_dir' option in
   keystone.

4) Remove step to disable default host in Apache.

5) Update CirrOS image to 0.3.4.

Some of these changes apply to all distributions.

Change-Id: If1cdf839ebdc7655b89ab14df694a9c25f0c35cf
Implements: blueprint installguide-kilo

doc/install-guide/section_basics-queue.xml

@@ -20,20 +20,6 @@
     with it.</para>
   <procedure>
     <title>To install the message queue service</title>
-    <step os="ubuntu">
-      <para>Add the upstream repository key:</para>
-      <screen><prompt>#</prompt> <userinput>curl -O https://www.rabbitmq.com/rabbitmq-signing-key-public.asc</userinput>
-<prompt>#</prompt> <userinput>apt-key add rabbitmq-signing-key-public.asc</userinput></screen>
-    </step>
-    <step os="ubuntu">
-      <para>Add the upstream repository:</para>
-      <screen><prompt>#</prompt> <userinput>echo "deb http://www.rabbitmq.com/debian/ testing main" \
-  > /etc/apt/sources.list.d/rabbitmq.list</userinput></screen>
-    </step>
-    <step os="ubuntu">
-      <para>Update the package database:</para>
-      <screen><prompt>#</prompt> <userinput>apt-get update</userinput></screen>
-    </step>
     <step os="ubuntu;debian">
       <para>Install the package:</para>
       <screen><prompt>#</prompt> <userinput>apt-get install rabbitmq-server</userinput></screen>

doc/install-guide/section_ceilometer-swift.xml

@@ -53,7 +53,7 @@
             add the <literal>ResellerAdmin</literal> role:</para>
           <programlisting language="ini">[filter:keystoneauth]
 ...
-operator_roles = admin,_member_,ResellerAdmin</programlisting>
+operator_roles = admin,user,ResellerAdmin</programlisting>
         </step>
         <step>
           <para>In the <literal>[pipeline:main]</literal> section, add

doc/install-guide/section_ceilometer-verify.xml

@@ -31,7 +31,7 @@
     <step>
       <para>Download an image from the Image service:</para>
       <screen>
-<prompt>$</prompt> <userinput>IMAGE_ID=$(glance image-list | grep 'cirros-0.3.3-x86_64' | awk '{ print $2 }')</userinput>
+<prompt>$</prompt> <userinput>IMAGE_ID=$(glance image-list | grep 'cirros-0.3.4-x86_64' | awk '{ print $2 }')</userinput>
 <prompt>$</prompt> <userinput>glance image-download $IMAGE_ID > /tmp/cirros.img</userinput></screen>
     </step>
     <step>

doc/install-guide/section_dashboard-install.xml

@@ -97,6 +97,11 @@
                storage.</para>
           </note>
         </step>
+        <step>
+          <para>Configure <literal>user</literal> as the default role for
+            users that you create via the dashboard:</para>
+          <programlisting language="python">OPENSTACK_KEYSTONE_DEFAULT_ROLE = "user"</programlisting>
+         </step>
         <step>
           <para>Optionally, configure the time zone:</para>
           <programlisting language="python">TIME_ZONE = "<replaceable>TIME_ZONE</replaceable>"</programlisting>

doc/install-guide/section_glance-verify.xml

@@ -33,14 +33,14 @@
     </step>
     <step>
       <para>Download the source image into it:</para>
-      <screen><prompt>$</prompt> <userinput>wget -P /tmp/images http://download.cirros-cloud.net/0.3.3/cirros-0.3.3-x86_64-disk.img</userinput></screen>
+      <screen><prompt>$</prompt> <userinput>wget -P /tmp/images http://download.cirros-cloud.net/0.3.4/cirros-0.3.4-x86_64-disk.img</userinput></screen>
     </step>
     <step>
       <para>Upload the image to the Image service using the
         <glossterm baseform="QEMU Copy On Write 2 (QCOW2)">QCOW2</glossterm>
         disk format, <glossterm>bare</glossterm> container format, and
         public visibility so all projects can access it:</para>
-      <screen><prompt>$</prompt> <userinput>glance image-create --name "cirros-0.3.3-x86_64" --file /tmp/images/cirros-0.3.3-x86_64-disk.img \
+      <screen><prompt>$</prompt> <userinput>glance image-create --name "cirros-0.3.4-x86_64" --file /tmp/images/cirros-0.3.4-x86_64-disk.img \
   --disk-format qcow2 --container-format bare --visibility public --progress</userinput>
 <computeroutput>[=============================>] 100%
 +------------------+--------------------------------------+
@@ -53,7 +53,7 @@
 | id               | 38047887-61a7-41ea-9b49-27987d5e8bb9 |
 | min_disk         | 0                                    |
 | min_ram          | 0                                    |
-| name             | cirros-0.3.3-x86_64                  |
+| name             | cirros-0.3.4-x86_64                  |
 | owner            | ae7a98326b9c455588edd2656d723b9d     |
 | protected        | False                                |
 | size             | 13200896                             |
@@ -86,7 +86,7 @@
 <computeroutput>+--------------------------------------+---------------------+
 | ID                                   | Name                |
 +--------------------------------------+---------------------+
-| 38047887-61a7-41ea-9b49-27987d5e8bb9 | cirros-0.3.3-x86_64 |
+| 38047887-61a7-41ea-9b49-27987d5e8bb9 | cirros-0.3.4-x86_64 |
 +--------------------------------------+---------------------+</computeroutput></screen>
     </step>
     <step>

doc/install-guide/section_keystone-install.xml

@@ -123,13 +123,6 @@ driver = keystone.token.persistence.backends.memcache.Token</programlisting>
           <programlisting language="ini">[revoke]
 ...
 driver = keystone.contrib.revoke.backends.sql.Revoke</programlisting>
-        </step>
-        <step>
-          <para>In the <literal>[DEFAULT]</literal> section, configure the
-            log directory:</para>
-          <programlisting language="ini">[DEFAULT]
-...
-log_dir = /var/log/keystone</programlisting>
         </step>
         <step>
           <para>(Optional) To assist with troubleshooting,
@@ -202,7 +195,7 @@ admin_token = <replaceable>ADMIN_TOKEN</replaceable></programlisting>
       <screen><prompt>#</prompt> <userinput>openstack project create --description "Admin Tenant" admin</userinput>
 <prompt>#</prompt> <userinput>openstack user create --password <replaceable>ADMIN_PASS</replaceable> --email root@localhost admin</userinput>
 <prompt>#</prompt> <userinput>openstack role create admin</userinput>
-<prompt>#</prompt> <userinput>openstack role add --project demo --user demo _member_</userinput></screen>
+<prompt>#</prompt> <userinput>openstack role add --project demo --user demo user</userinput></screen>
       <informalfigure>
         <mediaobject>
           <imageobject>
@@ -396,10 +389,13 @@ Listen 35357
         in it:</para>
       <screen os="ubuntu;fedora;centos;rhel"><prompt>#</prompt> <userinput>chown -R keystone:keystone /var/www/cgi-bin/keystone</userinput>
 <prompt>#</prompt> <userinput>chmod 755 /var/www/cgi-bin/keystone/*</userinput></screen>
-      <screen os="rhel;fedora;centos"><prompt>#</prompt> <userinput>restorecon /var/www/cgi-bin</userinput></screen>
       <screen os="opensuse;sles"><prompt>#</prompt> <userinput>chown -R keystone:keystone /srv/www/cgi-bin/keystone</userinput>
 <prompt>#</prompt> <userinput>chmod 755 /srv/www/cgi-bin/keystone/*</userinput></screen>
     </step>
+    <step os="rhel;centos;fedora">
+      <para>Restore the default SELinux security context:</para>
+      <screen><prompt>#</prompt> <userinput>restorecon /var/www/cgi-bin</userinput></screen>
+    </step>
     <step os="opensuse;sles">
       <para>
         Change the ownership of

doc/install-guide/section_keystone-users.xml

@@ -144,24 +144,24 @@ Repeat User Password:
 +------------+----------------------------------+</computeroutput></screen>
         </step>
         <step>
-          <para>Create the <literal>_member_</literal> role:</para>
+          <para>Create the <literal>user</literal> role:</para>
-          <screen><prompt>$</prompt> <userinput>openstack role create _member_</userinput>
+          <screen><prompt>$</prompt> <userinput>openstack role create user</userinput>
 <computeroutput>+-------+----------------------------------+
 | Field | Value                            |
 +-------+----------------------------------+
 | id    | 9fe2ff9ee4384b1894a90878d3e92bab |
-| name  | _member_                         |
+| name  | user                             |
 +-------+----------------------------------+</computeroutput></screen>
         </step>
         <step>
-          <para>Add the <literal>_member_</literal> role to the
+          <para>Add the <literal>user</literal> role to the
             <literal>demo</literal> project and user:</para>
-          <screen><prompt>$</prompt> <userinput>openstack role add --project demo --user demo _member_</userinput>
+          <screen><prompt>$</prompt> <userinput>openstack role add --project demo --user demo user</userinput>
 <computeroutput>+-------+----------------------------------+
 | Field | Value                            |
 +-------+----------------------------------+
 | id    | 9fe2ff9ee4384b1894a90878d3e92bab |
-| name  | _member_                         |
+| name  | user                             |
 +-------+----------------------------------+</computeroutput></screen>
         </step>
       </substeps>

doc/install-guide/section_keystone-verify.xml

@@ -129,12 +129,12 @@
   --os-project-name admin --os-username admin --os-auth-type password \
   role list</userinput>
 <computeroutput>Password:
-+----------------------------------+----------+
++----------------------------------+-------+
 | ID                               | Name  |
-+----------------------------------+----------+
++----------------------------------+-------+
-| 9fe2ff9ee4384b1894a90878d3e92bab | _member_ |
+| 9fe2ff9ee4384b1894a90878d3e92bab | user  |
 | cd2cb9a39e874ea69e5d4b896eb16128 | admin |
-+----------------------------------+----------+</computeroutput></screen>
++----------------------------------+-------+</computeroutput></screen>
       <note>
         <para>This command uses the password for the <literal>admin</literal>
           user.</para>

doc/install-guide/section_launch-instance-neutron.xml

@@ -59,10 +59,10 @@
 <computeroutput>+--------------------------------------+---------------------+--------+--------+
 | ID                                   | Name                | Status | Server |
 +--------------------------------------+---------------------+--------+--------+
-| acafc7c0-40aa-4026-9673-b879898e1fc2 | cirros-0.3.3-x86_64 | ACTIVE |        |
+| acafc7c0-40aa-4026-9673-b879898e1fc2 | cirros-0.3.4-x86_64 | ACTIVE |        |
 +--------------------------------------+---------------------+--------+--------+</computeroutput></screen>
       <para>Your first instance uses the
-        <literal>cirros-0.3.3-x86_64</literal> image.</para>
+        <literal>cirros-0.3.4-x86_64</literal> image.</para>
     </step>
     <step>
       <para>List available networks:</para>
@@ -96,7 +96,7 @@
       <para>Launch the instance:</para>
       <para>Replace <replaceable>DEMO_NET_ID</replaceable> with the ID of the
         <literal>demo-net</literal> tenant network.</para>
-      <screen><prompt>$</prompt> <userinput>nova boot --flavor m1.tiny --image cirros-0.3.3-x86_64 --nic net-id=<replaceable>DEMO_NET_ID</replaceable> \
+      <screen><prompt>$</prompt> <userinput>nova boot --flavor m1.tiny --image cirros-0.3.4-x86_64 --nic net-id=<replaceable>DEMO_NET_ID</replaceable> \
   --security-group default --key-name demo-key <replaceable>demo-instance1</replaceable></userinput>
 <computeroutput>+--------------------------------------+------------------------------------------------------------+
 | Property                             | Value                                                      |
@@ -116,7 +116,7 @@
 | flavor                               | m1.tiny (1)                                                |
 | hostId                               |                                                            |
 | id                                   | 05682b91-81a1-464c-8f40-8b3da7ee92c5                       |
-| image                                | cirros-0.3.3-x86_64 (acafc7c0-40aa-4026-9673-b879898e1fc2) |
+| image                                | cirros-0.3.4-x86_64 (acafc7c0-40aa-4026-9673-b879898e1fc2) |
 | key_name                             | demo-key                                                   |
 | metadata                             | {}                                                         |
 | name                                 | demo-instance1                                             |

doc/install-guide/section_launch-instance-nova.xml

@@ -67,10 +67,10 @@
 <computeroutput>+--------------------------------------+---------------------+--------+--------+
 | ID                                   | Name                | Status | Server |
 +--------------------------------------+---------------------+--------+--------+
-| acafc7c0-40aa-4026-9673-b879898e1fc2 | cirros-0.3.3-x86_64 | ACTIVE |        |
+| acafc7c0-40aa-4026-9673-b879898e1fc2 | cirros-0.3.4-x86_64 | ACTIVE |        |
 +--------------------------------------+---------------------+--------+--------+</computeroutput></screen>
       <para>Your first instance uses the
-        <literal>cirros-0.3.3-x86_64</literal> image.</para>
+        <literal>cirros-0.3.4-x86_64</literal> image.</para>
     </step>
     <step>
       <para>List available networks:</para>
@@ -109,7 +109,7 @@
       <para>Launch the instance:</para>
       <para>Replace <replaceable>DEMO_NET_ID</replaceable> with the ID of the
         <literal>demo-net</literal> tenant network.</para>
-      <screen><prompt>$</prompt> <userinput>nova boot --flavor m1.tiny --image cirros-0.3.3-x86_64 --nic net-id=<replaceable>DEMO_NET_ID</replaceable> \
+      <screen><prompt>$</prompt> <userinput>nova boot --flavor m1.tiny --image cirros-0.3.4-x86_64 --nic net-id=<replaceable>DEMO_NET_ID</replaceable> \
   --security-group default --key-name demo-key <replaceable>demo-instance1</replaceable></userinput>
 <computeroutput>+--------------------------------------+------------------------------------------------------------+
 | Property                             | Value                                                      |
@@ -129,7 +129,7 @@
 | flavor                               | m1.tiny (1)                                                |
 | hostId                               |                                                            |
 | id                                   | 45ea195c-c469-43eb-83db-1a663bbad2fc                       |
-| image                                | cirros-0.3.3-x86_64 (acafc7c0-40aa-4026-9673-b879898e1fc2) |
+| image                                | cirros-0.3.4-x86_64 (acafc7c0-40aa-4026-9673-b879898e1fc2) |
 | key_name                             | demo-key                                                   |
 | metadata                             | {}                                                         |
 | name                                 | demo-instance1                                             |

doc/install-guide/section_nova-verify.xml

@@ -129,7 +129,7 @@
 <computeroutput>+--------------------------------------+---------------------+--------+--------+
 | ID                                   | Name                | Status | Server |
 +--------------------------------------+---------------------+--------+--------+
-| 38047887-61a7-41ea-9b49-27987d5e8bb9 | cirros-0.3.3-x86_64 | ACTIVE |        |
+| 38047887-61a7-41ea-9b49-27987d5e8bb9 | cirros-0.3.4-x86_64 | ACTIVE |        |
 +--------------------------------------+---------------------+--------+--------+</computeroutput></screen>
     </step>
   </procedure>

doc/install-guide/section_swift-controller-node.xml

@@ -166,7 +166,7 @@ account_autocreate = true</programlisting>
           <programlisting language="ini">[filter:keystoneauth]
 use = egg:swift#keystoneauth
 ...
-operator_roles = admin,_member_</programlisting>
+operator_roles = admin,user</programlisting>
         </step>
         <step>
           <para>In the <literal>[filter:authtoken]</literal> section,