RETIRED, Heat templates for deploying OpenStack

Go to file

Juan Antonio Osorio Robles 645757cbd6 Disable live migration over TLS Due to the fact that it doesn't use a separate CA (or sub CA) for libvirtd, and that proper SASL is not being used. We are disabling this option since it doesn't meet the appropriate security requirements. We'll look into adding this back once these issues get fixed. Change-Id: I6a5e4db1b6dd6bc8b7e73e53b614b070d15b8a23 Closes-Bug: #1730370		2017-11-07 10:14:45 +02:00
ci	Merge "Re-enable containerized fluentd"	2017-11-05 07:23:43 +00:00
common	Merge "Speed up deployment by reusing facts"	2017-11-06 05:09:24 +00:00
deployed-server	Merge "Do not rely on openstack-puppet-modules"	2017-10-24 03:55:37 +00:00
docker	Disable live migration over TLS	2017-11-07 10:14:45 +02:00
environments	Merge "Added a new role definition for SR-IOV Compute role"	2017-11-04 08:45:33 +00:00
extraconfig	Merge "Allow installing multiple-node Kubernetes"	2017-11-04 08:08:41 +00:00
firstboot	Case insentitive MAC address matching in OsNetConfigMappings	2017-09-10 15:05:00 -04:00
network	Make KeystoneURL versionless	2017-11-03 07:57:30 +00:00
plan-samples	Workflow input parameter update in plan-environment	2017-07-05 07:57:43 -04:00
puppet	Disable live migration over TLS	2017-11-07 10:14:45 +02:00
releasenotes	Disable live migration over TLS	2017-11-07 10:14:45 +02:00
roles	Added a new role definition for SR-IOV Compute role	2017-10-25 15:16:28 +05:30
sample-env-generator	Fix standalone ControllerOpenstack vars	2017-10-06 15:04:35 -06:00
scripts	Avoid awk error in hosts-config.sh for large deployments	2017-04-07 10:50:39 +01:00
tools	Update CephPools format in the docker templates to fit ceph-ansible	2017-10-25 09:00:44 +02:00
tripleo_heat_templates	Add pep8 check that generated environments are up to date	2017-09-07 15:30:31 -05:00
validation-scripts	Tolerate network errors in pingtest retry logic	2017-06-30 11:56:55 +01:00
.gitignore	Sample environment generator	2017-06-12 15:02:50 -05:00
.gitreview	Update stackforge references to openstack	2013-08-17 22:57:57 -04:00
.testr.conf	Sample environment generator	2017-06-12 15:02:50 -05:00
all-nodes-validation.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
babel.cfg	Add release configuration.	2013-10-22 17:49:35 +01:00
bindep.txt	Add in roles data validation	2017-07-07 09:51:40 -06:00
bootstrap-config.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
capabilities-map.yaml	Add networking-sfc support	2017-10-10 13:33:32 +00:00
config-download-software.yaml	Config download support for standalone deployments	2017-10-12 22:34:09 +00:00
config-download-structured.yaml	Config download support for standalone deployments	2017-10-12 22:34:09 +00:00
default_passwords.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
hosts-config.yaml	Update the template_version alias for all the templates to pike.	2017-05-19 09:58:07 +02:00
j2_excludes.yaml	Remove ipv6 specific network templates	2017-08-31 13:12:17 -07:00
LICENSE	Add license file	2014-01-20 11:58:20 +01:00
net-config-bond.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-bridge.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-linux-bridge.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-noop.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-static-bridge-with-external-dhcp.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-static-bridge.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-static.yaml	Render IP map and host maps according to network_data.yaml	2017-08-16 13:30:54 +01:00
net-config-undercloud.yaml	Merge "Don't hardcode eth1 for undercloud nic config"	2017-09-22 21:32:35 +00:00
network_data.yaml	Merge "Revert "Fixes heat resource name for Internal API Network""	2017-10-13 09:56:56 +00:00
overcloud-resource-registry-puppet.j2.yaml	Merge "Fix networking settings for ObjectStorage role"	2017-10-28 05:58:39 +00:00
overcloud.j2.yaml	Expose role tags via heat RoleTags output	2017-10-31 11:32:15 +00:00
plan-environment.yaml	Add name and description fields to plan-environment.yaml	2017-04-12 17:25:40 +02:00
README.rst	Merge "Update scenarios doc for Ceph RGW"	2017-10-21 07:11:01 +00:00
requirements.txt	Add in roles data validation	2017-07-07 09:51:40 -06:00
roles_data_undercloud.yaml	Add Mistral event engine	2017-09-28 06:55:46 -04:00
roles_data.yaml	Added a new role definition for SR-IOV Compute role	2017-10-25 15:16:28 +05:30
setup.cfg	Drop deprecated templates/Makefile/merge.py	2015-11-25 15:00:13 -05:00
setup.py	Updated from global requirements	2017-03-28 13:03:01 +00:00
test-requirements.txt	Updated from global requirements	2017-09-26 03:38:07 +00:00
tox.ini	Merge "Run roles data validation in CI"	2017-09-25 05:00:45 +00:00

README.rst

Team and repository tags

tripleo-heat-templates

Heat templates to deploy OpenStack using OpenStack.

Free software: Apache License (2.0)
Documentation: https://docs.openstack.org/tripleo-docs/latest/
Source: http://git.openstack.org/cgit/openstack/tripleo-heat-templates
Bugs: https://bugs.launchpad.net/tripleo

Features

The ability to deploy a multi-node, role based OpenStack deployment using OpenStack Heat. Notable features include:

Choice of deployment/configuration tooling: puppet, (soon) docker

Role based deployment: roles for the controller, compute, ceph, swift, and cinder storage

physical network configuration: support for isolated networks, bonding, and standard ctlplane networking

Directories

A description of the directory layout in TripleO Heat Templates.

environments: contains heat environment files that can be used with -e

on the command like to enable features, etc.

extraconfig: templates used to enable 'extra' functionality. Includes

functionality for distro specific registration and upgrades.

firstboot: example first_boot scripts that can be used when initially

creating instances.

network: heat templates to help create isolated networks and ports

puppet: templates mostly driven by configuration with puppet. To use these

templates you can use the overcloud-resource-registry-puppet.yaml.

validation-scripts: validation scripts useful to all deployment

configurations

roles: example roles that can be used with the tripleoclient to generate

a roles_data.yaml for a deployment See the roles/README.rst for additional details.

Service testing matrix

The configuration for the CI scenarios will be defined in tripleo-heat-templates/ci/ and should be executed according to the following table:

+----------------+-------------+-------------+-------------+-------------+-----------------++-------------+ | - | scenario001 | scenario002 | scenario003 | scenario004 | multinode-nonha | scenario007 | +================+=============+=============+=============+=============+=================+==============+ | keystone | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | glance | rbd | swift | file | swift + rbd | swift | file | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | cinder | rbd | iscsi | | | iscsi | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | heat | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | mysql | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | neutron | ovs | ovs | ovs | ovs | X | ovn | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | neutron-bgpvpn | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ovn | | | | | | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | neutron-l2gw | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | rabbitmq | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | mongodb | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | redis | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | haproxy | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | keepalived | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | memcached | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | pacemaker | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | nova | qemu | qemu | qemu | qemu | X | qemu | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ntp | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | snmp | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | timezone | X | X | X | X | X | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | sahara | | | X | | | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | mistral | | | X | | | X | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | swift | | X | | | X | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | aodh | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ceilometer | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | gnocchi | rbd | swift | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | panko | X | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | barbican | | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | zaqar | | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | ec2api | | X | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | cephrgw | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | tacker | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | congress | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | cephmds | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | manila | | | | X | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | collectd | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | fluentd | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+ | sensu-client | X | | | | | | +----------------+-------------+-------------+-------------+-------------+-----------------+--------------+