Mv pacemaker and firewall out of controller

This patch moves settings for pacemaker and the tripleo firewall out of controller.yaml. Related bug: #1604414 Change-Id: I0164717bfd79cdea3de8eb7a64771028bea201ac
author: Dan Prince <dprince@redhat.com> 2016-08-26 13:48:39 -0400
committer: Dan Prince <dprince@redhat.com> 2016-09-02 16:34:16 -0400
commit: 827d110a34c611956620cddddeab51dedb4f63e6 (patch)
tree: 027dc28a19ec466d309be0e599fa4138666744b3 /puppet/services/tripleo-firewall.yaml
parent: 7ab48cc832cebf3be8a215f787d88e191e60c60d (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/puppet/services/tripleo-firewall.yaml b/puppet/services/tripleo-firewall.yaml
index 14965b4f..f6ec458f 100644
--- a/puppet/services/tripleo-firewall.yaml
+++ b/puppet/services/tripleo-firewall.yaml
@@ -18,11 +18,22 @@ parameters:
     description: Mapping of service endpoint -> protocol. Typically set
                  via parameter_defaults in the resource registry.
     type: json
+  ManageFirewall:
+    default: false
+    description: Whether to manage IPtables rules.
+    type: boolean
+  PurgeFirewallRules:
+    default: false
+    description: Whether IPtables rules should be purged before setting up the new ones.
+    type: boolean
 
 outputs:
   role_data:
     description: Role data for the TripleO firewall settings
     value:
       service_name: tripleo_firewall
+      config_settings:
+        tripleo::firewall::manage_firewall: {get_param: ManageFirewall}
+        tripleo::firewall::purge_firewall_rules: {get_param: PurgeFirewallRules}
       step_config: |
         include ::tripleo::firewall
author	Dan Prince <dprince@redhat.com>	2016-08-26 13:48:39 -0400
committer	Dan Prince <dprince@redhat.com>	2016-09-02 16:34:16 -0400
commit	827d110a34c611956620cddddeab51dedb4f63e6 (patch)
tree	027dc28a19ec466d309be0e599fa4138666744b3 /puppet/services/tripleo-firewall.yaml
parent	7ab48cc832cebf3be8a215f787d88e191e60c60d (diff)