neutron/gateway.sls - salt-formulas/neutron - Gitiles

 {% from "neutron/map.jinja" import gateway, fwaas, system_cacerts_file with context %}

 {%- if fwaas.get('enabled', False) %}
 include:
 - neutron.fwaas
 {%- endif %}

 {%- if gateway.enabled %}
 neutron_gateway_packages:
   pkg.installed:
   - names: {{ gateway.pkgs }}

 {%- if pillar.neutron.server is not defined %}

 /etc/neutron/neutron.conf:
   file.managed:
   - source: salt://neutron/files/{{ gateway.version }}/neutron-generic.conf.{{ grains.os_family }}
   - template: jinja
   - require:
     - pkg: neutron_gateway_packages

 {%- endif %}


 /etc/neutron/l3_agent.ini:
   file.managed:
   - source: salt://neutron/files/{{ gateway.version }}/l3_agent.ini
   - template: jinja
   - require:
     - pkg: neutron_gateway_packages

 /etc/neutron/dhcp_agent.ini:
   file.managed:
   - source: salt://neutron/files/{{ gateway.version }}/dhcp_agent.ini
   - require:
     - pkg: neutron_gateway_packages

 /etc/neutron/metadata_agent.ini:
   file.managed:
   - source: salt://neutron/files/{{ gateway.version }}/metadata_agent.ini
   - template: jinja
   - require:
     - pkg: neutron_gateway_packages

 /etc/neutron/plugins/ml2/openvswitch_agent.ini:
   file.managed:
   - source: salt://neutron/files/{{ gateway.version }}/openvswitch_agent.ini
   - template: jinja
   - require:
     - pkg: neutron_gateway_packages

 neutron_gateway_services:
   service.running:
   - names: {{ gateway.services }}
   - enable: true
   - watch:
     - file: /etc/neutron/neutron.conf
     - file: /etc/neutron/l3_agent.ini
     - file: /etc/neutron/metadata_agent.ini
     - file: /etc/neutron/plugins/ml2/openvswitch_agent.ini
     - file: /etc/neutron/dhcp_agent.ini
     {%- if fwaas.get('enabled', False) %}
     - file: /etc/neutron/fwaas_driver.ini
     {%- endif %}
     {%- if gateway.message_queue.get('ssl',{}).get('enabled', False) %}
     - file: rabbitmq_ca_neutron_gateway
     {%- endif %}


 {%- if gateway.message_queue.get('ssl',{}).get('enabled', False) %}
 rabbitmq_ca_neutron_gateway:
 {%- if gateway.message_queue.ssl.cacert is defined %}
   file.managed:
     - name: {{ gateway.message_queue.ssl.cacert_file }}
     - contents_pillar: neutron:gateway:message_queue:ssl:cacert
     - mode: 0444
     - makedirs: true
 {%- else %}
   file.exists:
    - name: {{ gateway.message_queue.ssl.get('cacert_file', system_cacerts_file) }}
 {%- endif %}
 {%- endif %}

 {%- endif %}
	{% from "neutron/map.jinja" import gateway, fwaas, system_cacerts_file with context %}

	{%- if fwaas.get('enabled', False) %}
	include:
	- neutron.fwaas
	{%- endif %}

	{%- if gateway.enabled %}
	neutron_gateway_packages:
	pkg.installed:
	- names: {{ gateway.pkgs }}

	{%- if pillar.neutron.server is not defined %}

	/etc/neutron/neutron.conf:
	file.managed:
	- source: salt://neutron/files/{{ gateway.version }}/neutron-generic.conf.{{ grains.os_family }}
	- template: jinja
	- require:
	- pkg: neutron_gateway_packages

	{%- endif %}


	/etc/neutron/l3_agent.ini:
	file.managed:
	- source: salt://neutron/files/{{ gateway.version }}/l3_agent.ini
	- template: jinja
	- require:
	- pkg: neutron_gateway_packages

	/etc/neutron/dhcp_agent.ini:
	file.managed:
	- source: salt://neutron/files/{{ gateway.version }}/dhcp_agent.ini
	- require:
	- pkg: neutron_gateway_packages

	/etc/neutron/metadata_agent.ini:
	file.managed:
	- source: salt://neutron/files/{{ gateway.version }}/metadata_agent.ini
	- template: jinja
	- require:
	- pkg: neutron_gateway_packages

	/etc/neutron/plugins/ml2/openvswitch_agent.ini:
	file.managed:
	- source: salt://neutron/files/{{ gateway.version }}/openvswitch_agent.ini
	- template: jinja
	- require:
	- pkg: neutron_gateway_packages

	neutron_gateway_services:
	service.running:
	- names: {{ gateway.services }}
	- enable: true
	- watch:
	- file: /etc/neutron/neutron.conf
	- file: /etc/neutron/l3_agent.ini
	- file: /etc/neutron/metadata_agent.ini
	- file: /etc/neutron/plugins/ml2/openvswitch_agent.ini
	- file: /etc/neutron/dhcp_agent.ini
	{%- if fwaas.get('enabled', False) %}
	- file: /etc/neutron/fwaas_driver.ini
	{%- endif %}
	{%- if gateway.message_queue.get('ssl',{}).get('enabled', False) %}
	- file: rabbitmq_ca_neutron_gateway
	{%- endif %}


	{%- if gateway.message_queue.get('ssl',{}).get('enabled', False) %}
	rabbitmq_ca_neutron_gateway:
	{%- if gateway.message_queue.ssl.cacert is defined %}
	file.managed:
	- name: {{ gateway.message_queue.ssl.cacert_file }}
	- contents_pillar: neutron:gateway:message_queue:ssl:cacert
	- mode: 0444
	- makedirs: true
	{%- else %}
	file.exists:
	- name: {{ gateway.message_queue.ssl.get('cacert_file', system_cacerts_file) }}
	{%- endif %}
	{%- endif %}

	{%- endif %}