openstack
/
tripleo-quickstart-extras
Code Issues Proposed changes

Add documentation on how to build a hardened image 

We can build security hardened images just updating the list
of files on the role. So document properly in order to show
how to do it.

Change-Id: Ie3207c07bfdedebd609501bb9d55166e56e6ad98
This commit is contained in:
Yolanda Robla 2017-06-06 10:25:06 +02:00
parent 6a66338500
commit 1eac9d8f04
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
roles/build-images/README.md
View File

@ -41,7 +41,9 @@ Role Variables
package installs in the overcloud images. These repos will also be copied on package installs in the overcloud images. These repos will also be copied on
to the undercloud image. to the undercloud image.
* `image_build_yaml_paths` -- List of yaml files to be passed to the overcloud * `image_build_yaml_paths` -- List of yaml files to be passed to the overcloud
image build. (Defaults to yamls packaged in tripleo-common) image build. (Defaults to yamls packaged in tripleo-common. In order to
produce security hardened images, the alternate overcloud-hardened-images
need to be used instead of the overcloud-images ones).
* `image_build_extract_list` -- List of artifacts to extract from the isolated * `image_build_extract_list` -- List of artifacts to extract from the isolated
build environment after building. build environment after building.
* `inject_images` -- List of artifacts to inject into the undercloud image * `inject_images` -- List of artifacts to inject into the undercloud image