OpenStack Heat Puppet Module
Go to file
Takashi Kajinami d3a63122cb Accept system scope credentials for Keystone API request
This change is the first step to support secure RBAC and allows usage
of system scope credentials for Keystone API request.

This change covers the following two items.
 - assignment of system scope roles to system user
 - credential parameters for authtoken middleware

Depends-on: https://review.opendev.org/804325
Change-Id: I1429b2cc6f3c01c07ec26b1a7242e451072be368
2021-11-26 00:59:17 +09:00
doc Update openstackdocstheme to the latest version 2021-09-29 16:06:50 +08:00
examples Convert all class usage to relative names 2019-12-08 23:07:36 +01:00
lib/puppet Allow customizing separator for api-paste.ini 2021-10-15 12:00:56 +09:00
manifests Accept system scope credentials for Keystone API request 2021-11-26 00:59:17 +09:00
releasenotes Accept system scope credentials for Keystone API request 2021-11-26 00:59:17 +09:00
spec Accept system scope credentials for Keystone API request 2021-11-26 00:59:17 +09:00
.gitignore Dissuade .gitignore references to personal tools 2018-10-08 11:39:23 +08:00
.gitreview OpenDev Migration Patch 2019-04-19 19:47:58 +00:00
.zuul.yaml Add Puppet Litmus 2020-08-31 21:24:19 +02:00
bindep.txt modulesync: sync and add nodepool-bionic for beaker 2018-07-18 16:18:12 +02:00
CHANGELOG.md Release 8.0.0 2016-03-23 16:07:13 -04:00
CONTRIBUTING.rst [ussuri][goal] Add CONTRIBUTING.rst 2020-05-10 22:38:30 +02:00
Gemfile Use openstack_spec_helper from zuul checkout 2020-08-30 22:57:05 +02:00
LICENSE Update LICENSE 2018-04-06 20:14:28 +08:00
metadata.json Bump puppetlabs-inifile 2021-11-02 13:02:57 +09:00
Rakefile Use puppet-openstack_spec_helper for Rakefile & spec_helper_acceptance 2016-01-18 09:11:19 -05:00
README.md Add Puppet Litmus 2020-08-31 21:24:19 +02:00
setup.cfg Add information technology in the setup.cfg 2021-10-01 06:54:49 +08:00
setup.py Delete useless code for setup.py 2021-09-30 13:38:33 +08:00
tox.ini Stop configuring install_command in tox. 2021-09-29 18:06:19 +09:00

Team and repository tags

Team and repository tags

puppet-heat

Table of Contents

  1. Overview - What is the heat module?
  2. Module Description - What does the module do?
  3. Setup - The basics of getting started with heat
  4. Implementation - An under-the-hood peek at what the module is doing
  5. Limitations - OS compatibility, etc.
  6. Development - Guide for contributing to the module
  7. Contributors - Those with commits
  8. Release Notes - Release notes for the project
  9. Repository - The project source code repository

Overview

The heat module is part of OpenStack, an effort by the OpenStack infrastructure team to provice continuous integration testing and code review for OpenStack and OpenStack community projects as part of the core software. The module itself is used to flexibly configure and manage the orchestration service for OpenStack.

Module Description

The heat module is an attempt to make Puppet capable of managing the entirety of heat.

Setup

What the heat module affects

  • Heat, the orchestration service for OpenStack

Installing heat

puppet module install openstack/heat

Beginning with heat

To utilize the heat module's functionality you will need to declare multiple resources. The following is a modified excerpt from the openstack module. This is not an exhaustive list of all the components needed. We recommend that you consult and understand the openstack module and the core openstack documentation to assist you in understanding the available deployment options.

# enable heat resources
class { 'heat':
  default_transport_url => 'rabbit://heat:an_even_bigger_secret@127.0.0.1:5672/heat',
  database_connection   => 'mysql+pymysql://heat:a_big_secret@127.0.0.1/heat?charset=utf8',
  keystone_password     => 'a_big_secret',
}

class { 'heat::api': }

class { 'heat::engine':
  auth_encryption_key => '1234567890AZERTYUIOPMLKJHGFDSQ12',
}

class { 'heat::api_cfn': }

Implementation

puppet-heat

heat is a combination of Puppet manifests and Ruby code to deliver configuration and extra functionality through types and providers.

Types

heat_config

The heat_config provider is a children of the ini_setting provider. It allows one to write an entry in the /etc/heat/heat.conf file.

heat_config { 'DEFAULT/enable_stack_adopt' :
  value => True,
}

This will write enable_stack_adopt=True in the [DEFAULT] section.

name

Section/setting name to manage from heat.conf

value

The value of the setting to be defined.

secret

Whether to hide the value from Puppet logs. Defaults to false.

ensure_absent_val

If value is equal to ensure_absent_val then the resource will behave as if ensure => absent was specified. Defaults to <SERVICE DEFAULT>

Limitations

None

Development

Developer documentation for the entire puppet-openstack project.

Contributors

Release Notes

Repository