Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-models / mcp-virtual-lab / b58c64106703bf3831b8923e8eebda392a492431 / . / classes / cluster / virtual-mcp-pike-dvr-ssl / openstack / control.yml
blob: b370655eb7fb33daf3be20ccb20eb153d8b46774 [file] [log] [blame]
Vasyl Saienko91160482018-02-20 17:31:33 +0200[diff] [blame]1classes:
2#- system.salt.minion.ca.salt_master
3- system.salt.minion.cert.proxy
4- system.linux.system.lowmem
5- system.linux.system.repo.mcp.apt_mirantis.glusterfs
6- system.linux.system.repo.mcp.apt_mirantis.openstack
7- system.linux.system.repo.mcp.extra
8- system.linux.system.repo.mcp.apt_mirantis.saltstack_2016_3
9- system.memcached.server.single
10- system.rabbitmq.server.cluster
11- system.rabbitmq.server.vhost.openstack
12- system.nginx.server.single
13- system.nginx.server.proxy.openstack_api
14- system.nginx.server.proxy.openstack.designate
15- system.nginx.server.proxy.openstack.placement
16- system.keystone.server.wsgi
17- system.keystone.server.cluster
18- system.glusterfs.client.cluster
19- system.glusterfs.client.volume.glance
20- system.glusterfs.client.volume.keystone
21- system.glusterfs.server.volume.glance
22- system.glusterfs.server.volume.keystone
23- system.glusterfs.server.cluster
24- system.glance.control.cluster
25- system.nova.control.cluster
26- system.neutron.control.openvswitch.cluster
27- system.cinder.control.cluster
28- system.heat.server.cluster
29- system.ceilometer.server.cluster
30- system.ceilometer.server.backend.influxdb
31- system.aodh.server.cluster
32- system.heka.ceilometer_collector.single
33- system.designate.server.cluster
34- system.galera.server.cluster
35- system.galera.server.database.aodh
36- system.galera.server.database.ceilometer
37- system.galera.server.database.cinder
38- system.galera.server.database.glance
39- system.galera.server.database.grafana
40- system.galera.server.database.heat
41- system.galera.server.database.keystone
42- system.galera.server.database.nova
43- system.galera.server.database.designate
44- system.haproxy.proxy.listen.openstack.nova-placement
45- cluster.virtual-mcp-pike-dvr-ssl.openstack.dns
46- cluster.virtual-mcp-pike-dvr-ssl
47
48parameters:
49 _param:
50 keepalived_vip_interface: ens4
51 salt_minion_ca_authority: salt_master_ca
52 ### nginx ssl sites settings
53 nginx_proxy_ssl:
54 enabled: true
55 engine: salt
56 authority: "${_param:salt_minion_ca_authority}"
57 key_file: "/etc/ssl/private/internal_proxy.key"
58 cert_file: "/etc/ssl/certs/internal_proxy.crt"
59 chain_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
60 nginx_proxy_openstack_api_address: ${_param:cluster_local_address}
61 nginx_proxy_openstack_keystone_host: 127.0.0.1
62 nginx_proxy_openstack_nova_host: 127.0.0.1
63 nginx_proxy_openstack_cinder_host: 127.0.0.1
64 nginx_proxy_openstack_glance_host: 127.0.0.1
65 nginx_proxy_openstack_neutron_host: 127.0.0.1
66 nginx_proxy_openstack_heat_host: 127.0.0.1
67 nginx_proxy_openstack_designate_host: 127.0.0.1
68 nginx_proxy_openstack_placement_host: 127.0.0.1
69 apache_keystone_api_host: ${_param:single_address}
70 apache_keystone_ssl: ${_param:nginx_proxy_ssl}
71 nginx:
72 server:
73 site:
74 nginx_proxy_openstack_api_keystone:
75 enabled: false
76 nginx_proxy_openstack_api_keystone_private:
77 enabled: false
78 linux:
79 system:
80 package:
81 python-msgpack:
82 version: latest
83 network:
84 interface:
85 ens4:
86 enabled: true
87 type: eth
88 proto: static
89 address: ${_param:single_address}
90 netmask: 255.255.255.0
91 keepalived:
92 cluster:
93 instance:
94 VIP:
95 virtual_router_id: 150
96 keystone:
97 server:
98 admin_email: ${_param:admin_email}
99 notification:
100 driver: messagingv2
101 topics: "notifications,${_param:stacklight_notification_topic}"
102 designate:
103 pool_manager:
104 enabled: ${_param:designate_pool_manager_enabled}
105 periodic_sync_interval: ${_param:designate_pool_manager_periodic_sync_interval}
106 server:
107 identity:
108 protocol: https
109 bind:
110 api:
111 address: 127.0.0.1
112 backend:
113 pdns4:
114 api_token: ${_param:designate_pdns_api_key}
115 api_endpoint: ${_param:designate_pdns_api_endpoint}
116 mdns:
117 address: ${_param:designate_mdns_address}
118 port: ${_param:designate_mdns_port}
119 pools:
120 default:
121 description: 'test pool'
122 targets:
123 default:
124 description: 'test target1'
125 default1:
126 type: ${_param:designate_pool_target_type}
127 description: 'test target2'
128 masters: ${_param:designate_pool_target_masters}
129 options:
130 host: ${_param:openstack_dns_node02_address}
131 port: 53
132 api_endpoint: "http://${_param:openstack_dns_node02_address}:${_param:powerdns_webserver_port}"
133 api_token: ${_param:designate_pdns_api_key}
134 quota:
135 zones: ${_param:designate_quota_zones}
136 glance:
137 server:
138 storage:
139 engine: file
140 images: []
141 workers: 1
142 notification:
143 driver: messagingv2
144 topics: "notifications,${_param:stacklight_notification_topic}"
145 bind:
146 address: 127.0.0.1
147 identity:
148 protocol: https
149 registry:
150 protocol: https
151 heat:
152 server:
153 notification:
154 driver: messagingv2
155 topics: "notifications,${_param:stacklight_notification_topic}"
156 bind:
157 api:
158 address: 127.0.0.1
159 api_cfn:
160 address: 127.0.0.1
161 api_cloudwatch:
162 address: 127.0.0.1
163 identity:
164 protocol: https
165 neutron:
166 server:
167 notification:
168 driver: messagingv2
169 topics: "notifications,${_param:stacklight_notification_topic}"
170 bind:
171 address: 127.0.0.1
172 identity:
173 protocol: https
174 nova:
175 controller:
176 networking: dvr
177 cpu_allocation: 54
178 metadata:
179 password: ${_param:metadata_password}
180 bind:
181 public_address: ${_param:cluster_vip_address}
182 novncproxy_port: 6080
183 private_address: 127.0.0.1
184 identity:
185 protocol: https
186 network:
187 protocol: https
188 glance:
189 protocol: https
190 vncproxy_url: http://${_param:cluster_vip_address}:6080
191 workers: 1
192 notification:
193 driver: messagingv2
194 topics: "notifications,${_param:stacklight_notification_topic}"
195 cinder:
196 volume:
197 notification:
198 driver: messagingv2
199 topics: "notifications,${_param:stacklight_notification_topic}"
200 controller:
201 notification:
202 driver: messagingv2
203 topics: "notifications,${_param:stacklight_notification_topic}"
204 identity:
205 protocol: https
206 osapi:
207 host: 127.0.0.1
208 glance:
209 protocol: https
210 salt:
211 minion:
212 cert:
213 internal_proxy:
214 host: ${_param:salt_minion_ca_host}
215 authority: ${_param:salt_minion_ca_authority}
216 common_name: internal_proxy
217 signing_policy: cert_open
218 alternative_names: IP:127.0.0.1,IP:${_param:cluster_local_address},IP:${_param:cluster_public_host},DNS:${linux:system:name},DNS:${linux:network:fqdn},DNS:${_param:cluster_local_address},DNS:${_param:cluster_public_host}
219 key_file: "/etc/ssl/private/internal_proxy.key"
220 cert_file: "/etc/ssl/certs/internal_proxy.crt"
221 all_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
222 haproxy:
223 proxy:
224 listen:
225 # barbican-api:
226 # type: ~
227 # barbican-admin-api:
228 # type: ~
229 designate_api:
230 type: ~
231 keystone_public_api:
232 type: ~
233 keystone_admin_api:
234 type: ~
235 nova_api:
236 type: ~
237 nova_metadata_api:
238 type: ~
239 cinder_api:
240 type: ~
241 glance_api:
242 type: ~
243 glance_registry_api:
244 type: ~
245 heat_cloudwatch_api:
246 type: ~
247 heat_api:
248 type: ~
249 heat_cfn_api:
250 type: ~
251 neutron_api:
252 type: ~
253 nova_placement_api:
254 type: ~