check_revocations_for_cached and hash_algorithms are deprecated for
removel because of PKI token format is no longer supported.
Update warning message and add a release note.
Change-Id: Ic360bd95c3cf542ca2833e366102950cecd7ef5b
Closes-Bug: #1804562
Closes-Bug: #1804720
This revemos the deprecated options rabbit_host,
rabbit_hosts and rabbit_port params in the
trove::guestagent class.
Changes the guestagent config file to use the
transport_url instead of the rabbit options. [1]
[1] https://review.openstack.org/#/c/609981/
Change-Id: I2f102eb15fe59459ab1eed2e4cf87ad3c54d5c78
Remove the deprecated rabbit params which has been deprecated for
two years. The default_transport_url has been present for a while
now and should be used.
Change-Id: I0e220dddaac2cf35b84ba1d3cfcc0fe587acbbaa
Option auth_uri from group keystone_authtoken is deprecated[1].
Use option www_authenticate_uri from group keystone_authtoken.
[1]https://review.openstack.org/#/c/508522/
Change-Id: If7049561c6a9e94fc5074112db9597cd8cb6996e
Depends-On: I4c82a63baabd6b9304b302c97cd751a0103d8316
Depends-On: I0dd36ef1f1f5dcdc57413736ecb8f2555712c36d
Closes-Bug: #1759098
Add trove::glance_service_type option to configure glance service
type to use when searching catalog.
Change-Id: I14d137a06c793eba3cdff6f9d2776fa7f987dc40
Add pool_timeout option to configure this value for pool_timeout with
SQLAlchemy.
Change-Id: Ib2413bc9da8eb50e310ca1f1e99c5ea0e708d570
Closes-Bug: #1757581
In order to make easy orchestration on all OpenStack db-sync, add this
tag so people can use this tag in composition layer.
A use case it to set some orchestration to make sure MySQL Galera is
ready before running any Exec with this tag.
Change-Id: I7baded10a128532f7267903fa8d14f576cd9f47a
Closes-Bug: #1755102
Add trove::nova_compute_endpoint_type, trove::neutron_endpoint_type,
trove::glance_endpoint_type, trove::cinder_endpoint_type,
trove::swift_endpoint_type, trove::trove_endpoint_type options to
configure endpoint type to use when searching catalog.
Change-Id: Iba9d4033d4b5267c4b2a326499364ac44d89400a
Adds the kombu_failover_strategy option for configuring
oslo.messaging.rabbit. This will determines how the next RabbitMQ node
is chosen in case the one we are currently connected to becomes
unavailable.
Change-Id: If59b301e533a509051876ed88f410c5101425ec2
Closes-Bug: #1748353
After removing keystone API v2, trove requires that
trove_auth_url parameter has the v3 URL. Note that
versionless url is not valid for trove_auth_url so
this patch enforces v3 url even when auth_url is
not versioned.
Additionally, the default value for auth_url parameter
has been updated to point to v3.
Change-Id: I8d0e200958c813101d72e180c6da8343b5fcae6e
Keystone v2.0 API was removed so we have no choice but configuring
user_domain_name and project_domain_name otherwise it fallbacks to
Keystone v2.0 and it fails. This patch sets the default value so we make
sure Keystone v3 will be used out of the box for our users.
Change-Id: I4d2a5620e7a4dc5c5fddabd3da0299e0f2211102
The revocation_cache_time is deprecated for removel because of PKI
token format is no longer supported.
Update warning message and add a release note.
Change-Id: Ib4030f83a9201155e5168c164d257a14b9da16e0
Closes-Bug: #1717144
Oslo.messaging uses the transport_url to represent the rpc and
notification messaging driver to use and its full configuration. The
rpc_backend configuration option is deprecated for removal and
should not gate oslo.messaging driver configuration options.
This patch:
* deprecate rpc_backend
* remove conditional check
* update spec tests
* add release note
Change-Id: Idbd5c231d85a0f4d249dabd14bc829844ee3e83d
This commit removes config settings for the API that were set
from within the taskmanager class, and moves them into the API.
This fixes the issue where some neutron settings didn't get
set in the api config file when the api and taskmanager were run on
separate hosts. Specifically, API requests will now return the IP
address of the DB instance when Neutron is used.
Change-Id: I370f137ce12fedb527f1ae7adc013e1dac4dbffe
Single tenant mode creates all DBaaS resources in a given tenant,
rather than the default, which is to use the users own tenant.
It relies on the nova_proxy_admin_* vars for this.
This commit adds a new trove::single_tenant_mode variable, when set
to true, sets up the remote_(nova|cinder|neutron)_client config
vars in the each of the config files for this mode to be enabled.
Change-Id: Ic59bd227fff893c705931ced3add636844533d35
The parameter name used to enforce package state is inconsistent across
manifests and modules. I settle on package_ensure since it's already
widely used.
Change-Id: I887e924d184d9b25c33b5fe617d82f170d0cee34
Closes-Bug: #1668732
This patch will provide an option for configuring
custom value to the backup_aes-cbc_key parameter
in guestagent configuration file.
Closes-Bug: #1659875
Change-Id: I51a8176c7df4ee80fcf999c37143842f2fdc69ad
The python-memcache package is required if using memcached. By
default the package is not installed and the define has it set to
false. This change allows managing the python-memcache package
install from the authtoken class.
Change-Id: Iee2b5a00c9eb026a42ebd4bf166d06f6bc5f6e27
The signing_dir is deprecated for removel because of PKI token format
is no longer supported.
Update warning message and release note.
Change-Id: I91803e5f2c674e284657bbd40ea32b349a8f393f
Closes-Bug: #1652700
The rabbitmq connection parameters have been deprecated in favor of the
transport_url setting.
Change-Id: I901eee39ae7da6164320f908a2719b8e35d46172
Related-Bug: #1625198
Since we are in ocata lets remove all old parameters in api
to configure the keystone_authtoken section
Change-Id: I2ad9c559768324cb494bcbe719195817b3ca4864
This patch changes the default worker count from ::processorcount to the
new ::os_workers fact. ::os_workers is based on the number of processors
(currently cpu/4) but is capped at a maximum of 8 worker processors.
This is a much more reasonable default in general and prevents excessive
resource consumption on systems with a large number of CPUs.
Change-Id: Idfd8e3f4fe91df7d70e8c35a491c076b0b8f2348
Trove is adding policy support, since it's not yet released (landing in
Newton) this code will not auto-include the policy class as other
modules do. That will be done later after all distros support a Trove
version with a policy.json file.
Change-Id: Iae8f8bf341ae17190676c524444600e660420e46
In trove::api, use keystone::resource::authtoken to configure
keystone_authtoken section in trove.conf, with all parameters required
to configure keystonemiddleware.
This patch will allow to deploy Trove to use Keystone v3
authentification.
Some deprecations:
- trove::api::keystone_tenant is deprecated in favor of trove::keystone::authtoken::project_name.
- trove::api::keystone_user is deprecated in favor of trove::keystone::authtoken::username.
- trove::api::keystone_password is deprecated in favor of trove::keystone::authtoken::password.
- trove::api::identity_uri is deprecated in favor of trove::keystone::authtoken::auth_url.
- trove::api::auth_uri is deprecated in favor of trove::keystone::authtoken::auth_uri.
Change-Id: I808ebda1c4ec3a5b2ed294eb8af4eecafa861051
Closes-Bug: #1604463
We had a prelude note when releasing Mitaka. This note
keep showing-up at every release while we're on Newton now.
We don't need a prelude release note, we already have nice sections
for every note we push.
This patch aims to remove this prelude starting from Newton.
Change-Id: I36ef29c09ce4d6cd4f166c5a9fbe86f1f69d572e
This commit adds the transport_url parameters for oslo.messaging. The
url is of the form:
transport://user:pass@host1:port[,hostN:portN]/virtual_host
Where the transport scheme specifies the rpc or notification backend
as one of rabbit, amqp, zmq, etc. Oslo.messaging is deprecating the
host, port, and auth configuration options [1]. All drivers will get
these options via the transport_url.
This patch:
* use oslo::messaging::default resource
* use oslo::messaging::notifications resource
* add parameters for transport_url(s)
* correct config file for amqp backend
* update spec tests
* add feature release note
[1] https://review.openstack.org/#/c/317285/
Change-Id: I8d0132f23aa05ed267ff2d88bce61ce9f20160f5
While we were already able to pick an independent auth_name and
service_name; the service_name was defaulting to auth_name. Now it
has a value of its own to be consistent with other modules.
Change-Id: If3f29c1f4efe2eeb5ff9173628403dfcc7f48e57
Related-Bug: #1590040