tripleo-heat-templates/puppet/services
Giulio Fidente d1edc33b3c Use Keystone internal endpoint instead of admin for nova-ironic
As per I1213a83ef8693c1cca1d20de974f7949a801d9f1 this moves to
using KeystoneInternal for the nova-ironic template and updates
some deprecated hiera keys.

Change-Id: Ib1103c00ddb7d6d624f4911147197d8355a3a6dd
2017-02-14 02:41:18 +00:00
..
database Add telemetry service support for composable upgrades 2017-01-25 21:04:18 +00:00
disabled Add glance registry service to disable on upgrade 2017-01-24 21:33:08 +00:00
logging Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
metrics implement a collectd composable service 2017-02-07 11:54:14 +00:00
monitoring Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
network Re-organizes Contrail services to the correct roles 2017-02-08 20:25:41 +01:00
pacemaker Add Ceph RBD mirror Pacemaker profile 2017-01-26 12:24:56 +00:00
time Deploy NTP with puppet-tripleo profile 2017-01-19 12:21:45 +00:00
aodh-api.yaml Remove aodh db sync from ansible upgrade 2017-02-10 06:58:02 +00:00
aodh-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
aodh-evaluator.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
aodh-listener.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
aodh-notifier.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
apache-internal-tls-certmonger.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
apache.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
auditd.yaml Add AuditD composable service 2017-01-27 13:23:18 +00:00
barbican-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
ca-certs.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
ceilometer-agent-central.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
ceilometer-agent-compute.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
ceilometer-agent-notification.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
ceilometer-api.yaml Remove openstack-ceilometer-api pre upgrade check 2017-02-06 16:26:56 +01:00
ceilometer-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
ceilometer-collector.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
ceilometer-expirer.yaml Remove openstack-ceilometer-expirer check 2017-02-03 13:12:27 +01:00
ceph-base.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
ceph-client.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
ceph-external.yaml Conform CephExternal template to the new hiera hook 2017-01-25 19:54:11 +00:00
ceph-mds.yaml Add support for the deployment of Ceph MDS 2017-01-10 17:30:16 +01:00
ceph-mon.yaml Do not try to update the 'ceph' metapackage from CephMon role 2017-01-26 13:40:49 +00:00
ceph-osd.yaml Switch item notation to jinja format 2017-02-02 18:46:48 +01:00
ceph-rgw.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
cinder-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
cinder-backend-dellps.yaml Composable services support for Cinder Dell EMC PS Series 2017-02-07 11:54:24 +00:00
cinder-backend-dellsc.yaml Composable service support for Cinder Dell EMC Storage Center 2017-02-03 12:07:33 -06:00
cinder-backend-scaleio.yaml Enables support for configuring Cinder with Dell EMC 2017-02-07 12:06:47 -06:00
cinder-backup.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
cinder-base.yaml cinder: move glance params into base 2017-01-19 18:42:16 -05:00
cinder-hpelefthand-iscsi.yaml Check that all templates are using the release alias 2017-01-18 12:30:15 +01:00
cinder-scheduler.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
cinder-volume.yaml Remove [heat,glance,ironic,cinder,keystone] db sync from ansible 2017-02-13 13:54:21 +02:00
congress.yaml adding Congress Support 2017-02-10 09:59:38 -05:00
ec2-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
etcd.yaml Adds etcd composable service 2017-01-19 00:00:39 -05:00
glance-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
glance-base.yaml Remove Glance Registry service 2017-01-16 17:04:19 -05:00
gnocchi-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
gnocchi-base.yaml Remove create-legacy-resource-types opts 2017-01-26 20:03:18 +00:00
gnocchi-metricd.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
gnocchi-statsd.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
haproxy-internal-tls-certmonger.yaml Add metadata settings for needed kerberos principals 2017-01-25 00:33:11 +02:00
haproxy-public-tls-certmonger.yaml Add metadata settings for needed kerberos principals 2017-01-25 00:33:11 +02:00
haproxy.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
heat-api-cfn.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
heat-api-cloudwatch.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
heat-api.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
heat-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
heat-engine.yaml Remove [heat,glance,ironic,cinder,keystone] db sync from ansible 2017-02-13 13:54:21 +02:00
horizon.yaml Merge "Manage password_validator regex" 2017-01-25 23:50:48 +00:00
ironic-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
ironic-base.yaml Merge "DB connection: prevent src address from binding to a VIP" 2017-01-04 16:43:34 +00:00
ironic-conductor.yaml Remove [heat,glance,ironic,cinder,keystone] db sync from ansible 2017-02-13 13:54:21 +02:00
keepalived.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
kernel.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
keystone.yaml Remove [heat,glance,ironic,cinder,keystone] db sync from ansible 2017-02-13 13:54:21 +02:00
manila-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
manila-backend-cephfs.yaml Merge "Set manila cephfs backend if ceph is deployed" 2017-01-18 10:20:55 +00:00
manila-backend-generic.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
manila-backend-netapp.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
manila-base.yaml Merge "DB connection: prevent src address from binding to a VIP" 2017-01-04 16:43:34 +00:00
manila-scheduler.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
manila-share.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
memcached.yaml implement a collectd composable service 2017-02-07 11:54:14 +00:00
mistral-api.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
mistral-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
mistral-engine.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
mistral-executor.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
neutron-base.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-compute-plugin-midonet.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-compute-plugin-nuage.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-compute-plugin-ovn.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-compute-plugin-plumgrid.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-dhcp.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
neutron-l3-compute-dvr.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-l3.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
neutron-metadata.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
neutron-midonet.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-ovs-agent.yaml Adds a pre-upgrade check that service is running (step0) 2017-01-27 11:20:15 +02:00
neutron-ovs-dpdk-agent.yaml Merge "Configure DPDK options to isolate PMD cores and ovs process cores" 2017-01-31 12:51:19 +00:00
neutron-plugin-ml2-fujitsu-cfab.yaml Bump missing template names to ocata 2017-01-17 17:04:49 +01:00
neutron-plugin-ml2-fujitsu-fossw.yaml Add THT for fossw ML2 plugin in networking-fujitsu 2017-01-19 12:55:47 -05:00
neutron-plugin-ml2-ovn.yaml Merge "Bump template version for all templates to "ocata"" 2017-01-03 10:31:44 +00:00
neutron-plugin-ml2.yaml Remove unused SR-IOV parameter NeutronSupportedPCIVendorDevs 2017-02-02 11:18:07 +05:30
neutron-plugin-nuage.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
neutron-plugin-plumgrid.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
neutron-sriov-agent.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
nova-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
nova-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
nova-compute.yaml implement a collectd composable service 2017-02-07 11:54:14 +00:00
nova-conductor.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
nova-consoleauth.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
nova-ironic.yaml Use Keystone internal endpoint instead of admin for nova-ironic 2017-02-14 02:41:18 +00:00
nova-libvirt.yaml Configure VNC Server listen address through t-h-t 2017-02-01 22:35:42 +02:00
nova-metadata.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
nova-placement.yaml Merge "nova-placement: support upgrade" 2017-02-13 16:15:38 +00:00
nova-scheduler.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
nova-vnc-proxy.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
octavia-api.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
octavia-base.yaml Add Octavia API service definitions 2017-01-18 15:14:54 -03:30
octavia-health-manager.yaml Introduce Octavia implementation services 2017-01-30 17:24:20 -03:30
octavia-housekeeping.yaml Introduce Octavia implementation services 2017-01-30 17:24:20 -03:30
octavia-worker.yaml Introduce Octavia implementation services 2017-01-30 17:24:20 -03:30
opendaylight-api.yaml Removes deprecated OpenDaylight L2 only deployments 2017-01-10 16:15:29 -05:00
opendaylight-ovs.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
ovn-dbs.yaml Bump missing template names to ocata 2017-01-17 17:04:49 +01:00
pacemaker_remote.yaml pacemaker remote profile support 2017-01-24 12:18:14 +01:00
pacemaker.yaml Merge "Adds cluster status check_and_fail before running upgrade (step0)" 2017-02-12 15:47:29 +00:00
panko-api.yaml Add metadata settings for needed kerberos principals 2017-01-25 00:33:11 +02:00
panko-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
rabbitmq.yaml Merge "Force epmd listening to a specific address" 2017-01-20 08:39:37 +00:00
README.rst Reduce number of steps for upgrades 2017-02-03 11:43:47 +00:00
sahara-api.yaml Add sahara service support for composable upgrades 2017-01-19 17:22:32 +00:00
sahara-base.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
sahara-engine.yaml Add sahara service support for composable upgrades 2017-01-19 17:22:32 +00:00
services.yaml Add support for batched upgrades to composable upgrades 2017-01-25 21:03:01 +00:00
snmp.yaml Add snmp service support for composable upgrades 2017-01-25 09:54:03 +00:00
sshd.yaml Adds SSH Banner text into sshd_config 2017-01-26 11:04:01 +00:00
swift-base.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
swift-proxy.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00
swift-ringbuilder.yaml Auto-set SwiftMountCheck and SwiftUseLocalDir settings 2017-01-06 08:32:18 +01:00
swift-storage.yaml Merge "Auto-set SwiftMountCheck and SwiftUseLocalDir settings" 2017-01-25 21:10:01 +00:00
tacker.yaml Adding Tacker Support 2017-02-09 20:23:36 +00:00
tripleo-firewall.yaml Bump template version for all templates to "ocata" 2016-12-23 11:43:39 +00:00
tripleo-packages.yaml Adds a step0 for pre upgrade-init checks 2017-01-13 12:34:57 +00:00
zaqar.yaml Use Keystone internal endpoint instead of admin for services 2017-02-14 02:41:13 +00:00

services

A TripleO nested stack Heat template that encapsulates generic configuration data to configure a specific service. This generally includes everything needed to configure the service excluding the local bind ports which are still managed in the per-node role templates directly (controller.yaml, compute.yaml, etc.). All other (global) service settings go into the puppet/service templates.

Input Parameters

Each service may define its own input parameters and defaults. Operators will use the parameter_defaults section of any Heat environment to set per service parameters.

Config Settings

Each service may define a config_settings output variable which returns Hiera settings to be configured.

Deployment Steps

Each service may define an output variable which returns a puppet manifest snippet that will run at each of the following steps. Earlier manifests are re-asserted when applying latter ones.

  • config_settings: Custom hiera settings for this service.

  • global_config_settings: Additional hiera settings distributed to all roles.

  • step_config: A puppet manifest that is used to step through the deployment sequence. Each sequence is given a "step" (via hiera('step') that provides information for when puppet classes should activate themselves.

    Steps correlate to the following:

    1. Load Balancer configuration
    2. Core Services (Database/Rabbit/NTP/etc.)
    3. Early Openstack Service setup (Ringbuilder, etc.)
    4. General OpenStack Services
    5. Service activation (Pacemaker)

Batch Upgrade Steps

Each service template may optionally define a upgrade_batch_tasks key, which is a list of ansible tasks to be performed during the upgrade process.

Similar to the step_config, we allow a series of steps for the per-service upgrade sequence, defined as ansible tasks with a tag e.g "step1" for the first step, "step2" for the second, etc (currently only two steps are supported, but more may be added when required as additional services get converted to batched upgrades).

Note that each step is performed in batches, then we move on to the next step which is also performed in batches (we don't perform all steps on one node, then move on to the next one which means you can sequence rolling upgrades of dependent services via the step value).

The tasks performed at each step is service specific, but note that all batch upgrade steps are performed before the upgrade_tasks described below. This means that all services that support rolling upgrades can be upgraded without downtime during upgrade_batch_tasks, then any remaining services are stopped and upgraded during upgrade_tasks

The default batch size is 1, but this can be overridden for each role via the upgrade_batch_size option in roles_data.yaml

Upgrade Steps

Each service template may optionally define a upgrade_tasks key, which is a list of ansible tasks to be performed during the upgrade process.

Similar to the step_config, we allow a series of steps for the per-service upgrade sequence, defined as ansible tasks with a tag e.g "step1" for the first step, "step2" for the second, etc.

Steps/tages correlate to the following:

  1. Quiesce the control-plane, e.g disable LoadBalancer, stop pacemaker cluster
  2. Stop all control-plane services, ready for upgrade
  3. Perform a package update, (either specific packages or the whole system)
  4. Start services needed for migration tasks (e.g DB)
  5. Perform any migration tasks, e.g DB sync commands

Note that the services are not started in the upgrade tasks - we instead re-run puppet which does any reconfiguration required for the new version, then starts the services.

Nova Server Metadata Settings

One can use the hook of type OS::TripleO::ServiceServerMetadataHook to pass entries to the nova instances' metadata. It is, however, disabled by default. In order to overwrite it one needs to define it in the resource registry. An implementation of this hook needs to conform to the following:

  • It needs to define an input called RoleData of json type. This gets as input the contents of the role_data for each role's ServiceChain.
  • This needs to define an output called metadata which will be given to the Nova Server resource as the instance's metadata.