Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-models / mcp-virtual-lab / 9b6bf04cc54b70872447543ed1195e20c8b87382 / . / classes / cluster / os-ha-ovs-pike / openstack / control.yml
blob: 20d2497d2d3622ccfbc48781769ed3e236e567ec [file] [log] [blame]
Oleh Hryhorov4cf6dfc2018-03-15 19:25:41 +0200[diff] [blame]1classes:
2- system.salt.minion.cert.proxy
3- system.linux.system.lowmem
4- system.linux.system.repo.glusterfs
5- system.linux.system.repo.mcp.openstack
6- system.linux.system.repo.mcp.extra
7- system.linux.system.repo.saltstack.xenial
8- system.linux.storage.loopback
9- system.memcached.server.single
10- system.rabbitmq.server.cluster
11- system.rabbitmq.server.vhost.openstack
12- system.nginx.server.single
13- system.nginx.server.proxy.openstack_api
14- system.nginx.server.proxy.openstack.designate
15- system.nginx.server.proxy.openstack.placement
16- system.keystone.server.wsgi
17- system.keystone.server.cluster
18- system.glusterfs.client.cluster
19- system.glusterfs.client.volume.glance
20- system.glusterfs.client.volume.keystone
21- system.glusterfs.server.volume.glance
22- system.glusterfs.server.volume.keystone
23- system.glusterfs.server.cluster
24- system.glance.control.cluster
25- system.nova.control.cluster
26- system.neutron.control.openvswitch.cluster
27- system.cinder.control.cluster
28- system.cinder.control.backend.lvm
29- system.cinder.volume.single
30- system.cinder.volume.backend.lvm
31- system.heat.server.cluster
32- system.designate.server.cluster
33- system.designate.server.backend.bind
34- system.galera.server.cluster
35- system.galera.server.database.cinder
36- system.galera.server.database.designate
37- system.galera.server.database.glance
38- system.galera.server.database.heat
39- system.galera.server.database.keystone
40- system.galera.server.database.nova
41- cluster.os-ha-ovs-pike.openstack.dashboard
42- cluster.os-ha-ovs-pike
43parameters:
44 _param:
45 salt_minion_ca_authority: salt_master_ca
46 keepalived_vip_interface: ens4
47 ### nginx ssl sites settings
48 nginx_proxy_ssl:
49 enabled: true
50 engine: salt
51 authority: "${_param:salt_minion_ca_authority}"
52 key_file: "/etc/ssl/private/internal_proxy.key"
53 cert_file: "/etc/ssl/certs/internal_proxy.crt"
54 chain_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
55 nginx_proxy_openstack_api_address: ${_param:cluster_local_address}
56 nginx_proxy_openstack_keystone_host: 127.0.0.1
57 nginx_proxy_openstack_nova_host: 127.0.0.1
58 nginx_proxy_openstack_cinder_host: 127.0.0.1
59 nginx_proxy_openstack_glance_host: 127.0.0.1
60 nginx_proxy_openstack_neutron_host: 127.0.0.1
61 nginx_proxy_openstack_heat_host: 127.0.0.1
62 nginx_proxy_openstack_designate_host: 127.0.0.1
63 nginx_proxy_openstack_placement_host: 127.0.0.1
64 apache_keystone_api_host: ${_param:single_address}
65 apache_keystone_ssl: ${_param:nginx_proxy_ssl}
66 designate_api_address: 127.0.0.1
67 designate_api_base_uri: ${_param:cluster_vip_address}
68 nginx:
69 server:
70 site:
71 nginx_proxy_openstack_api_keystone:
72 enabled: false
73 nginx_proxy_openstack_api_keystone_private:
74 enabled: false
75 linux:
76 system:
77 package:
78 python-msgpack:
79 version: latest
80 network:
81 interface:
82 ens4:
83 enabled: true
84 type: eth
85 proto: static
86 address: ${_param:single_address}
87 netmask: 255.255.255.0
88 keepalived:
89 cluster:
90 instance:
91 VIP:
92 virtual_router_id: 150
93 keystone:
94 server:
95 admin_email: ${_param:admin_email}
96 notification:
97 driver: messagingv2
98 topics: "notifications"
99 designate:
100 worker:
101 enabled: ${_param:designate_worker_enabled}
102 server:
103 pools:
104 default:
105 description: 'test pool'
106 targets:
107 default:
108 description: 'test target1'
109 default1:
110 type: ${_param:designate_pool_target_type}
111 description: 'test target2'
112 masters: ${_param:designate_pool_target_masters}
113 options:
114 host: ${_param:openstack_control_node02_address}
115 port: 53
116 rndc_host: ${_param:openstack_control_node02_address}
117 rndc_port: 953
118 rndc_key_file: /etc/designate/rndc.key
119 default2:
120 type: ${_param:designate_pool_target_type}
121 description: 'test target3'
122 masters: ${_param:designate_pool_target_masters}
123 options:
124 host: ${_param:openstack_control_node03_address}
125 port: 53
126 rndc_host: ${_param:openstack_control_node03_address}
127 rndc_port: 953
128 rndc_key_file: /etc/designate/rndc.key
129 bind:
130 api:
131 address: ${_param:designate_api_address}
132 api:
133 base_uri: ${_param:designate_service_protocol}://${_param:designate_api_base_uri}:9001/
134 identity:
135 protocol: https
136 glance:
137 server:
138 storage:
139 engine: file
140 images: []
141 workers: 1
142 notification:
143 driver: messagingv2
144 topics: "notifications"
145 bind:
146 address: 127.0.0.1
147 identity:
148 protocol: https
149 registry:
150 protocol: https
151 heat:
152 server:
153 notification:
154 driver: messagingv2
155 topics: "notifications"
156 bind:
157 api:
158 address: 127.0.0.1
159 api_cfn:
160 address: 127.0.0.1
161 api_cloudwatch:
162 address: 127.0.0.1
163 identity:
164 protocol: https
165 neutron:
166 server:
167 notification:
168 driver: messagingv2
169 topics: "notifications"
170 bind:
171 address: 127.0.0.1
172 identity:
173 protocol: https
174 bind:
175 server:
176 control:
177 mgmt:
178 enabled: true
179 bind:
180 address: ${_param:single_address}
181 port: 953
182 allow:
183 - ${_param:openstack_control_node01_address}
184 - ${_param:openstack_control_node02_address}
185 - ${_param:openstack_control_node03_address}
186 keys:
187 - designate
188 nova:
189 controller:
190 networking: dvr
191 cpu_allocation: 54
192 metadata:
193 password: ${_param:metadata_password}
194 bind:
195 private_address: 127.0.0.1
196 public_address: ${_param:cluster_vip_address}
197 novncproxy_port: 6080
198 identity:
199 protocol: https
200 network:
201 protocol: https
202 glance:
203 protocol: https
204 vncproxy_url: http://${_param:cluster_vip_address}:6080
205 workers: 1
206 notification:
207 driver: messagingv2
208 topics: "notifications"
209 metadata:
210 bind:
211 address: ${_param:single_address}
212 cinder:
213 volume:
214 notification:
215 driver: messagingv2
216 topics: "notifications"
217 controller:
218 notification:
219 driver: messagingv2
220 topics: "notifications"
221 identity:
222 protocol: https
223 osapi:
224 host: 127.0.0.1
225 glance:
226 protocol: https
227 salt:
228 minion:
229 cert:
230 internal_proxy:
231 host: ${_param:salt_minion_ca_host}
232 authority: ${_param:salt_minion_ca_authority}
233 common_name: internal_proxy
234 signing_policy: cert_open
235 alternative_names: IP:127.0.0.1,IP:${_param:cluster_local_address},IP:${_param:cluster_public_host},DNS:${linux:system:name},DNS:${linux:network:fqdn},DNS:${_param:cluster_local_address},DNS:${_param:cluster_public_host}
236 key_file: "/etc/ssl/private/internal_proxy.key"
237 cert_file: "/etc/ssl/certs/internal_proxy.crt"
238 all_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
239 haproxy:
240 proxy:
241 listen:
242 keystone_public_api:
243 type: ~
244 designate_api:
245 type: ~
246 keystone_admin_api:
247 type: ~
248 nova_api:
249 type: ~
250 nova_metadata_api:
251 type: ~
252 cinder_api:
253 type: ~
254 glance_api:
255 type: ~
256 glance_registry_api:
257 type: ~
258 heat_cloudwatch_api:
259 type: ~
260 heat_api:
261 type: ~
262 heat_cfn_api:
263 type: ~
264 neutron_api:
265 type: ~
266 nova_placement_api:
267 mode: tcp
268 service_name: nova_placement
269 binds:
270 - address: ${_param:cluster_vip_address}
271 port: 8778
272 servers:
273 - name: ${_param:cluster_node01_hostname}
274 host: ${_param:cluster_node01_address}
275 port: 8778
276 params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3
277 - name: ${_param:cluster_node02_hostname}
278 host: ${_param:cluster_node02_address}
279 port: 8778
280 params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3
281 - name: ${_param:cluster_node03_hostname}
282 host: ${_param:cluster_node03_address}
283 port: 8778
284 params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3