Now TripleO team is replacing CentOS 8 jobs in master by CentOS 9 jobs.
This follows that and replaces tripleo jobs in puppet repos to switch
to CentOS 9.
Depends-on: https://review.opendev.org/828525
Change-Id: Ie168358fed1f822a81220b2d4a0b0ff95b41e3cb
This is follow up of 3c376bd733bff778002a01fb7b5f0dbc645d0e05 and fixes
one typo included in that commit. Because of this, the following
warning is always logged.
(warning): The cross_az_attach parameter is deprecated. \
Use nova::cinder::cross_az_attach instead.
Change-Id: I2a5b782ee453f59a754660af6a34bc0cdcd60b15
Use the whole resource type instead of its individual resources, to
rely on interface instead of implementation of the dependent module.
Change-Id: I67aa61335f635e5cdc3176616d55f6e6002064fa
The [cinder] region_name parameter is not used by nova, while nova uses
the [cinder] os_region_name parameter instead.
This change deprecates the unused region_name parameter.
Change-Id: I9f45c9aea59793a9d3807af4e5fe53e347d81541
Last build of libvirt in CentOS9 has removed default config files in
/etc/sysconfig . This is making some file_line resources to fail as
the original files no longer exist.
This patch is creating empty files if the target files don't exist, so
that this is compatible with centos8 and centos9 (before and after
default config files removal).
[1] https://bugzilla.redhat.com/show_bug.cgi?id=2042529
Closes-Bug: #1959601
Change-Id: Iff9daf3d284c725d40ecfb85500d77951c3fefcd
This change removes the parameters which were deprecated in favor
of the independent nova::glance class by [1] and [2].
[1] 6b99fa975e5be025ee5813544a19dcfda950ccf6
[2] 01a829b96388ddecc23a8691133a1dcc3235174d
Change-Id: I719e7ef431ee6c7bb8f98bacde229b12805a3a9c
This parameter was deprecated during Victoria cycle by [1], and has
had no effect since then.
[1] 577eeab4306f2353bbe8b910ae0c9fc80f1f70cf
Change-Id: I4b6dc21d4826941fa464241d88c4e17f9f894af7
This change is the first step to support secure RBAC and allows usage
of system scope credentials for Keystone API request.
This change covers the following two items.
- assignment of system scope roles to system user
- credential parameters for authtoken middleware
Depends-on: https://review.opendev.org/804325
Change-Id: Id1e235f792e1690454874718d6e83e7ff4ff313b
This change allows usage of system scope credentials in addition to
project scope credentials, to use service user token when accessing
Barbican API.
Depends-on: https://review.opendev.org/823883
Change-Id: I6adf315b5d512ff5ed2b6a85c605f8aaadbb37ae
Currently Nova uses the user credential in [neutron] section to update
port binding/migration profile or get resource_request of ports, but
these APIs are available for system admin/reader when SRBAC is
enforced.
This change allows usage of system-scoped credential instead of
project-scoped one.
Change-Id: Id1b4e324c8a46a8951f9e37203eb74a5602700e5
The ceph package no longer requires python packages like python-ceph,
which are required by nova to use Ceph.
This change replaces the package by the ceph-common package which
require both the ceph package and the related ceph packages.
Change-Id: Ic3fda73730ac6b036082a3fd8aae531093bbcf9e
Closes-Bug: #1958092
This change drops some redundant test cases which assert functionality
of nova::db class from spec files for different classes.
The nova::db class has its own spec file and is tested by that.
Change-Id: I92fd649b4a546dd74fac81b5a9231712768ec707
This change removes inefficient usage of autorequire, with the wrong
resource name(The resource name should include section name) in
some resource types. The necessary dependency is already enforced by
another autorequire which depends on service::end anchor.
Change-Id: I0993e2c9ed80d476ca984edf9d6167818a1cb1bb
When SRBAC is enforced, obtaining detail of a project requires system
reader, domain reader of the user who actually belongs to the project.
This allows using system scope credential so that a system reader role
can be leveraged.
Change-Id: If2a95361e20c8829c64aa6a27e6fb1d0dc5c1ff2
This change adds support for parameters in the [keystone] section,
which are used to query Keystone API to validate the given project id.
Change-Id: I3b9416f1e3f7ae303a182c3890a8797605a40271
The admin credential in [cinder] section is only required in compute
nodes while some parameters in the same section like catalog_info is
used by both controller nodes and compute nodes.
This change makes all credential parameters unset unless the password
is given. If the parameters are intentionally set the provided values
are honored.
Change-Id: I08d787817257d8b2e4a5c1ebf9c6763f6276a7e9
