Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-models / mcp-virtual-lab / 18b1bfa3823c39e6f201b337eb7c22fe1241303d / . / classes / cluster / virtual-mcp-pike-dvr-ssl / openstack / control.yml
blob: e7f48a66596dcd3938b8e95f8346794ea4e8f9fc [file] [log] [blame]
Vasyl Saienko91160482018-02-20 17:31:33 +0200[diff] [blame]1classes:
Vasyl Saienko91160482018-02-20 17:31:33 +0200[diff] [blame]2- system.salt.minion.cert.proxy
3- system.linux.system.lowmem
4- system.linux.system.repo.mcp.apt_mirantis.glusterfs
5- system.linux.system.repo.mcp.apt_mirantis.openstack
6- system.linux.system.repo.mcp.extra
7- system.linux.system.repo.mcp.apt_mirantis.saltstack_2016_3
8- system.memcached.server.single
9- system.rabbitmq.server.cluster
10- system.rabbitmq.server.vhost.openstack
11- system.nginx.server.single
12- system.nginx.server.proxy.openstack_api
13- system.nginx.server.proxy.openstack.designate
14- system.nginx.server.proxy.openstack.placement
15- system.keystone.server.wsgi
16- system.keystone.server.cluster
17- system.glusterfs.client.cluster
18- system.glusterfs.client.volume.glance
19- system.glusterfs.client.volume.keystone
20- system.glusterfs.server.volume.glance
21- system.glusterfs.server.volume.keystone
22- system.glusterfs.server.cluster
23- system.glance.control.cluster
24- system.nova.control.cluster
25- system.neutron.control.openvswitch.cluster
26- system.cinder.control.cluster
27- system.heat.server.cluster
28- system.ceilometer.server.cluster
29- system.ceilometer.server.backend.influxdb
30- system.aodh.server.cluster
31- system.heka.ceilometer_collector.single
32- system.designate.server.cluster
33- system.galera.server.cluster
34- system.galera.server.database.aodh
35- system.galera.server.database.ceilometer
36- system.galera.server.database.cinder
37- system.galera.server.database.glance
38- system.galera.server.database.grafana
39- system.galera.server.database.heat
40- system.galera.server.database.keystone
41- system.galera.server.database.nova
42- system.galera.server.database.designate
43- system.haproxy.proxy.listen.openstack.nova-placement
Vasyl Saienko91160482018-02-20 17:31:33 +0200[diff] [blame]44- cluster.virtual-mcp-pike-dvr-ssl
45
46parameters:
47 _param:
48 keepalived_vip_interface: ens4
49 salt_minion_ca_authority: salt_master_ca
50 ### nginx ssl sites settings
51 nginx_proxy_ssl:
52 enabled: true
53 engine: salt
54 authority: "${_param:salt_minion_ca_authority}"
55 key_file: "/etc/ssl/private/internal_proxy.key"
56 cert_file: "/etc/ssl/certs/internal_proxy.crt"
57 chain_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
58 nginx_proxy_openstack_api_address: ${_param:cluster_local_address}
59 nginx_proxy_openstack_keystone_host: 127.0.0.1
60 nginx_proxy_openstack_nova_host: 127.0.0.1
61 nginx_proxy_openstack_cinder_host: 127.0.0.1
62 nginx_proxy_openstack_glance_host: 127.0.0.1
63 nginx_proxy_openstack_neutron_host: 127.0.0.1
64 nginx_proxy_openstack_heat_host: 127.0.0.1
65 nginx_proxy_openstack_designate_host: 127.0.0.1
66 nginx_proxy_openstack_placement_host: 127.0.0.1
67 apache_keystone_api_host: ${_param:single_address}
68 apache_keystone_ssl: ${_param:nginx_proxy_ssl}
69 nginx:
70 server:
71 site:
72 nginx_proxy_openstack_api_keystone:
73 enabled: false
74 nginx_proxy_openstack_api_keystone_private:
75 enabled: false
76 linux:
77 system:
78 package:
79 python-msgpack:
80 version: latest
81 network:
82 interface:
83 ens4:
84 enabled: true
85 type: eth
86 proto: static
87 address: ${_param:single_address}
88 netmask: 255.255.255.0
89 keepalived:
90 cluster:
91 instance:
92 VIP:
93 virtual_router_id: 150
94 keystone:
95 server:
96 admin_email: ${_param:admin_email}
97 notification:
98 driver: messagingv2
99 topics: "notifications,${_param:stacklight_notification_topic}"
100 designate:
101 pool_manager:
102 enabled: ${_param:designate_pool_manager_enabled}
103 periodic_sync_interval: ${_param:designate_pool_manager_periodic_sync_interval}
104 server:
105 identity:
106 protocol: https
107 bind:
108 api:
109 address: 127.0.0.1
110 backend:
111 pdns4:
112 api_token: ${_param:designate_pdns_api_key}
113 api_endpoint: ${_param:designate_pdns_api_endpoint}
114 mdns:
115 address: ${_param:designate_mdns_address}
116 port: ${_param:designate_mdns_port}
117 pools:
118 default:
119 description: 'test pool'
120 targets:
121 default:
122 description: 'test target1'
123 default1:
124 type: ${_param:designate_pool_target_type}
125 description: 'test target2'
126 masters: ${_param:designate_pool_target_masters}
127 options:
128 host: ${_param:openstack_dns_node02_address}
129 port: 53
130 api_endpoint: "http://${_param:openstack_dns_node02_address}:${_param:powerdns_webserver_port}"
131 api_token: ${_param:designate_pdns_api_key}
132 quota:
133 zones: ${_param:designate_quota_zones}
134 glance:
135 server:
136 storage:
137 engine: file
138 images: []
139 workers: 1
140 notification:
141 driver: messagingv2
142 topics: "notifications,${_param:stacklight_notification_topic}"
143 bind:
144 address: 127.0.0.1
145 identity:
146 protocol: https
147 registry:
148 protocol: https
149 heat:
150 server:
151 notification:
152 driver: messagingv2
153 topics: "notifications,${_param:stacklight_notification_topic}"
154 bind:
155 api:
156 address: 127.0.0.1
157 api_cfn:
158 address: 127.0.0.1
159 api_cloudwatch:
160 address: 127.0.0.1
161 identity:
162 protocol: https
163 neutron:
164 server:
165 notification:
166 driver: messagingv2
167 topics: "notifications,${_param:stacklight_notification_topic}"
168 bind:
169 address: 127.0.0.1
170 identity:
171 protocol: https
172 nova:
173 controller:
174 networking: dvr
175 cpu_allocation: 54
176 metadata:
177 password: ${_param:metadata_password}
178 bind:
179 public_address: ${_param:cluster_vip_address}
180 novncproxy_port: 6080
181 private_address: 127.0.0.1
182 identity:
183 protocol: https
184 network:
185 protocol: https
186 glance:
187 protocol: https
188 vncproxy_url: http://${_param:cluster_vip_address}:6080
189 workers: 1
190 notification:
191 driver: messagingv2
192 topics: "notifications,${_param:stacklight_notification_topic}"
193 cinder:
194 volume:
195 notification:
196 driver: messagingv2
197 topics: "notifications,${_param:stacklight_notification_topic}"
198 controller:
199 notification:
200 driver: messagingv2
201 topics: "notifications,${_param:stacklight_notification_topic}"
202 identity:
203 protocol: https
204 osapi:
205 host: 127.0.0.1
206 glance:
207 protocol: https
208 salt:
209 minion:
210 cert:
211 internal_proxy:
212 host: ${_param:salt_minion_ca_host}
213 authority: ${_param:salt_minion_ca_authority}
214 common_name: internal_proxy
215 signing_policy: cert_open
216 alternative_names: IP:127.0.0.1,IP:${_param:cluster_local_address},IP:${_param:cluster_public_host},DNS:${linux:system:name},DNS:${linux:network:fqdn},DNS:${_param:cluster_local_address},DNS:${_param:cluster_public_host}
217 key_file: "/etc/ssl/private/internal_proxy.key"
218 cert_file: "/etc/ssl/certs/internal_proxy.crt"
219 all_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
220 haproxy:
221 proxy:
222 listen:
223 # barbican-api:
224 # type: ~
225 # barbican-admin-api:
226 # type: ~
227 designate_api:
228 type: ~
229 keystone_public_api:
230 type: ~
231 keystone_admin_api:
232 type: ~
233 nova_api:
234 type: ~
235 nova_metadata_api:
236 type: ~
237 cinder_api:
238 type: ~
239 glance_api:
240 type: ~
241 glance_registry_api:
242 type: ~
243 heat_cloudwatch_api:
244 type: ~
245 heat_api:
246 type: ~
247 heat_cfn_api:
248 type: ~
249 neutron_api:
250 type: ~
251 nova_placement_api:
252 type: ~