check_revocations_for_cached and hash_algorithms are deprecated for
removel because of PKI token format is no longer supported.
Update warning message and add a release note.
Change-Id: Ic360bd95c3cf542ca2833e366102950cecd7ef5b
Closes-Bug: #1804562
Closes-Bug: #1804720
Remove the deprecated rabbit params which has been deprecated for
two years. The default_transport_url has been present for a while
now and should be used.
Change-Id: I0e220dddaac2cf35b84ba1d3cfcc0fe587acbbaa
Option auth_uri from group keystone_authtoken is deprecated[1].
Use option www_authenticate_uri from group keystone_authtoken.
[1]https://review.openstack.org/#/c/508522/
Change-Id: If7049561c6a9e94fc5074112db9597cd8cb6996e
Depends-On: I4c82a63baabd6b9304b302c97cd751a0103d8316
Depends-On: I0dd36ef1f1f5dcdc57413736ecb8f2555712c36d
Closes-Bug: #1759098
Now that the v2.0 API has been removed, we don't have a reason to
include deployment instructions for two separate applications on
different ports.
Change-Id: I6267a1b6189601e117d28be342864688d3522aa6
Add trove::glance_service_type option to configure glance service
type to use when searching catalog.
Change-Id: I14d137a06c793eba3cdff6f9d2776fa7f987dc40
Add pool_timeout option to configure this value for pool_timeout with
SQLAlchemy.
Change-Id: Ib2413bc9da8eb50e310ca1f1e99c5ea0e708d570
Closes-Bug: #1757581
In order to make easy orchestration on all OpenStack db-sync, add this
tag so people can use this tag in composition layer.
A use case it to set some orchestration to make sure MySQL Galera is
ready before running any Exec with this tag.
Change-Id: I7baded10a128532f7267903fa8d14f576cd9f47a
Closes-Bug: #1755102
Add trove::nova_compute_endpoint_type, trove::neutron_endpoint_type,
trove::glance_endpoint_type, trove::cinder_endpoint_type,
trove::swift_endpoint_type, trove::trove_endpoint_type options to
configure endpoint type to use when searching catalog.
Change-Id: Iba9d4033d4b5267c4b2a326499364ac44d89400a
Adds the kombu_failover_strategy option for configuring
oslo.messaging.rabbit. This will determines how the next RabbitMQ node
is chosen in case the one we are currently connected to becomes
unavailable.
Change-Id: If59b301e533a509051876ed88f410c5101425ec2
Closes-Bug: #1748353
The move of policy.json into code means the file may not exist. We've
added support to ensure that the file exists in the openstacklib but we
need to make sure the permissions are right for each service. This adds
the group information to the policies so it works right.
Change-Id: I3c680647c310ad87bb5fb790675a16da784e6e27
Co-Authored-By: Alex Schultz <aschultz@redhat.com>
After removing keystone API v2, trove requires that
trove_auth_url parameter has the v3 URL. Note that
versionless url is not valid for trove_auth_url so
this patch enforces v3 url even when auth_url is
not versioned.
Additionally, the default value for auth_url parameter
has been updated to point to v3.
Change-Id: I8d0e200958c813101d72e180c6da8343b5fcae6e
Keystone v2.0 API was removed so we have no choice but configuring
user_domain_name and project_domain_name otherwise it fallbacks to
Keystone v2.0 and it fails. This patch sets the default value so we make
sure Keystone v3 will be used out of the box for our users.
Change-Id: I4d2a5620e7a4dc5c5fddabd3da0299e0f2211102
The revocation_cache_time is deprecated for removel because of PKI
token format is no longer supported.
Update warning message and add a release note.
Change-Id: Ib4030f83a9201155e5168c164d257a14b9da16e0
Closes-Bug: #1717144
Oslo.messaging uses the transport_url to represent the rpc and
notification messaging driver to use and its full configuration. The
rpc_backend configuration option is deprecated for removal and
should not gate oslo.messaging driver configuration options.
This patch:
* deprecate rpc_backend
* remove conditional check
* update spec tests
* add release note
Change-Id: Idbd5c231d85a0f4d249dabd14bc829844ee3e83d
This commit removes config settings for the API that were set
from within the taskmanager class, and moves them into the API.
This fixes the issue where some neutron settings didn't get
set in the api config file when the api and taskmanager were run on
separate hosts. Specifically, API requests will now return the IP
address of the DB instance when Neutron is used.
Change-Id: I370f137ce12fedb527f1ae7adc013e1dac4dbffe
The review[0] is merged, we should update other releated
puppet modules in order to fix ci.
[0]https://review.openstack.org/#/c/444248/
Change-Id: Icbf1cdd0eaa7944dc2331d64a70e18cd1030ee15
Closes-Bug: #1672362
Single tenant mode creates all DBaaS resources in a given tenant,
rather than the default, which is to use the users own tenant.
It relies on the nova_proxy_admin_* vars for this.
This commit adds a new trove::single_tenant_mode variable, when set
to true, sets up the remote_(nova|cinder|neutron)_client config
vars in the each of the config files for this mode to be enabled.
Change-Id: Ic59bd227fff893c705931ced3add636844533d35
I7ccd995ef01c2d54427684718adba054260fdd52 removed the rpc_backend
declaration for amqp so we need to stop checking for it in the unit
tests.
Change-Id: I05e3252940889831b11245fc8c4df1a94b0505bc
This patch will provide an option for configuring
custom value to the backup_aes-cbc_key parameter
in guestagent configuration file.
Closes-Bug: #1659875
Change-Id: I51a8176c7df4ee80fcf999c37143842f2fdc69ad
The python-memcache package is required if using memcached. By
default the package is not installed and the define has it set to
false. This change allows managing the python-memcache package
install from the authtoken class.
Change-Id: Iee2b5a00c9eb026a42ebd4bf166d06f6bc5f6e27
The signing_dir is deprecated for removel because of PKI token format
is no longer supported.
Update warning message and release note.
Change-Id: I91803e5f2c674e284657bbd40ea32b349a8f393f
Closes-Bug: #1652700
The rabbitmq connection parameters have been deprecated in favor of the
transport_url setting.
Change-Id: I901eee39ae7da6164320f908a2719b8e35d46172
Related-Bug: #1625198
Since we are in ocata lets remove all old parameters in api
to configure the keystone_authtoken section
Change-Id: I2ad9c559768324cb494bcbe719195817b3ca4864
This patch changes the default worker count from ::processorcount to the
new ::os_workers fact. ::os_workers is based on the number of processors
(currently cpu/4) but is capped at a maximum of 8 worker processors.
This is a much more reasonable default in general and prevents excessive
resource consumption on systems with a large number of CPUs.
Change-Id: Idfd8e3f4fe91df7d70e8c35a491c076b0b8f2348
Trove is adding policy support, since it's not yet released (landing in
Newton) this code will not auto-include the policy class as other
modules do. That will be done later after all distros support a Trove
version with a policy.json file.
Change-Id: Iae8f8bf341ae17190676c524444600e660420e46
In trove::api, use keystone::resource::authtoken to configure
keystone_authtoken section in trove.conf, with all parameters required
to configure keystonemiddleware.
This patch will allow to deploy Trove to use Keystone v3
authentification.
Some deprecations:
- trove::api::keystone_tenant is deprecated in favor of trove::keystone::authtoken::project_name.
- trove::api::keystone_user is deprecated in favor of trove::keystone::authtoken::username.
- trove::api::keystone_password is deprecated in favor of trove::keystone::authtoken::password.
- trove::api::identity_uri is deprecated in favor of trove::keystone::authtoken::auth_url.
- trove::api::auth_uri is deprecated in favor of trove::keystone::authtoken::auth_uri.
Change-Id: I808ebda1c4ec3a5b2ed294eb8af4eecafa861051
Closes-Bug: #1604463