Commit Graph

595 Commits (master)

Author SHA1 Message Date
Zuul 21312a3279 Merge "RabbitMQ: Add support for quorum queue options" 2023-09-15 15:59:13 +00:00
Takashi Kajinami 122686e238 RabbitMQ: Add support for quorum queue options
Change-Id: I55b5eb5d6139f464f633d5c13827fea91378e3b7
2023-09-14 22:48:48 +09:00
Takashi Kajinami db0bd5156d Do not restart services after policy file changes
The oslo.policy library has implementations to detect change in policy
rules and reload the new rules without service restart.

Change-Id: Ibe9d189f1c12a91a7327f819726695aa52417ac7
2023-09-11 12:25:52 +09:00
Takashi Kajinami 02d4ae58d9 Exclude release note files
The directory contains the source files to generate the release note
document, so is not required.

Change-Id: I7e1ed7c68d8eb6d652a1fee3200281b3fd626790
2023-08-11 17:47:35 +09:00
Takashi Kajinami 73eaefe9bd Add .pdkignore to exclude some files from tar ball
We've seen release job failures caused by too large tarball, which
contains irrelevant files like git history.

Let's exclude these files to reduce size of the archive.

The file is copied from the puppetlabs repositories with some files
specific to OpenStack projects added.

Change-Id: If07c4836d38c11776c5fa40491a90c841f49c837
2023-08-11 00:41:07 +09:00
Takashi Kajinami d459be69cd Ensure purge_config takes a boolean value
The purge_config parameters only accept boolean values. This enforces
that using the typed parameters.

Change-Id: I669f1a2ff2462d60afe2fbd0c33e607d20cb14fc
2023-07-17 13:00:23 +09:00
Zuul 6e2515b4fd Merge "Add per module policy service refresh" 2023-06-26 15:24:24 +00:00
Tobias Urdin c38323518b Add per module policy service refresh
Updating the policies for this project should only
refresh the services that reads it.

Change-Id: I42153ec891feb569a9614166104be5382d893f96
2023-06-26 00:03:26 +02:00
Takashi Kajinami 7775352fcd authtoken: Make password required
The password parameter is not really optional. This makes it
a required parameter to give more sensible validation error.

Change-Id: I482621899616f6e3dc902900b0933ffa58ca519a
2023-06-23 10:23:43 +09:00
Zuul 2079fb1ff5 Merge "replace validate_legacy with proper data types" 2023-06-16 22:16:49 +00:00
Takashi Kajinami d3724a40b2 replace validate_legacy with proper data types
the validate_legacy function is marked for deprecation in
v9.0.0 from puppetlabs-stdlib.

Change-Id: I0707b0a8b200480dbfb8f52353596127cf4dc8b5
2023-06-16 02:07:13 +09:00
Takashi Kajinami e1f09fece0 Remove support for Puppet 6
... because Puppet 6 reached its EOL in February 2023.

Change-Id: Id9664008696c94cd0029c01792f7af9def87e11d
2023-05-22 03:20:34 +00:00
Takashi Kajinami 9fe8664d78 Bump upper version of puppetlabs-inifile
... because now we use v6.0.0 in CI jobs.

Change-Id: I7aafde233da748d71ca53b141f3c920d5ee4295d
2023-04-14 11:44:11 +09:00
OpenStack Release Bot 362da39e95 Update master for stable/2023.1
Add file to the reno documentation build to show release notes for

Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on

Sem-Ver: feature
Change-Id: Iba74b22fcaec8635bf77bf9bb2ea20c6e3a16341
2023-04-05 15:28:23 +00:00
Takashi Kajinami 58f2f8fbd5 Prepare 2023.1 release
Change-Id: Ib5221b2c2550961ff2abed41da5e8d9a23aecb8a
2023-03-23 21:47:57 +09:00
Takashi Kajinami 578e24a0b9 Add strict validation about boolean parameters
This ensures the parameters used by if-else logic accept only boolean
values because non-boolean can result in unexpected behavior.

Change-Id: I963d73e46f82a780486fa282b424151485e43d1e
2023-03-03 04:36:46 +00:00
Takashi Kajinami 729f5d286c Replace legacy facts and use fact hash
... because the latest lint no longer allows usage of legacy facts and
top scope fact.

Change-Id: I6e76d095bb0f78ef4962f1150da94e4d4153a374
2023-03-01 16:51:25 +09:00
Takashi Kajinami 626681f04d CentOS: Install barbican-retry service
RDO now provides the package to launch the barbican-retry service[1].
This change ensures the package and the service are configured by
the corresponding class.


Change-Id: I134feadb75b397bc159a8fe9e3dbc87915339785
2023-02-26 15:14:03 +09:00
Zuul 0480d0a292 Merge "apache: Clean up deprecated public_* parameters" 2023-01-24 11:48:47 +00:00
Takashi Kajinami acd9bf3373 Expose policy_default_rule
The option has been managed by the underlying puppet-oslo module but
has not been configurable. This introduces the parameter to customize
the option.

Change-Id: I7eb5ab771da3b6e2c446f4d8e83394a544fd147d
2023-01-23 14:27:53 +09:00
Takashi Kajinami 5b17af21a7 apache: Clean up deprecated public_* parameters
These were deprecated during the previous cycle so can be removed now.

Change-Id: I4e2e29d98803015b50c0f11678645cd5166e7d3c
2023-01-23 10:16:58 +09:00
Takashi Kajinami fb2bca25fa Switch to Ubuntu Jammy (22.04)
... because Focal no longer supports the recent releases such as Zed.

Change-Id: I4b74a04fc0eccb0065608481d5e0e4f65d01d11c
2023-01-15 22:17:31 +09:00
Takashi Kajinami 9c6f3af402 api: Remove deprecated ssl parameters
These parameters were deprecated during the previous cycle[1] because
these are not actually used by barbican.

[1] 109ea49acb

Change-Id: I6471ed0fe696f2c6455150adc63c9c896037e404
2023-01-06 13:06:17 +09:00
Takashi Kajinami a79ac82ef2 Remove deprecated client_package_ensure
The parameter has had no effect for several cycles and was formally
deprecated during the previous cycle[1].

[1] 6c60f0d67e

Change-Id: Ib94130cf8215e3a832e4d44645ce90a2450627d2
2023-01-06 13:04:51 +09:00
OpenStack Release Bot 30b8c1e1ae Update master for stable/zed
Add file to the reno documentation build to show release notes for

Use pbr instruction to increment the minor version number
automatically so that master versions are higher than the versions on

Sem-Ver: feature
Change-Id: I31c91decbc3a7c84cc98fcbc6c47542ad2dc3bd9
2022-10-20 11:01:44 +00:00
Takashi Kajinami e2d05a3218 Prepare Zed RC1
Change-Id: I785103f7ad48c583dacde5686641249f21b82fce
2022-10-05 18:09:10 +09:00
Takashi Kajinami 334a0686c2 Enable memcached in acceptance tests
... because it is required as cache backend.

Change-Id: If92f66b6c3a7031f228ab969671afacd3db9ebea
2022-09-06 23:51:08 +09:00
Takashi Kajinami eb2b84ea8f Fix inconsistent parameter/resource names of wsgi::apache
The barbican::wsgi::apache class names a few parameters and resources
differently from the other modules. To make its interface and
implementation consistent with the other implementations, this renames
these inconsistent names. The old parameter names are kept but will be
removed in a future release.

Change-Id: I49ca51e4ea7a2404dfdbd0c88ce39339750da4f6
2022-08-26 15:46:37 +09:00
Takashi Kajinami 5b21717a19 Use standard parameter description format for wsgi::apache
Currently parameter description of the <module>::wsgi::apache classes
are formatted differently in individual modules, and this is making
the maintenance effort quite difficult.

This change updates the description format following the srandard one
we are globally using in our modules to reduce undesired differences
between modules.

Change-Id: Ifac421c3a74bf600e8b0e596a8449e5f25cda90b
2022-08-26 15:06:50 +09:00
Takashi Kajinami 38981908d8 Add Apache WSGI logging parameters for pipe/syslog
Add parameters for advanced logging configurations in Apache to
support piped logging and support for syslog (via mod_syslog
available in Apache >= 2.5.0)

Co-Authored-By: Andy Botting <>
Change-Id: I77f1d65b1f6085fdb1205de9654a8d6d2da496f5
2022-08-26 15:00:26 +09:00
Takashi Kajinami 5d4084a951 Remove the temporal logic to fix barbican_api pipeline
The old wrong value should be fixed when the deployment is updated to
stable/yoga, and the logic is no longer used in stable/zed and later.

Related-Bug: #1946378
Change-Id: I699847c127e5890857446585ededc9d860b0dc78
2022-08-20 12:10:13 +09:00
Takashi Kajinami 577a44a522 Adapt to new type validation in puppetlabs-apache
The puppetlabs-apache module is enforcing more strict data type

This change updates the default values to adapt to that change.

[1] f41251e336

Closes-Bug: #1983300
Change-Id: I9573f53e24dcf0666e4649189ccd8fcab0dbcc26
2022-08-02 16:56:24 +09:00
Zuul 50d44acc7c Merge "Clean up baribcan::api::retry_scheduler_* parameters" 2022-08-01 09:11:37 +00:00
Zuul b50eb0a28a Merge "Remove support for [p11_crypto_plugin] token_label" 2022-08-01 08:46:43 +00:00
Zuul 9a343b0de5 Merge "Debian/Ubuntu: Enable validations in acceptance tests" 2022-08-01 08:05:30 +00:00
Zuul 4440b6cf82 Merge "Expose headers option of apache::vhost" 2022-07-30 15:26:03 +00:00
Takashi Kajinami c7db104678 Revert "CentOS 9: Disable unit tests dependent on puppet-postgresql"
This reverts commit d8067ab5a2.

Reason for revert:
puppet-postgresql 8.1.0 was released and now the module supports RHEL 9
(and CentOS 9 effectively).

This change adds the service_provider fact in test fact data because
it is required by puppet-postgresql.

Change-Id: I8916f2eae939dd03126035ca2d52c8da50caf501
2022-07-24 00:37:38 +09:00
Takashi Kajinami cb89bdacb3 Debian/Ubuntu: Enable validations in acceptance tests
Now a few deployment validations are implemented in acceptance tests
but these are enabled in only CentOS/RHEL. This enables these in Debian
and Ubuntu because there is no distro-specific requirement.

Change-Id: I7b50f49fe4316c83f169bfdbdd5d79a5e3b9b253
2022-07-16 06:33:14 +09:00
Zuul 8d919fc211 Merge "Add acceptance tests for config management resources" 2022-07-15 19:51:43 +00:00
Takashi Kajinami b8c8d1f245 Fix wrong test description
The value with a white space should be accepted instead of being
rejected. This change fixes the wrong test case description and makes
sure the description explains what is actually tested.

Change-Id: I0f7853c62b88ea423590f5c75eb47f7597f15a01
2022-07-11 23:25:21 +09:00
Takashi Kajinami 93e7add0b5 Add acceptance tests for config management resources
Change-Id: I348bd6d07c9c6a99bb14bdaec4039649c25da0b5
2022-07-10 12:34:06 +09:00
Takashi Kajinami 72299ab60d Expose headers option of apache::vhost
The headers option in apache::vhost is required in some case, for
example when adding the X-XSS-Protection header. This change allows
customizing the option for the api vhost.

This change also adds support for request_headers so that both request
headers and response headers can customized.

Change-Id: I0e78f2183ffe14c310ee5c5632c203258c8c85cd
2022-06-30 11:11:50 +09:00
Takashi Kajinami f606fd1ca3 Remove support for [p11_crypto_plugin] token_label
... because it was deprecated during Wallaby cycle[1].

[1] 4403fe7247

Change-Id: Ia9b89d92256f51d5a48a19849715335f6856e839
2022-06-23 12:41:44 +09:00
Takashi Kajinami 237c4b2fb0 Clean up baribcan::api::retry_scheduler_* parameters
... because these were deprecated during Yoga cycle[1].

[1] 0d4580b27d

Change-Id: I781d06e3ba9c9b9ab7fd8360095cdb67917f016c
2022-06-23 12:36:32 +09:00
Rajesh Tailor 3b1ecbed5c Fix some typos in parameter descriptions
Change-Id: I634698c222da7e5f570ac3bd2cdee924457791bd
2022-06-17 16:38:08 +05:30
Zuul 3e6ddb70fc Merge "Remove support for CentOS 8 Stream" 2022-06-01 05:01:13 +00:00
Takashi Kajinami fdb4d4a4cc Remove support for CentOS 8 Stream
... because RDO will provide packages for only CentOS Stream 9 for Zed
release. This change removes RHEL 8 as well.

Change-Id: I8c5b682b4ab977a2c6ed747229ae553be471481f
2022-05-27 02:20:37 +09:00
Takashi Kajinami 109ea49acb api: Deprecate unused ssl parameters
These parameters are used by oslo.service library but Barbican does not
provide wsgi servce based on the library.

Change-Id: Ie035ec4a4dbce089e9911e11f91c2c013998192b
2022-05-19 14:47:45 +09:00
Zuul 3af0df5bb4 Merge "Remove non-existing bind_host/port" 2022-05-11 10:22:21 +00:00
Takashi Kajinami 043774f389 Remove non-existing bind_host/port
The bind_host parameter and the bind_port parameter are not implemented
in current Barbican. This change removes these ineffective parameters
from barbican.conf.

Change-Id: I7758a6e852795c5410e6dab023ce612f44ee27fd
2022-05-09 09:48:46 +09:00