848ac0b5e1
Added user/project CONF with admin role at cinder group, and when determine context is_admin and without token, do authenticaion with user/project info to call cinder api. When set reclaim_instance_interval > 0, and then delete an instance which booted from volume with `delete_on_termination` set as true. After reclaim_instance_interval time pass, all volumes boot instance with state: attached and in-use, even when attached instances was deleted. This happens because as admin context from `nova.compute.manager._reclaim_queued_deletes` did not have any token info, then call cinder api would be failed. The corresponding nova changes merged in change https://review.opendev.org/#/c/522112/ Related-Bug: #1734025 Change-Id: Ib58c2ca04dfe6d1e1ff849f600a9a24724205078
79 lines
2.5 KiB
Puppet
79 lines
2.5 KiB
Puppet
# == Class: nova::cinder
|
|
#
|
|
# Configures Cinder credentials to use by Nova.
|
|
#
|
|
# === Parameters:
|
|
#
|
|
# [*password*]
|
|
# (required) Password for connecting to Cinder services in
|
|
# admin context through the OpenStack Identity service.
|
|
# Defaults to $::os_service_default
|
|
#
|
|
# [*auth_type*]
|
|
# Name of the auth type to load (string value)
|
|
# Defaults to $::os_service_default
|
|
#
|
|
# [*auth_url*]
|
|
# (optional) Points to the OpenStack Identity server IP and port.
|
|
# This is the Identity (keystone) admin API server IP and port value,
|
|
# and not the Identity service API IP and port.
|
|
# Defaults to $::os_service_default
|
|
#
|
|
# [*timeout*]
|
|
# (optional) Timeout value for connecting to cinder in seconds.
|
|
# Defaults to $::os_service_default
|
|
#
|
|
# [*region_name*]
|
|
# (optional) Region name for connecting to cinder in admin context
|
|
# through the OpenStack Identity service.
|
|
# Defaults to $::os_service_default
|
|
#
|
|
# [*project_name*]
|
|
# (optional) Project name for connecting to Cinder services in
|
|
# admin context through the OpenStack Identity service.
|
|
# Defaults to 'services'
|
|
#
|
|
# [*project_domain_name*]
|
|
# (optional) Project Domain name for connecting to Cinder services in
|
|
# admin context through the OpenStack Identity service.
|
|
# Defaults to 'Default'
|
|
#
|
|
# [*username*]
|
|
# (optional) Username for connecting to Cinder services in admin context
|
|
# through the OpenStack Identity service.
|
|
# Defaults to 'cinder'
|
|
#
|
|
# [*user_domain_name*]
|
|
# (optional) User Domain name for connecting to Cinder services in
|
|
# admin context through the OpenStack Identity service.
|
|
# Defaults to 'Default'
|
|
#
|
|
class nova::cinder (
|
|
$password = $::os_service_default,
|
|
$auth_type = $::os_service_default,
|
|
$auth_url = $::os_service_default,
|
|
$timeout = $::os_service_default,
|
|
$region_name = $::os_service_default,
|
|
$project_name = 'services',
|
|
$project_domain_name = 'Default',
|
|
$username = 'cinder',
|
|
$user_domain_name = 'Default',
|
|
|
|
) {
|
|
|
|
include ::nova::deps
|
|
|
|
nova_config {
|
|
'cinder/password': value => $password, secret => true;
|
|
'cinder/auth_type': value => $auth_type;
|
|
'cinder/auth_url': value => $auth_url;
|
|
'cinder/region_name': value => $region_name;
|
|
'cinder/timeout': value => $timeout;
|
|
'cinder/project_name': value => $project_name;
|
|
'cinder/project_domain_name': value => $project_domain_name;
|
|
'cinder/username': value => $username;
|
|
'cinder/user_domain_name': value => $user_domain_name;
|
|
|
|
}
|
|
}
|