openstack/tripleo-heat-templates
Code Issues Proposed changes
tripleo-heat-templates/puppet/services
History
Juan Antonio Osorio Robles eb114773ac Enable internal TLS for aodh 
This adds the necessary hieradata for enabling TLS in the internal
network for aodh.

bp tls-via-certmonger

Change-Id: I2ea160e3ac0775404d6ed302f475268d3a3031ef
Depends-On: I50ef0c8fbecb19d6597a28290daa61a91f3b13fc
2016-10-20 12:22:51 +03:00
..
database
Bind MySQL address to hostname appropriate to its network
2016-09-26 10:37:58 +03:00
logging
restore missing fluentd client functionality
2016-10-05 13:39:06 -04:00
monitoring
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
network
add composable services for Contrail
2016-09-05 20:44:30 +02:00
pacemaker
Include redis/mongo hiera when using pacemaker
2016-10-04 10:04:44 -04:00
time
Fix NTP servers hieradata
2016-09-27 16:11:10 +02:00
aodh-api.yaml
Enable internal TLS for aodh
2016-10-20 12:22:51 +03:00
aodh-base.yaml
telemetry: remove coordination_url hiera settings
2016-09-30 09:48:56 -04:00
aodh-evaluator.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
aodh-listener.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
aodh-notifier.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
apache-internal-tls-certmonger.yaml
Generate internal TLS hieradata for apache services
2016-10-20 12:22:42 +03:00
apache.yaml
Generate internal TLS hieradata for apache services
2016-10-20 12:22:42 +03:00
ca-certs.yaml
Add deployment of CAs via hieradata
2016-08-22 18:10:26 +03:00
ceilometer-agent-central.yaml
telemetry: remove coordination_url hiera settings
2016-09-30 09:48:56 -04:00
ceilometer-agent-compute.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
ceilometer-agent-notification.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
ceilometer-api.yaml
Enable internal TLS for ceilometer
2016-10-20 12:22:51 +03:00
ceilometer-base.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
ceilometer-collector.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
ceilometer-expirer.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
ceph-base.yaml
glance_multiple_locations when NovaEnableRbdBackend=true
2016-10-17 08:43:11 +02:00
ceph-client.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
ceph-external.yaml
Enable Glance multiple locations when using Ceph
2016-10-13 22:47:07 +02:00
ceph-mon.yaml
Enable Glance multiple locations when using Ceph
2016-10-13 22:47:07 +02:00
ceph-osd.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
ceph-rgw.yaml
Move keystone::auth into service_config_settings
2016-09-23 07:43:21 -04:00
cinder-api.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
cinder-backup.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
cinder-base.yaml
Cinder volume service is not managed by Pacemaker on BlockStorage
2016-09-29 17:57:40 +02:00
cinder-scheduler.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
cinder-volume.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
glance-api.yaml
Allow Glance API and Registry to be split
2016-10-12 08:10:02 -04:00
glance-base.yaml
Allow Glance API and Registry to be split
2016-10-12 08:10:02 -04:00
glance-registry.yaml
Allow Glance API and Registry to be split
2016-10-12 08:10:02 -04:00
gnocchi-api.yaml
Enable proxy headers parsing for Gnocchi
2016-10-13 08:57:37 +03:00
gnocchi-base.yaml
telemetry: remove coordination_url hiera settings
2016-09-30 09:48:56 -04:00
gnocchi-metricd.yaml
Add metricd workers support in gnocchi
2016-09-26 09:28:20 +02:00
gnocchi-statsd.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
haproxy-internal-tls-certmonger.yaml
Add HAProxy TLS handled by certmonger as composable service
2016-09-29 17:15:13 +00:00
haproxy-public-tls-certmonger.yaml
Add HAProxy TLS handled by certmonger as composable service
2016-09-29 17:15:13 +00:00
haproxy.yaml
Add HAProxy TLS handled by certmonger as composable service
2016-09-29 17:15:13 +00:00
heat-api-cfn.yaml
heat-api-cfn endpoint is created to RegionOne instead of regionOne
2016-10-14 15:54:57 +00:00
heat-api-cloudwatch.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
heat-api.yaml
Move keystone::auth into service_config_settings
2016-09-23 07:43:21 -04:00
heat-base.yaml
configure Heat with new authtoken parameters
2016-08-30 13:03:10 +00:00
heat-engine.yaml
Pass heat domain admin password to keystone
2016-10-14 13:29:15 +00:00
horizon.yaml
Merge "Remove repeated apache-related hieradata"
2016-09-02 12:19:45 +00:00
ironic-api.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
ironic-base.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
ironic-conductor.yaml
Ironic: update default enabled drivers
2016-09-04 17:48:17 +02:00
keepalived.yaml
Enable firewalling by default on compute nodes
2016-10-06 12:07:35 -04:00
kernel.yaml
Disable IPv6 RAs & Autoconf For All (Not Just Default)
2016-10-12 19:50:35 +00:00
keystone.yaml
Generate internal TLS hieradata for apache services
2016-10-20 12:22:42 +03:00
manila-api.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
manila-backend-cephfs.yaml
Remove unneeded *_enable_backend hiera from Manila backends
2016-10-07 13:58:53 +02:00
manila-backend-generic.yaml
Remove unneeded *_enable_backend hiera from Manila backends
2016-10-07 13:58:53 +02:00
manila-backend-netapp.yaml
Remove unneeded *_enable_backend hiera from Manila backends
2016-10-07 13:58:53 +02:00
manila-base.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
manila-scheduler.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
manila-share.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
memcached.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
neutron-api.yaml
Enable proxy headers parsing for Neutron
2016-10-17 11:49:25 +03:00
neutron-base.yaml
Move trunk service plugin to the proper list
2016-10-13 10:55:55 -02:30
neutron-compute-plugin-midonet.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
neutron-compute-plugin-nuage.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
neutron-compute-plugin-opencontrail.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
neutron-compute-plugin-ovn.yaml
OVN heat templates
2016-09-01 16:06:38 -04:00
neutron-compute-plugin-plumgrid.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
neutron-dhcp.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
neutron-l3-compute-dvr.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
neutron-l3.yaml
Enable firewalling by default on compute nodes
2016-10-06 12:07:35 -04:00
neutron-metadata.yaml
Neutron metadata agent worker count fix
2016-09-22 12:46:37 -02:30
neutron-midonet.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
neutron-ovs-agent.yaml
Enable firewalling by default on compute nodes
2016-10-06 12:07:35 -04:00
neutron-ovs-dpdk-agent.yaml
Modify the constraint to allow single quote for DPDK core list param
2016-10-14 16:46:50 +05:30
neutron-plugin-ml2-ovn.yaml
OVN heat templates
2016-09-01 16:06:38 -04:00
neutron-plugin-ml2.yaml
Move trunk service plugin to the proper list
2016-10-13 10:55:55 -02:30
neutron-plugin-nuage.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
neutron-plugin-opencontrail.yaml
Fix api_extensions_path in neutron-opencontrail environment
2016-10-18 00:45:01 +02:00
neutron-plugin-plumgrid.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
neutron-sriov-agent.yaml
Add base neutron service configuration
2016-09-07 15:28:11 +05:30
nova-api.yaml
Merge "Set nova service_name via t-h-t"
2016-10-18 19:55:16 +00:00
nova-base.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
nova-compute.yaml
Merge "Set VNC URL parameters for nova-compute"
2016-09-19 15:57:19 +00:00
nova-conductor.yaml
Only set NovaWorkers in the non-default case
2016-10-12 14:17:54 -04:00
nova-consoleauth.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
nova-ironic.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
nova-libvirt.yaml
Availability monitoring agents support
2016-08-31 09:22:59 -04:00
nova-metadata.yaml
Only set NovaWorkers in the non-default case
2016-10-12 14:17:54 -04:00
nova-scheduler.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
nova-vnc-proxy.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
opendaylight-api.yaml
Renames OpenDaylight to OpenDaylightApi and splits out OVS configuration
2016-10-05 12:06:59 -04:00
opendaylight-ovs.yaml
Fixes missing provider mappings for OpenDaylight
2016-10-14 09:45:25 -04:00
pacemaker.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
rabbitmq.yaml
Merge "Balance Rabbitmq Queue Master Location on queue declaration with min-masters strategy"
2016-10-03 09:50:23 +00:00
README.rst
Add global_config_settings to services' output
2016-08-26 11:11:47 +02:00
sahara-api.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
sahara-base.yaml
Move db::mysql into service_config_settings
2016-09-28 07:01:49 -04:00
sahara-engine.yaml
Add fluentd client service
2016-09-17 01:31:12 +00:00
services.yaml
restore missing fluentd client functionality
2016-10-05 13:39:06 -04:00
snmp.yaml
Move snmp settings into composable services
2016-09-02 07:14:05 -04:00
swift-base.yaml
Move Swift hiera settings into composable services
2016-08-25 20:27:11 -04:00
swift-proxy.yaml
Enable object versioning in Swift proxy
2016-10-11 07:07:04 +00:00
swift-ringbuilder.yaml
Fix default Swift ring partition power
2016-10-10 16:20:34 +02:00
swift-storage.yaml
Convert SwiftDevicesAndProxyConfig to composable format
2016-09-08 20:19:37 +00:00
tripleo-firewall.yaml
Re-enable ManageFirewall by default.
2016-10-06 15:08:53 +00:00
tripleo-packages.yaml
Add DefaultPasswords to composable services
2016-08-18 12:45:30 -04:00
vip-hosts.yaml
Generate VIP info for ctlplane VIP, not management
2016-09-09 08:43:24 +03:00

README.rst

services

A TripleO nested stack Heat template that encapsulates generic configuration data to configure a specific service. This generally includes everything needed to configure the service excluding the local bind ports which are still managed in the per-node role templates directly (controller.yaml, compute.yaml, etc.). All other (global) service settings go into the puppet/service templates.

Input Parameters

Each service may define its own input parameters and defaults. Operators will use the parameter_defaults section of any Heat environment to set per service parameters.

Config Settings

Each service may define a config_settings output variable which returns Hiera settings to be configured.

Steps

Each service may define an output variable which returns a puppet manifest snippet that will run at each of the following steps. Earlier manifests are re-asserted when applying latter ones.

  • config_settings: Custom hiera settings for this service.

  • global_config_settings: Additional hiera settings distributed to all roles.

  • step_config: A puppet manifest that is used to step through the deployment sequence. Each sequence is given a "step" (via hiera('step') that provides information for when puppet classes should activate themselves.

    Steps correlate to the following:

    1. Load Balancer configuration
    2. Core Services (Database/Rabbit/NTP/etc.)
    3. Early Openstack Service setup (Ringbuilder, etc.)
    4. General OpenStack Services
    5. Service activation (Pacemaker)
    6. Fencing (Pacemaker)

Note: Not all roles currently support all steps:

  • ObjectStorage role only supports steps 2, 3 and 4