Use Octavia's project for lb security group ops

The security group is created under the service tenant but the operations are being run as the admin tenant causing rule creation operations to fail. Change-Id: I3cb1918d94ab56fc96663ae3db6015bcd5c9c547 Closes-Bug: #1814228
2019-01-31 17:36:39 +00:00 · 2019-01-31 17:36:39 +00:00 · 18eceb2195
commit 18eceb2195
parent e4fb2f78f0
2 changed files with 15 additions and 1 deletions
--- a/playbooks/octavia-files.yaml
+++ b/playbooks/octavia-files.yaml
@ -8,7 +8,7 @@
    amp_ssh_key_data: "{{ amp_ssh_key_data }}"
    amp_to_raw: "{{ amp_to_raw | bool }}"
    auth_username: "{{ auth_username }}"
-    auth_pasword: "{{ auth_password }}"
+    auth_password: "{{ auth_password }}"
    auth_project_name: "{{ auth_project_name }}"
  environment:
    OS_USERNAME: "{{ os_username }}"
@ -37,6 +37,8 @@
    ca_passphrase: "{{ ca_passphrase }}"
    client_cert_path: "{{ client_cert_path }}"
    auth_project_name: "{{ auth_project_name }}"
+    auth_username: "{{ auth_username }}"
+    auth_password: "{{ auth_password }}"
  environment:
    OS_USERNAME: "{{ os_username }}"
    OS_USER_DOMAIN_NAME: "Default"
--- a/playbooks/roles/octavia-overcloud-config/tasks/network.yml
+++ b/playbooks/roles/octavia-overcloud-config/tasks/network.yml
@ -45,6 +45,10 @@
      fi
    register: sec_group_rule_one
    changed_when: "sec_group_rule_one.stdout != ''"
+    environment:
+      OS_USERNAME: "{{ auth_username }}"
+      OS_PASSWORD: "{{ auth_password }}"
+      OS_PROJECT_NAME: "{{ auth_project_name }}"
  - name: create security group rule to open amphora management API port
    shell: |
      if [[ $(openstack security group rule list {{ lb_mgmt_sec_grp_name }} --protocol tcp --ingress -f value 2>&1  | grep "0.0.0.0/0 9443:9443") == "" ]]; then
@ -52,6 +56,10 @@
      fi
    register: sec_group_rule_two
    changed_when: "sec_group_rule_two.stdout != ''"
+    environment:
+      OS_USERNAME: "{{ auth_username }}"
+      OS_PASSWORD: "{{ auth_password }}"
+      OS_PROJECT_NAME: "{{ auth_project_name }}"
  - name: create security group for health manager
    shell: |
      if [[ $(openstack security group show {{ lb_health_mgr_sec_grp_name }} > /dev/null; echo $?) -eq 1 ]]; then
@ -68,3 +76,7 @@
      fi
    register: health_mgr_sec_grp_rule
    changed_when: "health_mgr_sec_grp_rule.stdout != ''"
+    environment:
+      OS_USERNAME: "{{ auth_username }}"
+      OS_PASSWORD: "{{ auth_password }}"
+      OS_PROJECT_NAME: "{{ auth_project_name }}"