commit f596066595d3b9ebd98f62be58e870f5ac0be3d3
author Dmitry Stremkovskiy <dstremkouski@mirantis.com> Wed Jul 05 20:12:56 2017 +0300
committer Marek Celoud <mceloud@mirantis.com> Tue Jul 11 07:34:47 2017 +0000
tree bdad72eaa2862cdaef5c522bf8419532223ccc4c
parent b2247fc1c6574d24d72496bd9c8174689b55d0d9

Unhardcode service user/group uid/gid values
Warn to not change nova uid/gid values after user is created

Change-Id: Iaf4d6493c14175c3aea13035878cc185c1621bef

nova/compute.sls

diff --git a/nova/compute.sls b/nova/compute.sls
index b2d0142..178f770 100644
--- a/nova/compute.sls
+++ b/nova/compute.sls
@@ -132,8 +132,9 @@
   {%- else %}
   - shell: /bin/false
   {%- endif %}
-  - uid: 303
-  - gid: 303
+  {# note: nova uid/gid values would not be evaluated after user is created. #}
+  - uid: {{ compute.get('nova_uid', 303) }}
+  - gid: {{ compute.get('nova_gid', 303) }}
   - system: True
   - groups:
     {%- if salt['group.info']('libvirtd') %}
@@ -149,7 +150,8 @@
 group_nova_compute:
   group.present:
     - name: nova
-    - gid: 303
+    {# note: nova gid value would not be evaluated after user is created. #}
+    - gid: {{ compute.get('nova_gid', 303) }}
     - system: True
     - require_in:
       - user: user_nova_compute

nova/controller.sls

diff --git a/nova/controller.sls b/nova/controller.sls
index d6df274..2b19ba1 100644
--- a/nova/controller.sls
+++ b/nova/controller.sls
@@ -30,8 +30,9 @@
   - name: nova
   - home: /var/lib/nova
   - shell: /bin/false
-  - uid: 303
-  - gid: 303
+  {# note: nova uid/gid values would not be evaluated after user is created. #}
+  - uid: {{ controller.get('nova_uid', 303) }}
+  - gid: {{ controller.get('nova_gid', 303) }}
   - system: True
   - require_in:
     - pkg: nova_controller_packages
@@ -39,7 +40,8 @@
 group_nova:
   group.present:
     - name: nova
-    - gid: 303
+    {# note: nova gid value would not be evaluated after user is created. #}
+    - gid: {{ controller.get('nova_gid', 303) }}
     - system: True
     - require_in:
       - user: user_nova