service: name: keystone ports: - keystone_public_port - keystone_admin_port containers: - name: keystone image: keystone probes: readiness: "true" liveness: "true" volumes: - name: keystone-logs path: "/var/log/ccp/keystone" type: host readOnly: False pre: - name: chown-logs-dir command: "sudo /bin/chown keystone:keystone /var/log/ccp/keystone" - name: keystone-db-create dependencies: - galera type: single command: mysql -u root -pdb_root_password_default -h galera -e "create database keystone_db_name_default; grant all privileges on keystone_db_name_default.* to 'keystone_db_username_default'@'%' identified by 'keystone_db_password_default'" - name: keystone-db-sync files: - keystone-conf dependencies: - keystone-db-create type: single command: keystone-manage db_sync - name: keystone-db-bootstrap files: - keystone-conf dependencies: - keystone-db-sync type: single command: keystone-manage bootstrap --bootstrap-password os_user_password_default --bootstrap-username os_user_name_default --bootstrap-project-name os_project_name_default --bootstrap-role-name os_role_name_default --bootstrap-service-name keystone --bootstrap-region-id RegionOne --bootstrap-admin-url http://keystone:keystone_admin_port_default --bootstrap-public-url http://keystone:keystone_public_port_default --bootstrap-internal-url http://keystone:keystone_public_port_default daemon: dependencies: - memcached files: - keystone-conf - wsgi-keystone-conf command: daemon.sh post: - name: keystone-create-project type: single command: openstack project create service files: keystone-conf: path: /etc/keystone/keystone.conf content: keystone.conf.j2 wsgi-keystone-conf: path: /etc/apache2/conf-enabled/wsgi-keystone.conf content: wsgi-keystone.conf.j2