5e46c2a579
This change combines the previous puppet and docker files into a single file that performs the docker service installation and configuration for the barbican API service. The barbican backend files are also moved into the deployment/barbican directory for consistency. Change-Id: Ib4a3993ac352e9e00f72ddf374042b574f6d55d6 Related-Blueprint: services-yaml-flattening
66 lines
2.2 KiB
YAML
66 lines
2.2 KiB
YAML
heat_template_version: rocky
|
|
|
|
description: >
|
|
Barbican API Dogtag backend configured with Puppet
|
|
|
|
parameters:
|
|
# Required default parameters
|
|
ServiceData:
|
|
default: {}
|
|
description: Dictionary packing service data
|
|
type: json
|
|
ServiceNetMap:
|
|
default: {}
|
|
description: Mapping of service_name -> network name. Typically set
|
|
via parameter_defaults in the resource registry. This
|
|
mapping overrides those in ServiceNetMapDefaults.
|
|
type: json
|
|
DefaultPasswords:
|
|
default: {}
|
|
type: json
|
|
RoleName:
|
|
default: ''
|
|
description: Role name on which the service is applied
|
|
type: string
|
|
RoleParameters:
|
|
default: {}
|
|
description: Parameters specific to the role
|
|
type: json
|
|
EndpointMap:
|
|
default: {}
|
|
description: Mapping of service endpoint -> protocol. Typically set
|
|
via parameter_defaults in the resource registry.
|
|
type: json
|
|
BarbicanDogtagStoreHost:
|
|
description: Hostname of the Dogtag server
|
|
type: string
|
|
BarbicanDogtagStorePort:
|
|
description: Port for the Dogtag server
|
|
default: 8443
|
|
type: number
|
|
BarbicanDogtagStorePEMPath:
|
|
description: Path for the PEM file used to authenticate requests
|
|
type: string
|
|
default: '/etc/barbican/kra_admin_cert.pem'
|
|
hidden: true
|
|
BarbicanDogtagStoreNSSPassword:
|
|
description: Password for the NSS DB
|
|
type: string
|
|
hidden: true
|
|
BarbicanDogtagStoreGlobalDefault:
|
|
description: Whether this plugin is the global default plugin
|
|
type: boolean
|
|
default: false
|
|
|
|
outputs:
|
|
role_data:
|
|
description: Role data for the Barbican Dogtag backend.
|
|
value:
|
|
service_name: barbican_backend_dogtag
|
|
config_settings:
|
|
barbican::plugins::dogtag::dogtag_plugin_dogtag_host: {get_param: BarbicanDogtagStoreHost}
|
|
barbican::plugins::dogtag::dogtag_plugin_dogtag_port: {get_param: BarbicanDogtagStorePort}
|
|
barbican::plugins::dogtag::dogtag_plugin_pem_path: {get_param: BarbicanDogtagStorePEMPath}
|
|
barbican::plugins::dogtag::dogtag_plugin_nss_password: {get_param: BarbicanDogtagStoreNSSPassword}
|
|
barbican::plugins::dogtag::global_default: {get_param: BarbicanDogtagStoreGlobalDefault}
|