RETIRED, Heat templates for deploying OpenStack

Go to file

Douglas Mendizábal 04b4ec3866 Identify HSMs using labels instead of Slot ID This patch adds support for two new options in barbican.conf for the PKCS#11 backend plugin: [p11_crypto]token_label and [p11_crypto]token_serial_number by adding two new parameters to the Barbican deployment BarbicanPkcs11CryptoTokenSerialNumber and BarbicanPkcs11CryptoTokenLabel. This patch also simplifies the use of barbican-manage to generate the MKEK and PKEK in the HSM backend by using the values provided in barbican.conf instead of duplicating them on the command line. For the Thales Luna Network device, this patch uses the label parameters to identify the partition to be used. Because we are using labels we no longer need to write the runtime generated Slot ID of the HA group into hieradata. Depends-On: I4e86e73bbdef0e16d3699cec1cc8f7e17dfb643b Change-Id: Id05acb6516daa62279c9aade41256bcec7c5fce7		2020-11-30 14:11:10 +00:00
ci	Merge "Re-enable driver agent for scenario 13"	2020-11-25 03:16:22 +00:00
common	Merge "Fix swift containers idempotency"	2020-11-06 21:01:26 +00:00
container_config_scripts	fix nova_statedir_ownership	2020-11-20 16:05:21 +01:00
deployed-server	Make NetworkConfigWithAnsible parameter non-role specific	2020-10-15 19:41:27 +05:30
deployment	Identify HSMs using labels instead of Slot ID	2020-11-30 14:11:10 +00:00
environments	Identify HSMs using labels instead of Slot ID	2020-11-30 14:11:10 +00:00
extraconfig	Set dns_name propery on ports and networks	2020-04-03 08:57:38 +02:00
firstboot	os-net-config-mappings move out of firsboot	2020-09-07 13:26:08 +00:00
network	Add hostname and stack_name tags to ports	2020-11-14 00:39:29 +00:00
plan-samples	Merge "Update plan-sample to reference new interface"	2020-09-19 00:07:13 +00:00
puppet	Add hostname and stack_name tags to ports	2020-11-14 00:39:29 +00:00
releasenotes	Set correct default NovaLibvirtCPUMode	2020-11-25 15:16:15 +01:00
roles	Move cell_v2 discovery off compute hosts	2020-11-18 12:21:59 +00:00
sample-env-generator	Merge "Remove Sahara support"	2020-11-06 03:12:06 +00:00
scripts	Fix typos	2020-09-16 15:45:12 +05:30
tools	Merge "Allow to configure vxlan network type for OVN"	2020-11-20 13:17:10 +00:00
tripleo_heat_templates	Fix typos	2020-09-16 15:45:12 +05:30
zuul.d	Add Python3 victoria unit tests	2020-11-09 08:39:38 +00:00
.gitignore	Remove mac_hostname & random_string	2019-07-18 19:10:31 +00:00
.gitreview	OpenDev Migration Patch	2019-04-19 19:34:55 +00:00
.testr.conf	Improve nova statedir ownership logic	2018-07-09 17:07:30 +01:00
babel.cfg	Add release configuration.	2013-10-22 17:49:35 +01:00
bindep.txt	include gcc,python36-devel in bindep, for tests	2020-10-03 19:24:53 +10:00
config-download-software.yaml	Don't use POLL_SERVER_CFN transport for DeployedServer	2020-10-17 10:21:11 +05:30
config-download-structured.yaml	Don't use POLL_SERVER_CFN transport for DeployedServer	2020-10-17 10:21:11 +05:30
default_passwords.yaml	Change template names to rocky	2018-05-09 08:28:42 +02:00
j2_excludes.yaml	Remove ipv6 specific network templates	2017-08-31 13:12:17 -07:00
LICENSE	Add license file	2014-01-20 11:58:20 +01:00
lower-constraints.txt	Fix Flakes and lower-constraints errors	2020-09-10 11:10:54 +02:00
network_data_dashboard.yaml	Add a StorageDashboard network used by CephGrafana service	2019-08-30 19:16:47 +02:00
network_data_ganesha.yaml	Use appropriate allocation pools for StorageNFS	2020-08-26 15:27:52 +00:00
network_data_routed.yaml	Merge "Allow overlay tunnel endpoints on IPv6 address"	2019-01-10 21:13:19 +00:00
network_data_subnets_routed.yaml	L3 routed networks - data + env (1/3)	2018-12-30 19:24:29 +01:00
network_data_undercloud.yaml	Add network data for the undercloud	2019-01-21 19:35:37 +01:00
network_data.yaml	Add external_resource_vip_id property to network_data.yaml	2019-03-25 10:48:40 -04:00
overcloud-resource-registry-puppet.j2.yaml	Move cell_v2 discovery off compute hosts	2020-11-18 12:21:59 +00:00
overcloud.j2.yaml	Merge "Fix typo in bond options group var name (2/2)"	2020-11-28 12:29:39 +00:00
plan-environment.yaml	Add name and description fields to plan-environment.yaml	2017-04-12 17:25:40 +02:00
README.rst	Remove Sahara support	2020-10-19 09:39:36 +09:00
requirements.txt	Deprecate EnablePaunch and remove Paunch support	2020-06-03 17:53:40 +00:00
roles_data_undercloud.yaml	Concatenate host_routes and default route in overcloud.yaml	2020-10-04 12:28:22 +02:00
roles_data.yaml	Merge "Remove Sahara support"	2020-11-06 03:12:06 +00:00
setup.cfg	Replace git.openstack.org URLs with opendev.org URLs	2019-06-26 02:43:46 +00:00
setup.py	Updated from global requirements	2017-03-28 13:03:01 +00:00
test-ansible-requirements.txt	Ansible lint check in THT	2019-10-30 04:56:05 -04:00
test-requirements.txt	Fix Flakes and lower-constraints errors	2020-09-10 11:10:54 +02:00
tox.ini	Replace deprecated UPPER_CONSTRAINTS_FILE variable	2020-11-04 11:11:22 +01:00

README.rst

Team and repository tags

tripleo-heat-templates

Heat templates to deploy OpenStack using OpenStack.

Free software: Apache License (2.0)
Documentation: https://docs.openstack.org/tripleo-docs/latest/
Source: https://opendev.org/openstack/tripleo-heat-templates
Bugs: https://bugs.launchpad.net/tripleo
Release notes: https://docs.openstack.org/releasenotes/tripleo-heat-templates/

Features

The ability to deploy a multi-node, role based OpenStack deployment using OpenStack Heat. Notable features include:

Choice of deployment/configuration tooling: puppet, (soon) docker

Role based deployment: roles for the controller, compute, ceph, swift, and cinder storage

physical network configuration: support for isolated networks, bonding, and standard ctlplane networking

Directories

A description of the directory layout in TripleO Heat Templates.

environments: contains heat environment files that can be used with -e

on the command like to enable features, etc.

extraconfig: templates used to enable 'extra' functionality. Includes

functionality for distro specific registration and upgrades.

firstboot: example first_boot scripts that can be used when initially

creating instances.

network: heat templates to help create isolated networks and ports

puppet: templates mostly driven by configuration with puppet. To use these

templates you can use the overcloud-resource-registry-puppet.yaml.

validation-scripts: validation scripts useful to all deployment

configurations

roles: example roles that can be used with the tripleoclient to generate

a roles_data.yaml for a deployment See the roles/README.rst for additional details.

Service testing matrix

The configuration for the CI scenarios will be defined in tripleo-heat-templates/ci/ and should be executed according to the following table:

-	scn000	scn001	scn002	scn003	scn004	scn006	scn007	scn009	scn010	scn013	non-ha	ovh-ha
keystone	X	X	X	X	X	X	X		X	X	X	X
glance		rbd	swift	file	rgw	file	file		rbd	file	file	file
cinder		rbd	iscsi
heat		X	X
ironic						X
mysql	X	X	X	X	X	X	X		X	X	X	X
neutron		ovn	ovn	ovn	ovn	ovn	ovs		ovn	ovn	ovn	ovn
neutron-bgpvpn					wip
ovn							X
neutron-l2gw					wip
om-rpc		rabbit	rabbit	amqp1	rabbit	rabbit	rabbit		rabbit	rabbit	rabbit	rabbit
om-notify		rabbit	rabbit	rabbit	rabbit	rabbit	rabbit		rabbit	rabbit	rabbit	rabbit
redis		X	X
haproxy		X	X	X	X	X	X		X	X	X	X
memcached		X	X	X	X	X	X		X	X	X	X
pacemaker		X	X	X	X	X	X		X	X	X	X
nova		qemu	qemu	qemu	qemu	ironic	qemu		qemu	qemu	qemu	qemu
placement		X	X	X	X	X	X		X	X	X	X
ntp	X	X	X	X	X	X	X	X	X	X	X	X
snmp	X	X	X	X	X	X	X	X	X	X	X	X
timezone	X	X	X	X	X	X	X	X	X	X	X	X
mistral				X
swift			X
aodh		X	X
ceilometer		X	X
gnocchi		rbd	swift
barbican			X
zaqar			X
cephrgw					X
cephmds					X
manila					X
collectd		X
designate				X
octavia									X	X
rear		X
Extra Firewall				X