openstack/puppet-tripleo
Code Issues Proposed changes

Merge "Remove manifests for Contrail deployment" into stable/wallaby

Browse Source
This commit is contained in:
Zuul 2022-06-02 14:31:59 +00:00 committed by Gerrit Code Review
commit bc63c9e2d8
11 changed files with 0 additions and 2275 deletions

381
manifests/network/contrail/analytics.pp

@ -1,381 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::analytics
#
# Configure Contrail Analytics services
#
# == Parameters:
#
# [*host_ip*]
# (required) host IP address of Analytics
# String (IPv4) value.
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*api_server*]
# (optional) IP address of api server
# String value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) port of api server
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*analytics_aaa_mode*]
# (optional) analytics aaa mode parameter
# String value.
# Defaults to hiera('contrail::analytics_aaa_mode')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*auth_port*]
# (optional) keystone port.
# Integer value.
# Defaults to hiera('contrail::auth_port')
#
# [*auth_protocol*]
# (optional) authentication protocol.
# String value.
# Defaults to hiera('contrail::auth_protocol')
#
# [*ca_file*]
# (optional) ca file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cert_file*]
# (optional) cert file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cassandra_server_list*]
# (optional) List IPs+port of Cassandra servers
# Array of strings value.
# Defaults to hiera('contrail::cassandra_server_list')
#
# [*collector_http_server_port*]
# (optional) Collector http port
# Integer value.
# Defaults to 8089
#
# [*collector_sandesh_port*]
# (optional) Collector sandesh port
# Integer value.
# Defaults to 8086
#
# [*disc_server_ip*]
# (optional) IPv4 address of discovery server.
# String (IPv4) value.
# Defaults to hiera('contrail::disc_server_ip')
#
# [*disc_server_port*]
# (optional) port Discovery server listens on.
# Integer value.
# Defaults to hiera('contrail::disc_server_port')
#
# [*http_server_port*]
# (optional) Analytics http port
# Integer value.
# Defaults to 8090
#
# [*insecure*]
# (optional) insecure mode.
# Boolean value.
# Defaults to falsehiera('contrail::insecure')
#
# [*kafka_broker_list*]
# (optional) List IPs+port of kafka servers
# Array of strings value.
# Defaults to hiera('contrail::kafka_broker_list')
#
# [*memcached_servers*]
# (optional) IPv4 address of memcached servers
# String (IPv4) value + port
# Defaults to hiera('contrail::memcached_server')
#
# [*internal_vip*]
# (optional) Public virtual IP address
# String (IPv4) value
# Defaults to hiera('internal_api_virtual_ip')
#
# [*rabbit_server*]
# (optional) IPv4 addresses of rabbit server.
# Array of String (IPv4) value.
# Defaults to hiera('rabbitmq_node_ips')
#
# [*rabbit_user*]
# (optional) Rabbit user
# String value.
# Defaults to hiera('contrail::rabbit_user')
#
# [*rabbit_password*]
# (optional) Rabbit password
# String value.
# Defaults to hiera('contrail::rabbit_password')
#
# [*rabbit_port*]
# (optional) port of rabbit server
# String value.
# Defaults to hiera('contrail::rabbit_port')
#
# [*redis_server*]
# (optional) IPv4 address of redis server.
# String (IPv4) value.
# Defaults to '127.0.0.1'.
#
# [*redis_server_port*]
# (optional) port Redis server listens on.
# Integer value.
# Defaults to 6379
#
# [*rest_api_ip*]
# (optional) IP address Analytics rest interface listens on
# String (IPv4) value.
# Defaults to '0.0.0.0'
#
# [*rest_api_port*]
# (optional) Analytics rest port
# Integer value.
# Defaults to 8081
#
# [*step*]
# (optional) Step stack is in
# Integer value.
# Defaults to hiera('step')
#
# [*zk_server_ip*]
# (optional) List IPs+port of Zookeeper servers
# Array of strings value.
# Defaults to hiera('contrail::zk_server_ip')
#
class tripleo::network::contrail::analytics(
$step = Integer(hiera('step')),
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = hiera('contrail::api_port'),
$auth_host = hiera('contrail::auth_host'),
$auth_port = hiera('contrail::auth_port'),
$auth_protocol = hiera('contrail::auth_protocol'),
$analytics_aaa_mode = hiera('contrail::analytics_aaa_mode'),
$cassandra_server_list = hiera('contrail_analytics_database_node_ips'),
$ca_file = hiera('contrail::service_certificate',false),
$cert_file = hiera('contrail::service_certificate',false),
$collector_http_server_port = hiera('contrail::analytics::collector_http_server_port'),
$collector_sandesh_port = hiera('contrail::analytics::collector_sandesh_port'),
$disc_server_ip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$disc_server_port = hiera('contrail::disc_server_port'),
$http_server_port = hiera('contrail::analytics::http_server_port'),
$host_ip = hiera('contrail::analytics::host_ip'),
$insecure = hiera('contrail::insecure'),
$kafka_broker_list = hiera('contrail_analytics_database_node_ips'),
$memcached_servers = hiera('contrail::memcached_server'),
$internal_vip = hiera('internal_api_virtual_ip'),
$rabbit_server = hiera('rabbitmq_node_ips'),
$rabbit_user = hiera('contrail::rabbit_user'),
$rabbit_password = hiera('contrail::rabbit_password'),
$rabbit_port = hiera('contrail::rabbit_port'),
$redis_server = hiera('contrail::analytics::redis_server'),
$redis_server_port = hiera('contrail::analytics::redis_server_port'),
$rest_api_ip = hiera('contrail::analytics::rest_api_ip'),
$rest_api_port = hiera('contrail::analytics::rest_api_port'),
$zk_server_ip = hiera('contrail_database_node_ips'),
)
{
$cassandra_server_list_9042 = join([join($cassandra_server_list, ':9042 '),':9042'],'')
$kafka_broker_list_9092 = join([join($kafka_broker_list, ':9092 '),':9092'],'')
$rabbit_server_list_5672 = join([join($rabbit_server, ':5672,'),':5672'],'')
$redis_config = "bind ${host_ip} 127.0.0.1"
$zk_server_ip_2181 = join([join($zk_server_ip, ':2181 '),':2181'],'')
$zk_server_ip_2181_comma = join([join($zk_server_ip, ':2181,'),':2181'],'')
if $auth_protocol == 'https' {
$keystone_config = {
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_user' => $admin_user,
'auth_host' => $auth_host,
'auth_port' => $auth_port,
'auth_protocol' => $auth_protocol,
'insecure' => $insecure,
'certfile' => $cert_file,
'cafile' => $ca_file,
}
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
'AUTHN_PORT' => $auth_port,
'AUTHN_PROTOCOL' => $auth_protocol,
'certfile' => $cert_file,
'cafile' => $ca_file,
},
}
} else {
$keystone_config = {
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_user' => $admin_user,
'auth_host' => $auth_host,
'auth_port' => $auth_port,
'auth_protocol' => $auth_protocol,
'insecure' => $insecure,
}
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
},
}
}
if $step >= 3 {
class {'contrail::analytics':
alarm_gen_config => {
'DEFAULTS' => {
'host_ip' => $host_ip,
'kafka_broker_list' => $kafka_broker_list_9092,
'rabbitmq_server_list' => $rabbit_server_list_5672,
'rabbitmq_user' => $rabbit_user,
'rabbitmq_password' => $rabbit_password,
'zk_list' => $zk_server_ip_2181,
},
'DISCOVERY' => {
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
},
},
analytics_nodemgr_config => {
'DISCOVERY' => {
'server' => $disc_server_ip,
'port' => $disc_server_port,
},
},
analytics_api_config => {
'DEFAULTS' => {
'api_server' => "${api_server}:${api_port}",
'aaa_mode' => $analytics_aaa_mode,
'cassandra_server_list' => $cassandra_server_list_9042,
'host_ip' => $host_ip,
'http_server_port' => $http_server_port,
'rest_api_ip' => $rest_api_ip,
'rest_api_port' => $rest_api_port,
},
'DISCOVERY' => {
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
},
'REDIS' => {
'redis_server_port' => $redis_server_port,
'redis_query_port' => $redis_server_port,
'server' => $redis_server,
},
'KEYSTONE' => $keystone_config,
},
collector_config => {
'DEFAULT' => {
'cassandra_server_list' => $cassandra_server_list_9042,
'hostip' => $host_ip,
'http_server_port' => $collector_http_server_port,
'kafka_broker_list' => $kafka_broker_list_9092,
'zookeeper_server_list' => $zk_server_ip_2181_comma,
},
'COLLECTOR' => {
'port' => $collector_sandesh_port,
},
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
'REDIS' => {
'port' => $redis_server_port,
'server' => $redis_server,
},
},
query_engine_config => {
'DEFAULT' => {
'cassandra_server_list' => $cassandra_server_list_9042,
'hostip' => $host_ip,
},
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
'REDIS' => {
'port' => $redis_server_port,
'server' => $redis_server,
},
},
snmp_collector_config => {
'DEFAULTS' => {
'zookeeper' => $zk_server_ip_2181_comma,
},
'DISCOVERY' => {
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
},
'KEYSTONE' => $keystone_config,
},
redis_config => $redis_config,
topology_config => {
'DEFAULTS' => {
'zookeeper' => $zk_server_ip_2181_comma,
},
'DISCOVERY' => {
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
},
},
vnc_api_lib_config => $vnc_api_lib_config,
keystone_config => {
'KEYSTONE' => $keystone_config,
},
}
}
if $step >= 5 {
class {'contrail::analytics::provision_analytics':
api_address => $api_server,
api_port => $api_port,
analytics_node_address => $host_ip,
analytics_node_name => $::fqdn,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
openstack_vip => $auth_host,
}
}
}

202
manifests/network/contrail/analyticsdatabase.pp

@ -1,202 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::analyticsdatabase
#
# Configure Contrail Analytics Database services
#
# == Parameters:
#
# [*auth_host*]
# (optional) IPv4 VIP of Keystone
# String (IPv4) value
# Defaults to hiera('contrail::auth_host')
#
# [*auth_port*]
# (optional) keystone port.
# Integer value.
# Defaults to hiera('contrail::auth_port')
#
# [*auth_protocol*]
# (optional) authentication protocol.
# String value.
# Defaults to hiera('contrail::auth_protocol')
#
# [*api_server*]
# (optional) IPv4 VIP of Contrail Config API
# String (IPv4) value
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) Port of Contrail Config API
# String value
# Defaults to hiera('contrail::api_port')
#
# [*admin_password*]
# (optional) Keystone Admin password
# String value
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) Keystone Admin tenant name
# String value
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) Keystone Admin token
# String value
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) Keystone Admin user
# String value
# Defaults to hiera('contrail::admin_user')
#
# [*ca_file*]
# (optional) ca file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cert_file*]
# (optional) cert file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cassandra_servers*]
# (optional) List of analytics cassandra servers
# List (IPv4) value
# Defaults to hiera('contrail_analytics_database_node_ips')
#
# [*disc_server_ip*]
# (optional) IPv4 VIP of Contrail Discovery
# String (IPv4) value
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*disc_server_port*]
# (optional) port Discovery server listens on.
# Integer value.
# Defaults to hiera('contrail::disc_server_port')
#
# [*host_ip*]
# (optional) host IP address of Database node
# String (IPv4) value.
# Defaults to hiera('contrail::analytics::database::host_ip')
#
# [*host_name*]
# (optional) host name of database node
# String value
# Defaults to $::hostname
#
# [*kafka_hostnames*]
# (optional) list of kafka server hostnames
# List value
# Defaults to hiera('contrail_analytics_database_short_node_names', '')
#
# [*internal_vip*]
# (optional) Public VIP
# String (IPv4) value
# Defaults to hiera('internal_api_virtual_ip')
#
# [*step*]
# (optional) step in the stack
# String value
# Defaults to hiera('step')
#
# [*zookeeper_server_ips*]
# (optional) list of zookeeper server IPs
# List value
# Defaults to hiera('contrail_database_node_ips')
#
class tripleo::network::contrail::analyticsdatabase(
$step = Integer(hiera('step')),
$auth_host = hiera('contrail::auth_host'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = hiera('contrail::api_port'),
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$auth_protocol = hiera('contrail::auth_protocol'),
$auth_port = hiera('contrail::auth_port'),
$cassandra_servers = hiera('contrail_analytics_database_node_ips'),
$ca_file = hiera('contrail::service_certificate',false),
$cert_file = hiera('contrail::service_certificate',false),
$disc_server_ip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$disc_server_port = hiera('contrail::disc_server_port'),
$host_ip = hiera('contrail::analytics::database::host_ip'),
$host_name = $::hostname,
$kafka_hostnames = hiera('contrail_analytics_database_short_node_names', ''),
$internal_vip = hiera('internal_api_virtual_ip'),
$zookeeper_server_ips = hiera('contrail_database_node_ips'),
)
{
if $auth_protocol == 'https' {
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
'AUTHN_PORT' => $auth_port,
'AUTHN_PROTOCOL' => $auth_protocol,
'certfile' => $cert_file,
'cafile' => $ca_file,
},
}
} else {
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
},
}
}
if $step == 2 {
class {'contrail::analyticsdatabase':
analyticsdatabase_params => {
'auth_host' => $auth_host,
'api_server' => $api_server,
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_token' => $admin_token,
'admin_user' => $admin_user,
'cassandra_servers' => $cassandra_servers,
'host_ip' => $host_ip,
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
'kafka_hostnames' => $kafka_hostnames,
'zookeeper_server_ips' => $zookeeper_server_ips,
database_nodemgr_config => {
'DEFAULT' => {
'hostip' => $host_ip,
},
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
},
vnc_api_lib_config => $vnc_api_lib_config,
}
}
}
if $step >= 5 {
class {'contrail::database::provision_database':
api_address => $api_server,
api_port => $api_port,
database_node_address => $host_ip,
database_node_name => $host_name,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
openstack_vip => $auth_host,
}
}
}

416
manifests/network/contrail/config.pp

@ -1,416 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::config
#
# Configure Contrail Config services
#
# == Parameters:
#
#
# [*aaa_mode*]
# (optional) aaa mode parameter
# String value.
# Defaults to hiera('contrail::aaa_mode')
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*api_server*]
# (optional) VIP of Config API
# String (IPv4) value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) Port of Config API
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*auth*]
# (optional) Authentication method.
# Defaults to hiera('contrail::auth')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*auth_port*]
# (optional) keystone port.
# Defaults to hiera('contrail::auth_port')
#
# [*auth_protocol*]
# (optional) authentication protocol.
# Defaults to hiera('contrail::auth_protocol')
#
# [*ca_file*]
# (optional) ca file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cert_file*]
# (optional) cert file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cassandra_server_list*]
# (optional) List IPs+port of Cassandra servers
# Array of strings value.
# Defaults to hiera('contrail::cassandra_server_list')
#
# [*config_hostnames*]
# (optional) Config hostname list
# Array of string value.
# Defaults to hiera('contrail_config_short_node_names')
#
# [*control_server_list*]
# (optional) IPv4 addresses of control server.
# Array of string (IPv4) value.
# Defaults to hiera('contrail_control_node_ips')
#
# [*disc_server_ip*]
# (optional) IPv4 address of discovery server.
# String (IPv4) value.
# Defaults to hiera('contrail::disc_server_ip')
#
# [*disc_server_port*]
# (optional) port of discovery server
# String value.
# Defaults to hiera('contrail::disc_server_port')
#
# [*host_ip*]
# (optional) IPv4 address of Config server
# String (IPv4) value.
# Defaults to hiera('contrail::config::host_ip')
#
# [*ifmap_password*]
# (optional) ifmap password
# String value.
# Defaults to hiera('contrail::config::ifmap_password')
#
# [*ifmap_server_ip*]
# (optional) ifmap server ip address.
# String value.
# Defaults to hiera('contrail::config::host_ip')
#
# [*ifmap_username*]
# (optional) ifmap username
# String value.
# Defaults to hiera('contrail::config::ifmap_password')
#
# [*insecure*]
# (optional) insecure mode.
# Defaults to hiera('contrail::insecure')
#
# [*ipfabric_service_port*]
# (optional) linklocal ip fabric port
# String value
# Defaults to 8775
#
# [*listen_ip_address*]
# (optional) IP address to listen on.
# String (IPv4) value.
# Defaults to hiera('contrail::config::listen_ip_address')
#
# [*listen_port*]
# (optional) Listen port for config-api
# Defaults to hiera('contrail::api_port')
#
# [*linklocal_service_port*]
# (optional) port of link local service
# String value
# Defaults to 80
#
# [*linklocal_service_name*]
# (optional) name of link local service
# String value
# Defaults to metadata
#
# [*linklocal_service_ip*]
# (optional) IPv4 address of link local service
# String (IPv4) value
# Defaults to 169.254.169.254
#
# [*memcached_servers*]
# (optional) IPv4 address of memcached servers
# String (IPv4) value + port
# Defaults to hiera('contrail::memcached_server')
#
# [*internal_vip*]
# (optional) Public virtual ip
# String value.
# Defaults to hiera('internal_api_virtual_ip')
#
# [*step*]
# (optional) Step stack is in
# Integer value.
# Defaults to hiera('step')
#
# [*rabbit_server*]
# (optional) rabbit server
# Array of string value.
# Defaults to hiera('rabbitmq_node_ips')
#
# [*rabbit_user*]
# (optional) rabbit user
# String value.
# Defaults to hiera('contrail::rabbit_user')
#
# [*rabbit_password*]
# (optional) rabbit password
# String value.
# Defaults to hiera('contrail::rabbit_password')
#
# [*rabbit_port*]
# (optional) rabbit server port
# String value.
# Defaults to hiera('contrail::rabbit_port')
#
# [*redis_server*]
# (optional) IPv4 address of redis server.
# String (IPv4) value.
# Defaults to hiera('contrail::config::redis_server')
#
# [*zk_server_ip*]
# (optional) List IPs+port of Zookeeper servers
# Array of strings value.
# Defaults to hiera('contrail_database_node_ips')
#
class tripleo::network::contrail::config(
$step = Integer(hiera('step')),
$aaa_mode = hiera('contrail::aaa_mode'),
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = hiera('contrail::api_port'),
$auth = hiera('contrail::auth'),
$auth_host = hiera('contrail::auth_host'),
$auth_port = hiera('contrail::auth_port'),
$auth_protocol = hiera('contrail::auth_protocol'),
$cassandra_server_list = hiera('contrail_database_node_ips'),
$ca_file = hiera('contrail::service_certificate',false),
$cert_file = hiera('contrail::service_certificate',false),
$config_hostnames = hiera('contrail_config_short_node_names'),
$control_server_list = hiera('contrail_control_node_ips'),
$disc_server_ip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$disc_server_port = hiera('contrail::disc_server_port'),
$host_ip = hiera('contrail::config::host_ip'),
$ifmap_password = hiera('contrail::config::ifmap_password'),
$ifmap_server_ip = hiera('contrail::config::host_ip'),
$ifmap_username = hiera('contrail::config::ifmap_username'),
$insecure = hiera('contrail::insecure'),
$ipfabric_service_port = 8775,
$listen_ip_address = hiera('contrail::config::listen_ip_address'),
$listen_port = hiera('contrail::api_port'),
$linklocal_service_port = 80,
$linklocal_service_name = 'metadata',
$linklocal_service_ip = '169.254.169.254',
$memcached_servers = hiera('contrail::memcached_server'),
$internal_vip = hiera('internal_api_virtual_ip'),
$rabbit_server = hiera('rabbitmq_node_ips'),
$rabbit_user = hiera('contrail::rabbit_user'),
$rabbit_password = hiera('contrail::rabbit_password'),
$rabbit_port = hiera('contrail::rabbit_port'),
$redis_server = hiera('contrail::config::redis_server'),
$zk_server_ip = hiera('contrail_database_node_ips'),
)
{
validate_legacy(Stdlib::IP::Address, 'validate_ip_address', $listen_ip_address)
validate_legacy(Stdlib::IP::Address, 'validate_ip_address', $disc_server_ip)
validate_legacy(Stdlib::IP::Address, 'validate_ip_address', $ifmap_server_ip)
$basicauthusers_property_control = map($control_server_list) |$item| { "${item}.control:${item}.control" }
$basicauthusers_property_dns = $control_server_list.map |$item| { "${item}.dns:${item}.dns" }
$basicauthusers_property = concat($basicauthusers_property_control, $basicauthusers_property_dns)
$cassandra_server_list_9160 = join([join($cassandra_server_list, ':9160 '),':9160'],'')
$rabbit_server_list_5672 = join([join($rabbit_server, ':5672,'),':5672'],'')
$zk_server_ip_2181 = join([join($zk_server_ip, ':2181,'),':2181'],'')
if $auth_protocol == 'https' {
$keystone_config = {
'KEYSTONE' => {
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_token' => $admin_token,
'admin_user' => $admin_user,
'auth_host' => $auth_host,
'auth_port' => $auth_port,
'auth_protocol' => $auth_protocol,
'insecure' => $insecure,
'memcached_servers' => $memcached_servers,
'certfile' => $cert_file,
'cafile' => $ca_file,
},
}
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
'AUTHN_PORT' => $auth_port,
'AUTHN_PROTOCOL' => $auth_protocol,
'certfile' => $cert_file,
'cafile' => $ca_file,
},
}
} else {
$keystone_config = {
'KEYSTONE' => {
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_token' => $admin_token,
'admin_user' => $admin_user,
'auth_host' => $auth_host,
'auth_port' => $auth_port,
'auth_protocol' => $auth_protocol,
'insecure' => $insecure,
'memcached_servers' => $memcached_servers,
},
}
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
},
}
}
if $step >= 3 {
class {'contrail::config':
api_config => {
'DEFAULTS' => {
'aaa_mode' => $aaa_mode,
'auth' => $auth,
'cassandra_server_list' => $cassandra_server_list_9160,
'disc_server_ip' => $disc_server_ip,
'ifmap_password' => $ifmap_password,
'ifmap_server_ip' => $ifmap_server_ip,
'ifmap_username' => $ifmap_username,
'listen_ip_addr' => $listen_ip_address,
'listen_port' => $listen_port,
'rabbit_server' => $rabbit_server_list_5672,
'rabbit_user' => $rabbit_user,
'rabbit_password' => $rabbit_password,
'redis_server' => $redis_server,
'zk_server_ip' => $zk_server_ip_2181,
},
},
basicauthusers_property => $basicauthusers_property,
config_nodemgr_config => {
'DISCOVERY' => {
'server' => $disc_server_ip,
'port' => $disc_server_port,
},
},
device_manager_config => {
'DEFAULTS' => {
'api_server_ip' => $api_server,
'api_server_port' => $api_port,
'cassandra_server_list' => $cassandra_server_list_9160,
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
'rabbit_server' => $rabbit_server_list_5672,
'rabbit_user' => $rabbit_user,
'rabbit_password' => $rabbit_password,
'redis_server' => $redis_server,
'zk_server_ip' => $zk_server_ip_2181,
},
},
discovery_config => {
'DEFAULTS' => {
'cassandra_server_list' => $cassandra_server_list_9160,
'zk_server_ip' => $zk_server_ip_2181,
},
},
keystone_config => $keystone_config,
schema_config => {
'DEFAULTS' => {
'api_server_ip' => $api_server,
'api_server_port' => $api_port,
'cassandra_server_list' => $cassandra_server_list_9160,
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
'ifmap_password' => $ifmap_password,
'ifmap_server_ip' => $ifmap_server_ip,
'ifmap_username' => $ifmap_username,
'rabbit_server' => $rabbit_server_list_5672,
'rabbit_user' => $rabbit_user,
'rabbit_password' => $rabbit_password,
'redis_server' => $redis_server,
'zk_server_ip' => $zk_server_ip_2181,
},
},
svc_monitor_config => {
'DEFAULTS' => {
'api_server_ip' => $api_server,
'api_server_port' => $api_port,
'cassandra_server_list' => $cassandra_server_list_9160,
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
'ifmap_password' => $ifmap_password,
'ifmap_server_ip' => $ifmap_server_ip,
'ifmap_username' => $ifmap_username,
'rabbit_server' => $rabbit_server_list_5672,
'rabbit_user' => $rabbit_user,
'rabbit_password' => $rabbit_password,
'redis_server' => $redis_server,
'zk_server_ip' => $zk_server_ip_2181,
},
},
vnc_api_lib_config => $vnc_api_lib_config,
}
}
if $step >= 5 {
class {'contrail::config::provision_config':
api_address => $api_server,
api_port => $api_port,
config_node_address => $host_ip,
config_node_name => $::hostname,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
openstack_vip => $auth_host,
}
if $config_hostnames[0] == $::hostname {
class {'contrail::config::provision_linklocal':
api_address => $api_server,
api_port => $api_port,
ipfabric_service_ip => $api_server,
ipfabric_service_port => $ipfabric_service_port,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
linklocal_service_name => $linklocal_service_name,
linklocal_service_ip => $linklocal_service_ip,
linklocal_service_port => $linklocal_service_port,
}
}
}
}

211
manifests/network/contrail/control.pp

@ -1,211 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::control
#
# Configure Contrail Control services
#
# == Parameters:
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password'),
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name'),
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token'),
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user'),
#
# [*api_server*]
# (optional) IP address of api server
# String value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) port of api server
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host'),
#
# [*auth_port*]
# (optional) keystone port.
# Defaults to hiera('contrail::auth_port'),
#
# [*auth_protocol*]
# (optional) authentication protocol.
# Defaults to hiera('contrail::auth_protocol'),
#
# [*disc_server_ip*]
# (optional) IPv4 address of discovery server.
# String (IPv4) value.
# Defaults to hiera('contrail::disc_server_ip'),
#
# [*disc_server_port*]
# (optional) port Discovery server listens on.
# Integer value.
# Defaults to hiera('contrail::disc_server_port'),
#
# [*host_ip*]
# (optional) IP address of host
# String (IPv4) value.
# Defaults to hiera('contrail::control::host_ip')
#
# [*ibgp_auto_mesh*]
# (optional) iBPG auto mesh
# String value.
# Defaults to true
#
# [*ifmap_password*]
# (optional) ifmap password
# String value.
# Defaults to hiera('contrail::ifmap_password'),
#
# [*ifmap_username*]
# (optional) ifmap username
# String value.
# Defaults to hiera('contrail::ifmap_username'),
#
# [*insecure*]
# (optional) insecure mode.
# Defaults to hiera('contrail::insecure'),
#
# [*memcached_servers*]
# (optional) IPv4 address of memcached servers
# String (IPv4) value + port
# Defaults to hiera('contrail::memcached_servers'),
#
# [*manage_named*]
# (optional) switch for managing named
# String
# Defaults to hiera('contrail::manage_named'),
#
# [*internal_vip*]
# (optional) Public Virtual IP address
# String (IPv4) value
# Defaults to hiera('internal_api_virtual_ip')
#
# [*router_asn*]
# (optional) Autonomus System Number
# String value
# Defaults to hiera('contrail::control::asn')
#
# [*secret*]
# (optional) RNDC secret for named
# String value
# Defaults to hiera('contrail::control::rndc_secret')
#
# [*step*]
# (optional) Step stack is in
# Integer value.
# Defaults to hiera('step')
#
class tripleo::network::contrail::control(
$step = Integer(hiera('step')),
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = hiera('contrail::api_port'),
$auth_host = hiera('contrail::auth_host'),
$auth_port = hiera('contrail::auth_port'),
$auth_protocol = hiera('contrail::auth_protocol'),
$disc_server_ip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$disc_server_port = hiera('contrail::disc_server_port'),
$host_ip = hiera('contrail::control::host_ip'),
$ibgp_auto_mesh = true,
$ifmap_password = hiera('contrail::control::host_ip'),
$ifmap_username = hiera('contrail::control::host_ip'),
$insecure = hiera('contrail::insecure'),
$memcached_servers = hiera('contrail::memcached_server'),
$internal_vip = hiera('internal_api_virtual_ip'),
$router_asn = hiera('contrail::control::asn'),
$secret = hiera('contrail::control::rndc_secret'),
$manage_named = hiera('contrail::control::manage_named'),
)
{
$control_ifmap_user = "${ifmap_username}.control"
$control_ifmap_password = "${ifmap_username}.control"
$dns_ifmap_user = "${ifmap_username}.dns"
$dns_ifmap_password = "${ifmap_username}.dns"
if $step >= 3 {
class {'contrail::control':
secret => $secret,
manage_named => $manage_named,
control_config => {
'DEFAULT' => {
'hostip' => $host_ip,
},
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
'IFMAP' => {
'password' => $control_ifmap_user,
'user' => $control_ifmap_password,
},
},
dns_config => {
'DEFAULT' => {
'hostip' => $host_ip,
'rndc_secret' => $secret,
},
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
'IFMAP' => {
'password' => $dns_ifmap_user,
'user' => $dns_ifmap_password,
}
},
control_nodemgr_config => {
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
},
}
}
if $step >= 5 {
class {'contrail::control::provision_control':
api_address => $api_server,
api_port => $api_port,
control_node_address => $host_ip,
control_node_name => $::hostname,
ibgp_auto_mesh => $ibgp_auto_mesh,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
router_asn => $router_asn,
}
}
}

166
manifests/network/contrail/database.pp

@ -1,166 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::database
#
# Configure Contrail Database services
#
# == Parameters:
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*api_server*]
# (optional) VIP of Config API
# String (IPv4) value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) Port of Config API
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*cassandra_servers*]
# (optional) List IPs+port of Cassandra servers
# Array of strings value.
# Defaults to hiera('contrail_database_node_ips')
#
# [*disc_server_ip*]
# (optional) IPv4 address of discovery server.
# String (IPv4) value.
# Defaults to hiera('contrail::disc_server_ip')
#
# [*disc_server_port*]
# (optional) port Discovery server listens on.
# Integer value.
# Defaults to hiera('contrail::disc_server_port')
#
# [*host_ip*]
# (required) host IP address of Database node
# String (IPv4) value.
#
# [*host_name*]
# (optional) host name of Database node
# String value.
# Defaults to $::hostname
#
# [*internal_vip*]
# (optional) Public virtual ip
# String value.
# Defaults to hiera('internal_api_virtual_ip')
#
# [*step*]
# (optional) Step stack is in
# Integer value.
# Defaults to hiera('step')
#
# [*zookeeper_client_ip*]
# (optional) Zookeeper listen address
# String (IPv4) value.
# Defaults to hiera('contrail::database::host_ip')
#
# [*zookeeper_hostnames*]
# (optional) Zookeeper hostname list
# Array of string value.
# Defaults to hiera('contrail_database_short_node_names')
#
# [*zookeeper_server_ips*]
# (optional) Zookeeper ip list
# Array of string (IPv4) values
# Defaults to hiera('contrail_database_node_ips')
#
class tripleo::network::contrail::database(
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = hiera('contrail::api_port'),
$auth_host = hiera('contrail::auth_host'),
$cassandra_servers = hiera('contrail_database_node_ips'),
$disc_server_ip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$disc_server_port = hiera('contrail::disc_server_port'),
$host_ip = hiera('contrail::database::host_ip'),
$host_name = $::hostname,
$internal_vip = hiera('internal_api_virtual_ip'),
$step = Integer(hiera('step')),
$zookeeper_client_ip = hiera('contrail::database::host_ip'),
$zookeeper_hostnames = hiera('contrail_database_short_node_names'),
$zookeeper_server_ips = hiera('contrail_database_node_ips'),
)
{
if $step == 2 {
class {'contrail::database':
database_params => {
'auth_host' => $auth_host,
'api_server' => $api_server,
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_token' => $admin_token,
'admin_user' => $admin_user,
'cassandra_servers' => $cassandra_servers,
'host_ip' => $host_ip,
'disc_server_ip' => $disc_server_ip,
'disc_server_port' => $disc_server_port,
'zookeeper_client_ip' => $zookeeper_client_ip,
'zookeeper_hostnames' => $zookeeper_hostnames,
'zookeeper_server_ips' => $zookeeper_server_ips,
database_nodemgr_config => {
'DEFAULT' => {
'hostip' => $host_ip,
},
'DISCOVERY' => {
'port' => $disc_server_port,
'server' => $disc_server_ip,
},
},
}
}
}
if $step >= 5 {
class {'contrail::database::provision_database':
api_address => $api_server,
api_port => $api_port,
database_node_address => $host_ip,
database_node_name => $host_name,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
openstack_vip => $auth_host,
}
}
}

87
manifests/network/contrail/heat.pp

@ -1,87 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::heat
#
# Configure Contrail Heat plugin
#
# == Parameters:
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*api_server*]
# (optional) IP address of api server
# String value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) port of api server
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*step*]
# (optional) Step stack is in
# Integer value.
# Defaults to hiera('step')
#
# [*use_ssl*]
# (optional) switch for ssl usage
# String value.
# Defaults to 'False'
#
class tripleo::network::contrail::heat(
$admin_password = hiera('contrail::admin_password'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = 8082,
$auth_host = hiera('contrail::auth_host'),
$step = Integer(hiera('step')),
$use_ssl = 'False',
)
{
class {'contrail::heat':
heat_config => {
'clients_contrail' => {
'api_base_url' => '/',
'api_server' => $api_server,
'api_port' => $api_port,
'auth_host_ip' => $auth_host,
'user' => $admin_user,
'password' => $admin_password,
'use_ssl' => $use_ssl,
},
},
}
}

192
manifests/network/contrail/neutron_plugin.pp

@ -1,192 +0,0 @@
# This class installs and configures Opencontrail Neutron Plugin.
#
# === Parameters
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*api_server*]
# (optional) IP address of api server
# String value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) port of api server
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*auth_port*]
# (optional) keystone port.
# Integer value.
# Defaults to hiera('contrail::auth_port')
#
# [*auth_protocol*]
# (optional) authentication protocol.
# String value.
# Defaults to hiera('contrail::auth_protocol')
#
# [*ca_file*]
# (optional) ca file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cert_file*]
# (optional) cert file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*contrail_extensions*]
# Array of OpenContrail extensions to be supported
# Defaults to $::os_service_default
# Example:
#
# class {'neutron::plugins::opencontrail' :
# contrail_extensions => ['ipam:neutron_plugin_contrail.plugins.opencontrail.contrail_plugin_ipam.NeutronPluginContrailIpam']
# }
#
# [*package_ensure*]
# (optional) Ensure state for package.
# Defaults to 'present'.
#
# [*purge_config*]
# (optional) Whether to set only the specified config options
# in the opencontrail config.
# Defaults to false.
#
class tripleo::network::contrail::neutron_plugin (
$contrail_extensions = hiera('contrail::vrouter::contrail_extensions'),
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$api_port = hiera('contrail::api_port'),
$auth_host = hiera('contrail::auth_host'),
$auth_port = hiera('contrail::auth_port'),
$auth_protocol = hiera('contrail::auth_protocol'),
$ca_file = hiera('contrail::service_certificate',false),
$cert_file = hiera('contrail::service_certificate',false),
$purge_config = false,
$package_ensure = 'present',
) {
include neutron::deps
include neutron::params
validate_legacy(Array, 'validate_array', $contrail_extensions)
package { 'neutron-plugin-contrail':
ensure => $package_ensure,
name => $::neutron::params::opencontrail_plugin_package,
tag => ['neutron-package', 'openstack'],
}
package {'python-contrail':
ensure => installed,
}
ensure_resource('file', '/etc/neutron/plugins/opencontrail', {
ensure => directory,
owner => 'root',
group => 'neutron',
mode => '0640'}
)
if $::osfamily == 'Debian' {
file_line { '/etc/default/neutron-server:NEUTRON_PLUGIN_CONFIG':
path => '/etc/default/neutron-server',
match => '^NEUTRON_PLUGIN_CONFIG=(.*)$',
line => "NEUTRON_PLUGIN_CONFIG=${::neutron::params::opencontrail_config_file}",
tag => 'neutron-file-line',
}
}
if $::osfamily == 'Redhat' {
file { '/etc/neutron/plugin.ini':
ensure => link,
target => $::neutron::params::opencontrail_config_file,
require => Package[$::neutron::params::opencontrail_plugin_package],
tag => 'neutron-config-file',
}
$api_paste_config_file = '/usr/share/neutron/api-paste.ini'
}
ini_setting { 'filter:user_token':
ensure => present,
path => $api_paste_config_file,
section => 'filter:user_token',
setting => 'paste.filter_factory',
value => 'neutron_plugin_contrail.plugins.opencontrail.neutron_middleware:token_factory',
}
ini_setting { 'composite:neutronapi_v2_0':
ensure => present,
path => $api_paste_config_file,
section => 'composite:neutronapi_v2_0',
setting => 'keystone',
value => 'user_token cors http_proxy_to_wsgi request_id catch_errors authtoken keystonecontext extensions neutronapiapp_v2_0',
}
resources { 'neutron_plugin_opencontrail':
purge => $purge_config,
}
$auth_url = join([$auth_protocol,'://',$auth_host,':',$auth_port,'/v2.0'])
if $auth_protocol == 'https' {
neutron_plugin_opencontrail {
'APISERVER/api_server_ip': value => $api_server;
'APISERVER/api_server_port': value => $api_port;
'APISERVER/contrail_extensions': value => join($contrail_extensions, ',');
'KEYSTONE/auth_url': value => $auth_url;
'KEYSTONE/admin_user' : value => $admin_user;
'KEYSTONE/admin_tenant_name': value => $admin_tenant_name;
'KEYSTONE/admin_password': value => $admin_password, secret =>true;
'KEYSTONE/admin_token': value => $admin_token, secret =>true;
'KEYSTONE/cafile': value => $ca_file;
'KEYSTONE/certfile': value => $cert_file;
'keystone_authtoken/admin_user': value => $admin_user;
'keystone_authtoken/admin_tenant': value => $admin_tenant_name;
'keystone_authtoken/admin_password': value => $admin_password, secret =>true;
'keystone_authtoken/auth_host': value => $auth_host;
'keystone_authtoken/auth_protocol': value => $auth_protocol;
'keystone_authtoken/auth_port': value => $auth_port;
'keystone_authtoken/cafile': value => $ca_file;
'keystone_authtoken/certfile': value => $cert_file;
}
} else {
neutron_plugin_opencontrail {
'APISERVER/api_server_ip': value => $api_server;
'APISERVER/api_server_port': value => $api_port;
'APISERVER/contrail_extensions': value => join($contrail_extensions, ',');
'KEYSTONE/auth_url': value => $auth_url;
'KEYSTONE/admin_user' : value => $admin_user;
'KEYSTONE/admin_tenant_name': value => $admin_tenant_name;
'KEYSTONE/admin_password': value => $admin_password, secret =>true;
'KEYSTONE/admin_token': value => $admin_token, secret =>true;
'keystone_authtoken/admin_user': value => $admin_user;
'keystone_authtoken/admin_tenant': value => $admin_tenant_name;
'keystone_authtoken/admin_password': value => $admin_password, secret =>true;
'keystone_authtoken/auth_host': value => $auth_host;
'keystone_authtoken/auth_protocol': value => $auth_protocol;
'keystone_authtoken/auth_port': value => $auth_port;
}
}
}

92
manifests/network/contrail/provision.pp

@ -1,92 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::provision
#
# Provisions Contrail Control and link local services
#
# == Parameters:
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password'),
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name'),
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token'),
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user'),
#
# [*api_server*]
# (optional) IP address of api server
# String value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host'),
#
# [*auth_port*]
# (optional) keystone port.
# Defaults to hiera('contrail::auth_port'),
#
# [*auth_protocol*]
# (optional) authentication protocol.
# Defaults to hiera('contrail::auth_protocol'),
#
# [*step*]
# (optional) Step stack is in
# Integer value.
# Defaults to hiera('step')
#
class tripleo::network::contrail::provision(
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_server = hiera('contrail_config_vip'),
$auth_host = hiera('contrail::auth_host'),
$auth_port = hiera('contrail::auth_port'),
$auth_protocol = hiera('contrail::auth_protocol'),
$step = Integer(hiera('step')),
)
{
if $step >= 5 {
class {'contrail::control::provision_control':
api_address => $api_server,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
}
class {'contrail::control::provision_linklocal':
api_address => $api_server,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
ipfabric_service_ip => $api_server,
}
}
}

356
manifests/network/contrail/vrouter.pp

@ -1,356 +0,0 @@
# Copyright 2016 Red Hat, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::profile::base::neutron::opencontrail::vrouter
#
# Opencontrail profile to run the contrail vrouter
#
# === Parameters
#
# [*step*]
# (Optional) The current step of the deployment
# Defaults to hiera('step')
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*api_server*]
# (optional) IP address of api server
# String value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*api_port*]
# (optional) port of api server
# String value.
# Defaults to hiera('contrail::api_port')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*auth_port*]
# (optional) keystone port.
# Integer value.
# Defaults to hiera('contrail::auth_port')
#
# [*auth_protocol*]
# (optional) authentication protocol.
# String value.
# Defaults to hiera('contrail::auth_protocol')
#
# [*ca_file*]
# (optional) ca file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cert_file*]
# (optional) cert file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*control_server*]
# (optional) Contrail control server IP
# Array of String (IPv4) value.
# Defaults to hiera('contrail_control_node_ips')
#
# [*disc_server_ip*]
# (optional) IPv4 address of discovery server.
# String (IPv4) value.
# Defaults to hiera('contrail::disc_server_ip')
#
# [*disc_server_port*]
# (optional) port Discovery server listens on.
# Integer value.
# Defaults to hiera('contrail::disc_server_port')
#
# [*gateway*]
# (optional) Default GW for vrouter
# String (IPv4) value.
# Defaults to hiera('contrail::vrouter::gateway')
#
# [*host_ip*]
# (optional) host IP address of vrouter
# String (IPv4) value.
# Defaults to hiera('contrail::vrouter::host_ip')
#
# [*insecure*]
# (optional) insecure connections allowed
# String value.
# Defaults to hiera('contrail::insecure')
#
# [*memcached_servers*]
# (optional) memcached server ip
# String (IPv4) value.
# Defaults to hiera('contrail::memcached_server')
#
# [*metadata_secret*]
# (optional) secret for metadata
# String value.
# Defaults to hiera('contrail::vrouter::metadata_proxy_shared_secret')
#
# [*netmask*]
# (optional) netmask for vrouter interface
# String (IPv4) value.
# Defaults to hiera('contrail::vrouter::netmask')
#
# [*physical_interface*]
# (optional) vrouter interface
# String value.
# Defaults to hiera('contrail::vrouter::physical_interface')
#
# [*internal_vip*]
# (optional) Public VIP to Keystone
# String (IPv4) value.
# Defaults to hiera('internal_api_virtual_ip')
#
# [*is_tsn*]
# (optional) Turns vrouter into TSN
# String value.
# Defaults to hiera('contrail::vrouter::is_tsn',false)
#
# [*is_dpdk*]
# (optional) Turns vrouter into DPDK Compute Node
# String value.
# Defaults to hiera('contrail::vrouter::is_dpdk',false)
#
class tripleo::network::contrail::vrouter (
$step = Integer(hiera('step')),
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$api_port = hiera('contrail::api_port'),
$api_server = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$auth_host = hiera('contrail::auth_host'),
$auth_port = hiera('contrail::auth_port'),
$auth_protocol = hiera('contrail::auth_protocol'),
$ca_file = hiera('contrail::service_certificate',false),
$cert_file = hiera('contrail::service_certificate',false),
$control_server = hiera('contrail::vrouter::control_node_ips'),
$disc_server_ip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$disc_server_port = hiera('contrail::disc_server_port'),
$gateway = hiera('contrail::vrouter::gateway'),
$host_ip = hiera('contrail::vrouter::host_ip'),
$insecure = hiera('contrail::insecure'),
$memcached_servers = hiera('contrail::memcached_server'),
$metadata_secret = hiera('contrail::vrouter::metadata_proxy_shared_secret'),
$netmask = hiera('contrail::vrouter::netmask'),
$physical_interface = hiera('contrail::vrouter::physical_interface'),
$internal_vip = hiera('internal_api_virtual_ip'),
$is_tsn = hiera('contrail::vrouter::is_tsn',false),
$is_dpdk = hiera('contrail::vrouter::is_dpdk',false),
) {
$cidr = netmask_to_cidr($netmask)
notify { 'cidr':
message => $cidr,
}
#include contrail::vrouter
# NOTE: it's not possible to use this class without a functional
# contrail controller up and running
if size($control_server) == 0 {
#$control_server_list = join(hiera('contrail_control_node_ips'), ' ')
$control_server_list = ''
} else {
$control_server_list = join($control_server, ' ')
}
if $auth_protocol == 'https' {
$keystone_config = {
'KEYSTONE' => {
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_token' => $admin_token,
'admin_user' => $admin_user,
'auth_host' => $auth_host,
'auth_port' => $auth_port,
'auth_protocol' => $auth_protocol,
'insecure' => $insecure,
'memcached_servers' => $memcached_servers,
'certfile' => $cert_file,
'cafile' => $ca_file,
},
}
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
'AUTHN_PORT' => $auth_port,
'AUTHN_PROTOCOL' => $auth_protocol,
'certfile' => $cert_file,
'cafile' => $ca_file,
},
}
} else {
$keystone_config = {
'KEYSTONE' => {
'admin_password' => $admin_password,
'admin_tenant_name' => $admin_tenant_name,
'admin_token' => $admin_token,
'admin_user' => $admin_user,
'auth_host' => $auth_host,
'auth_port' => $auth_port,
'auth_protocol' => $auth_protocol,
'insecure' => $insecure,
'memcached_servers' => $memcached_servers,
},
}
$vnc_api_lib_config = {
'auth' => {
'AUTHN_SERVER' => $auth_host,
},
}
}
if $is_tsn {
$macaddress = inline_template("<%= scope.lookupvar('::macaddress_${physical_interface}') -%>")
$vrouter_agent_config = {
'DEFAULT' => {
'agent_mode' => 'tsn',
},
'DNS' => {
'server' => $control_server_list,
},
'CONTROL-NODE' => {
'server' => $control_server_list,
},
'NETWORKS' => {
'control_network_ip' => $host_ip,
},
'VIRTUAL-HOST-INTERFACE' => {
'compute_node_address' => $host_ip,
'gateway' => $gateway,
'ip' => "${host_ip}/${cidr}",
'name' => 'vhost0',
'physical_interface' => $physical_interface,
},
'METADATA' => {
'metadata_proxy_secret' => $metadata_secret,
},
'DISCOVERY' => {
'server' => $disc_server_ip,
'port' => $disc_server_port,
},
}
} elsif $is_dpdk {
$pciaddress = generate('/bin/cat','/etc/contrail/dpdk_pci')
$macaddress = generate('/bin/cat','/etc/contrail/dpdk_mac')
$vrouter_agent_config = {
'DEFAULT' => {
'platform' => 'dpdk',
'physical_uio_driver' => 'uio_pci_generic',
'physical_interface_mac' => $macaddress,
'physical_interface_address' => $pciaddress,
},
'DNS' => {
'server' => $control_server_list,
},
'CONTROL-NODE' => {
'server' => $control_server_list,
},
'NETWORKS' => {
'control_network_ip' => $host_ip,
},
'VIRTUAL-HOST-INTERFACE' => {
'compute_node_address' => $host_ip,
'gateway' => $gateway,
'ip' => "${host_ip}/${cidr}",
'name' => 'vhost0',
'physical_interface' => $physical_interface,
},
'METADATA' => {
'metadata_proxy_secret' => $metadata_secret,
},
'DISCOVERY' => {
'server' => $disc_server_ip,
'port' => $disc_server_port,
},
}
} else {
$macaddress = inline_template("<%= scope.lookupvar('::macaddress_${physical_interface}') -%>")
$vrouter_agent_config = {
'DNS' => {
'server' => $control_server_list,
},
'CONTROL-NODE' => {
'server' => $control_server_list,
},
'NETWORKS' => {
'control_network_ip' => $host_ip,
},
'VIRTUAL-HOST-INTERFACE' => {
'compute_node_address' => $host_ip,
'gateway' => $gateway,
'ip' => "${host_ip}/${cidr}",
'name' => 'vhost0',
'physical_interface' => $physical_interface,
},
'METADATA' => {
'metadata_proxy_secret' => $metadata_secret,
},
'DISCOVERY' => {
'server' => $disc_server_ip,
'port' => $disc_server_port,
},
}
}
class {'contrail::vrouter':
discovery_ip => $disc_server_ip,
gateway => $gateway,
host_ip => $host_ip,
is_tsn => $is_tsn,
is_dpdk => $is_dpdk,
macaddr => $macaddress,
mask => $cidr,
netmask => $netmask,
physical_interface => $physical_interface,
vhost_ip => $host_ip,
keystone_config => $keystone_config,
vrouter_agent_config => $vrouter_agent_config,
vrouter_nodemgr_config => {
'DISCOVERY' => {
'server' => $disc_server_ip,
'port' => $disc_server_port,
},
},
vnc_api_lib_config => $vnc_api_lib_config,
}
if $step >= 5 {
class {'contrail::vrouter::provision_vrouter':
api_address => $api_server,
api_port => $api_port,
host_ip => $host_ip,
node_name => $::hostname,
keystone_admin_user => $admin_user,
keystone_admin_password => $admin_password,
keystone_admin_tenant_name => $admin_tenant_name,
is_tsn => $is_tsn,
is_dpdk => $is_dpdk,
}
}
}

132
manifests/network/contrail/webui.pp

@ -1,132 +0,0 @@
#
# Copyright (C) 2015 Juniper Networks
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::network::contrail::webui
#
# Configure Contrail Webui services
#
# == Parameters:
#
# [*admin_password*]
# (optional) admin password
# String value.
# Defaults to hiera('contrail::admin_password')
#
# [*admin_tenant_name*]
# (optional) admin tenant name.
# String value.
# Defaults to hiera('contrail::admin_tenant_name')
#
# [*admin_token*]
# (optional) admin token
# String value.
# Defaults to hiera('contrail::admin_token')
#
# [*admin_user*]
# (optional) admin user name.
# String value.
# Defaults to hiera('contrail::admin_user')
#
# [*auth_host*]
# (optional) keystone server ip address
# String (IPv4) value.
# Defaults to hiera('contrail::auth_host')
#
# [*auth_port_public*]
# (optional) keystone port.
# Integer value.
# Defaults to hiera('contrail::auth_port_public')
#
# [*auth_protocol*]
# (optional) authentication protocol.
# String value.
# Defaults to hiera('contrail::auth_protocol')
#
# [*cert_file*]
# (optional) cert file name
# String value.
# Defaults to hiera('contrail::service_certificate',false)
#
# [*cassandra_server_list*]
# (optional) List IPs+port of Cassandra servers
# Array of strings value.
# Defaults to hiera('contrail::cassandra_server_list')
#
# [*contrail_analytics_vip*]
# (optional) VIP of Contrail Analytics
# String (IPv4) value.
# Defaults to hiera('contrail_analytics_vip',hiera('internal_api_virtual_ip'))
#
# [*contrail_config_vip*]
# (optional) VIP of Contrail Config
# String (IPv4) value.
# Defaults to hiera('contrail_config_vip',hiera('internal_api_virtual_ip'))
#
# [*contrail_webui_http_port*]
# (optional) Webui HTTP Port
# Integer value.
# Defaults to 8080
#
# [*contrail_webui_https_port*]
# (optional) Webui HTTPS Port
# Integer value.
# Defaults to 8143
#
# [*neutron_vip*]
# (optional) VIP of Neutron
# String (IPv4) value.
# Defaults to hiera('internal_api_virtual_ip')
#
# [*redis_ip*]
# (optional) IP of Redis
# String (IPv4) value.
# Defaults to '127.0.0.1'
#
class tripleo::network::contrail::webui(
$admin_password = hiera('contrail::admin_password'),
$admin_tenant_name = hiera('contrail::admin_tenant_name'),
$admin_token = hiera('contrail::admin_token'),
$admin_user = hiera('contrail::admin_user'),
$auth_host = hiera('internal_api_virtual_ip'),
$auth_protocol = hiera('contrail::auth_protocol'),
$auth_port_public = hiera('contrail::auth_port_public'),
$cassandra_server_list = hiera('contrail_database_node_ips'),
$cert_file = hiera('contrail::service_certificate',false),
$contrail_analytics_vip = hiera('contrail_analytics_vip',hiera('internal_api_virtual_ip')),
$contrail_config_vip = hiera('contrail_config_vip',hiera('internal_api_virtual_ip')),
$contrail_webui_http_port = hiera('contrail::webui::http_port'),
$contrail_webui_https_port = hiera('contrail::webui::https_port'),
$neutron_vip = hiera('internal_api_virtual_ip'),
$redis_ip = hiera('contrail::webui::redis_ip'),
)
{
class {'contrail::webui':
admin_user => $admin_user,
admin_password => $admin_password,
admin_token => $admin_token,
admin_tenant_name => $admin_tenant_name,
auth_port => $auth_port_public,
auth_protocol => $auth_protocol,
cassandra_ip => $cassandra_server_list,
cert_file => $cert_file,
contrail_config_vip => $contrail_config_vip,
contrail_analytics_vip => $contrail_analytics_vip,
contrail_webui_http_port => $contrail_webui_http_port,
contrail_webui_https_port => $contrail_webui_https_port,
neutron_vip => $neutron_vip,
openstack_vip => $auth_host,
redis_ip => $redis_ip,
}
}

40
manifests/profile/base/neutron/opencontrail/vrouter.pp

@ -1,40 +0,0 @@
# Copyright 2016 Red Hat, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
#
# == Class: tripleo::profile::base::neutron::opencontrail::vrouter
#
# Opencontrail profile to run the contrail vrouter
#
# === Parameters
#
# [*step*]
# (Optional) The current step of the deployment
# Defaults to hiera('step')
#
class tripleo::profile::base::neutron::opencontrail::vrouter (
$step = Integer(hiera('step')),
) {
if $step >= 4 {
include contrail::vrouter
# NOTE: it's not possible to use this class without a functional
# contrail controller up and running
#class {'contrail::vrouter::provision_vrouter':
# require => Class['contrail::vrouter'],
#}
}
}