RETIRED, Heat templates for deploying OpenStack
Go to file
lhinds 7e68dbdf8c Implements AIDE Intrusion Detection System
Introduces a service to configure AIDE Intrusion Detection.

This service init's the database and copies the new database
to the active naming. It also sets a cron job, using email if
`AideEmail` is populated, otherwise the reports are sent to
`/var/log/aide/`.

AIDE rules can be supplied as a hash, and should the rules ever
be changed, the service will populate the new rules and re-init
a fresh integrity database.

Related-Blueprint: tripleo-aide-database
Depends-On: Iac2ceb7fc6b610f8920ae6f75faa2885f3edf6eb
Change-Id: I23d8ba2c43e907372fe079026df1fca5fa1c9881
2018-01-15 13:10:16 +00:00
ci Add support for OVN Metadata Agent 2018-01-12 09:40:06 +00:00
common Start step at 0 for update_ + upgrade_steps_playbook 2018-01-08 16:31:40 +00:00
deployed-server Add connection timeout options to ssh 2018-01-06 15:18:16 +00:00
docker Merge "Add support for OVN Metadata Agent" 2018-01-13 10:47:15 +00:00
environments Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
extraconfig Merge "Convert tags to when statements for Q major upgrade workflow" 2018-01-13 09:39:38 +00:00
firstboot Change template names to queens 2017-11-23 10:15:32 +01:00
network Removal of Contrail templates 2018-01-06 15:25:09 +00:00
plan-samples Workflow input parameter update in plan-environment 2017-07-05 07:57:43 -04:00
puppet Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
releasenotes Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
roles Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
sample-env-generator Add docker-registry service 2017-12-27 01:41:50 +00:00
scripts Avoid awk error in hosts-config.sh for large deployments 2017-04-07 10:50:39 +01:00
tools Merge "Convert tags to when statements for Q major upgrade workflow" 2018-01-13 09:39:38 +00:00
tripleo_heat_templates fix generate_environments to run in python3 2017-12-27 03:25:04 +02:00
validation-scripts Tolerate network errors in pingtest retry logic 2017-06-30 11:56:55 +01:00
zuul.d Revert "Re-enable voting on scenario002-container" 2018-01-13 22:32:26 +00:00
.gitignore Sample environment generator 2017-06-12 15:02:50 -05:00
.gitreview Update stackforge references to openstack 2013-08-17 22:57:57 -04:00
.testr.conf Sample environment generator 2017-06-12 15:02:50 -05:00
all-nodes-validation.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
babel.cfg Add release configuration. 2013-10-22 17:49:35 +01:00
bindep.txt Add in roles data validation 2017-07-07 09:51:40 -06:00
bootstrap-config.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
capabilities-map.yaml Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
config-download-software.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
config-download-structured.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
default_passwords.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
hosts-config.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
j2_excludes.yaml Remove ipv6 specific network templates 2017-08-31 13:12:17 -07:00
LICENSE Add license file 2014-01-20 11:58:20 +01:00
net-config-bond.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-bridge.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-linux-bridge.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-noop.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-static-bridge-with-external-dhcp.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-static-bridge.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-static.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
net-config-undercloud.yaml Change template names to queens 2017-11-23 10:15:32 +01:00
network_data.yaml Fixes InternalApi Heat network resource 2017-10-16 15:41:39 -04:00
overcloud-resource-registry-puppet.j2.yaml Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
overcloud.j2.yaml Merge "Add EndpointMapOverride parameter" 2017-12-04 23:09:48 +00:00
plan-environment.yaml Add name and description fields to plan-environment.yaml 2017-04-12 17:25:40 +02:00
README.rst Update CI coverage in README 2018-01-08 08:58:40 -08:00
requirements.txt Updated from global requirements 2017-11-16 11:30:33 +00:00
roles_data_undercloud.yaml Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
roles_data.yaml Implements AIDE Intrusion Detection System 2018-01-15 13:10:16 +00:00
setup.cfg Drop deprecated templates/Makefile/merge.py 2015-11-25 15:00:13 -05:00
setup.py Updated from global requirements 2017-03-28 13:03:01 +00:00
test-requirements.txt Updated from global requirements 2017-11-16 11:30:33 +00:00
tox.ini Add "clean" tox target 2017-12-13 17:14:36 -06:00

Team and repository tags

image

tripleo-heat-templates

Heat templates to deploy OpenStack using OpenStack.

Features

The ability to deploy a multi-node, role based OpenStack deployment using OpenStack Heat. Notable features include:

  • Choice of deployment/configuration tooling: puppet, (soon) docker
  • Role based deployment: roles for the controller, compute, ceph, swift, and cinder storage
  • physical network configuration: support for isolated networks, bonding, and standard ctlplane networking

Directories

A description of the directory layout in TripleO Heat Templates.

  • environments: contains heat environment files that can be used with -e

    on the command like to enable features, etc.

  • extraconfig: templates used to enable 'extra' functionality. Includes

    functionality for distro specific registration and upgrades.

  • firstboot: example first_boot scripts that can be used when initially

    creating instances.

  • network: heat templates to help create isolated networks and ports
  • puppet: templates mostly driven by configuration with puppet. To use these

    templates you can use the overcloud-resource-registry-puppet.yaml.

  • validation-scripts: validation scripts useful to all deployment

    configurations

  • roles: example roles that can be used with the tripleoclient to generate

    a roles_data.yaml for a deployment See the roles/README.rst for additional details.

Service testing matrix

The configuration for the CI scenarios will be defined in tripleo-heat-templates/ci/ and should be executed according to the following table:

- scn001 scn002 scn003 scn004 scn006 scn007 scn009 non-ha ovh-ha
openshift

X

keystone

X

X

X

X

X

X

X

X

glance

rbd

swift

file

rgw

file

file

file

file

cinder

rbd

iscsi
heat

X

X

ironic

X

mysql

X

X

X

X

X

X

X

X

neutron

ovs

ovs

ovs

ovs

ovs

ovn

ovs

ovs

neutron-bgpvpn

wip

ovn

X

neutron-l2gw

wip

rabbitmq

X

X

X

X

X

X

X

X

mongodb
redis

X

X

haproxy

X

X

X

X

X

X

X

X

memcached

X

X

X

X

X

X

X

X

pacemaker

X

X

X

X

X

X

X

X

nova

qemu

qemu

qemu

qemu

ironic

qemu

qemu

qemu

ntp

X

X

X

X

X

X

X

X

X

snmp

X

X

X

X

X

X

X

X

X

timezone

X

X

X

X

X

X

X

X

X

sahara

X

mistral

X

swift

X

aodh

X

X

ceilometer

X

X

gnocchi

rbd

swift

panko

X

X

barbican

X

zaqar

X

ec2api

X

cephrgw

X

tacker

X

congress

X

cephmds

X

manila

X

collectd

X

fluentd

X

sensu-client

X