aboutsummaryrefslogtreecommitdiffstats
path: root/overcloud.yaml
AgeCommit message (Collapse)AuthorFilesLines
2016-09-09Merge "Generate VIP info for ctlplane VIP, not management"Jenkins1-4/+4
2016-09-09Remove *ExtraConfig parameters from overcloud.yamlSteven Hardy1-43/+0
These per-role parameters are already handled inside the role templates Change-Id: Ie71c8670ea427ea9c7d94680cff143ad9d524b7a Partially-Implements: blueprint custom-roles
2016-09-09Move role deployment steps into puppet/post.yamlSteven Hardy1-35/+15
To enable steps to be aligned between roles, we need to define dependencies between the steps, which is only possible if we move the steps out of distinct nested stacks so we can use depends_on to serialized the steps for all roles. Note that we may be able to further refactor later to remove the per-role -config.yaml nested stacks as well. Change-Id: Ia2ea559e8eeb64763908f75705e3728ee90b5744 Partially-Implements: blueprint custom-roles
2016-09-09Merge "Add global_config_settings to services' output"Jenkins1-5/+41
2016-09-09Generate VIP info for ctlplane VIP, not managementJuan Antonio Osorio Robles1-4/+4
The management network does not have a VIP, so it's been wrong to generate a cloud name and hieradata for this. Instead, the network that actually needs a name and a hosts entry is the ctlplane network, which actually has a VIP and there are services that use it. bp tls-via-certmonger Closes-Bug: #1621742 Change-Id: I163b2c7b5684da6dc290636f54eefe3f2b0c3e3f
2016-09-08Convert SwiftDevicesAndProxyConfig to composable formatSteven Hardy1-22/+2
Make use of the new composable per-service node_ips lists by adding a ServiceNetMap entry for SwiftStorage, then pass the data to construct the raw device list into puppet-tripleo instead of mangling it in t-h-t inside the role templates. This will allow running swift storage services on nodes other than the Controller and ObjectStorage roles, and is required to enable custom roles. Depends-On: I11deed1df712ecccf85d36a75b3bd2e9d226af36 Change-Id: I1bf5f8a9d34b1a5d64ab8656b386226b54ec1a27 Partially-Implements: blueprint custom-roles
2016-09-07Create entries for overcloud VIPs in /etc/hostsJuan Antonio Osorio Robles1-0/+5
This will aid us in using FQDNs instead of IPs if DNS is not set. If the deployer already has DNS set up, they can easily disable this profile by adding the use-dns-for-vips.yaml environment file. bp tls-via-certmonger Change-Id: I8c1b3f253d0149d575171c208f9a1342a7b26450 Depends-On: I1bdb2701dfb3e7ef072e674c9882d3be5af7296c
2016-09-07Add VIP names to allNodesConfigJuan Antonio Osorio Robles1-0/+5
The nodes need to be aware of the fqdn's for the specific endpoints in the cloud. This could be either to set the entries in /etc/hosts or to select an appropriate hostname for a certificate to be generated. bp tls-via-certmonger Change-Id: I9b4645b937a344f46ec18a9a68c5afa2bc5206d0
2016-09-06Set Redis VIP on all nodesJiri Stransky1-1/+1
Move Redis VIP from controller-only to all nodes so that we don't assume where Redis is deployed. Change-Id: I55f8d48e3e077951fbcc88158dd6f21a2fe5f457 Related-Bug: #1618510 Partially-Implements: blueprint custom-roles
2016-09-05Move VIP-related data to AllNodesConfigJuan Antonio Osorio Robles1-30/+2
This makes it easier to access the VIP data for other node types and de-ties this from the controller role. Change-Id: I71125576ec93889fed134b92fb59f7e7dc9920c4
2016-09-03Remove mangling swift memcached list (now in puppet-tripleo)Steven Hardy1-1/+0
Moved this list manipulation to puppet-tripleo where it can easily reference the memcached_node_ips array instead of hard-coded output from the Controller. Depends-On: Ic8872e5e51732874ca5b93bff5efd3e7ed75bc31 Change-Id: I523a802c8d22be7602728ebe8966d9e2ee109cde Partially-Implements: blueprint custom-roles
2016-09-03Composable per-service VIP hieradataSteven Hardy1-20/+11
Change-Id: Iaf78a5eac223aeb50133fcc6fab043ee746d73fd Partially-Implements: blueprint custom-roles
2016-09-03Create NetIpListMap for all rolesSteven Hardy1-3/+81
This allows us to create $service_node_ips and $service_node_names hiera entries for services not deployed on the Controller role. Co-Authored-By: Thomas Herve <therve@redhat.com> Change-Id: I688618dda05ff908293c32b9d8518697d57e9eb0 Partially-Implements: blueprint custom-roles
2016-09-03Remove hard-coded per-service rabbitmq hieradataSteven Hardy1-1/+0
To avoid the hard-coded references which won't work with composable roles, we instead default to the rabbitmq_node_ips list in the per-service puppet-tripleo profiles. Change-Id: I76b7e06781fdd5d969503b6d73423bb3f5f7a41f Depends-On: Ie53c93456529420588eb1927703ea91b54095d87 Partially-Implements: blueprint custom-roles
2016-09-03Merge "Generate composable service node_names lists"Jenkins1-1/+2
2016-09-03Merge "Mv pacemaker and firewall out of controller"Jenkins1-2/+0
2016-09-03Merge "Change CloudName default value to include domain"Jenkins1-1/+1
2016-09-02Mv pacemaker and firewall out of controllerDan Prince1-2/+0
This patch moves settings for pacemaker and the tripleo firewall out of controller.yaml. Related bug: #1604414 Change-Id: I0164717bfd79cdea3de8eb7a64771028bea201ac
2016-09-02Generate composable service node_names listsSteven Hardy1-1/+2
Some puppet interfaces require a comma separated list of hostnames where a service is running, so generate it in a similar way to th service ips. Change-Id: Icdf5d993d089dc94035194bdbd52299fcbc793be Partially-Implements: blueprint custom-roles
2016-08-31Availability monitoring agents supportMartin Mágr1-1/+12
- adds possibility to install sensu-client on all nodes - each composable service has it's own subscription Co-Authored-By: Emilien Macchi <emilien@redhat.com> Co-Authored-By: Michele Baldessari <michele@redhat.com> Implements: blueprint tripleo-opstools-availability-monitoring Change-Id: I6a215763fd0f0015285b3573305d18d0f56c7770
2016-08-30Merge "Move ceph cluster config out of allNodesConfig"Jenkins1-1/+0
2016-08-30Mv Nova, Neutron, Horizon out of controller.yamlDan Prince1-1/+0
This patch moves the settings for Nova, Neutron, and Horizon out of controller.yaml. Also fixes the NovaPassword settings in nova-base.yaml so they don't use get_input. Also, creates a new apache.yaml base service to contain shared apache settings for several services which use Apache for WSGI. Co-Authored-By: Giulio Fidente <gfidente@redhat.com> Change-Id: I35d909bd5abc23976b5732a2b9af31cf1448838e Related-bug: #1604414
2016-08-30Change CloudName default value to include domainJuan Antonio Osorio Robles1-1/+1
The CloudName's default value only included the shortname which is not a very good practice. This now sets localdomain as the default domain there. Change-Id: Ic46b34d94a602aa948b873062015286cf49f7c3c
2016-08-30Move ceph cluster config out of allNodesConfigSteven Hardy1-1/+0
Pass the list of ceph nodes to the ceph_mon profile via the service template - this requires some fixup to the profile to handle the ipv6 case. Note this also aligns the ServiceNetMap keys so that the composable node_ips logic will generate the lists when the ceph_mon service is enabled. Change-Id: If8a5c65f17e677fe62243b3aa746fd642f72d2b0 Depends-On: I481dd2cd2cde7f1491080e6d9c7dcb7047c22de1 Partially-Implements: blueprint custom-roles
2016-08-29Merge "Add flag to assert that puppet manages the keystone endpoints"Jenkins1-0/+3
2016-08-29Add flag to assert that puppet manages the keystone endpointsJuan Antonio Osorio Robles1-0/+3
This will be read by the client and it will furtherly skip the post-config. Depends-On: I36e1c478e7c92be61da6a0d710e9025d4d354072 Depends-On: Ibbbe1e016e7e47ea5577de33c5a11d4088811616 Change-Id: Icfb650a1dff704cdcce7349dfb612298d38f2706
2016-08-28Create composable mapping between enabled services and role ipsSteven Hardy1-19/+4
Currently we have a hard-coded list of ips for various services that run on the controller, instead we can dynamically generate that list of per-service ips, initially only for the controller but this approach can be extended so it works for any role. Change-Id: I3c8a946e439539d239ad7281a1395414df0893eb Partially-Implements: blueprint custom-roles
2016-08-27Create hiera service_enabled keys for enabled servicesSteven Hardy1-0/+8
This adds a list of all enabled service_names in the enabled_services key, and also generates some boolean values e.g service_name_enabled, which is more convenient for some usage (such as haproxy where we need an easy way to set a flag saying if a given service is enabled) Partially-Implements: blueprint custom-roles Change-Id: I62273f403838893602816204d9bc50d516c0057f
2016-08-26Merge "Adds OpenDaylight composable service"Jenkins1-0/+7
2016-08-26Merge "Add deployment of CAs via hieradata"Jenkins1-0/+5
2016-08-26Merge "Enable usage of FQDNs for the endpoints"Jenkins1-1/+30
2016-08-26Adds OpenDaylight composable serviceTim Rozet1-0/+7
Introduces environment files for deploying OpenDaylight in two ways: - ODL only managing L2 as an ML2 plugin - ODL managing L2 and L3 DVR, by replacing NeutronL3Agent Two services are added. One to install ODL and configure OVS on the Controllers, and another service to only configure OVS on compute nodes. Paritally-Implements: blueprint opendaylight-integration Depends-On: I666dc0874f1d11a72a62d796f4f6d41f7aa87a3f Change-Id: Ide69e20cbf2ec6151953cb23e51478b770aca17f Signed-off-by: Tim Rozet <trozet@redhat.com>
2016-08-26Merge "SR-IOV nic agent changes in line with composable roles."Jenkins1-0/+1
2016-08-26Add global_config_settings to services' outputGiulio Fidente1-5/+41
The new global_config_settings output is meant to contain additional hieradata distributed by the services to all role types. Change-Id: I1beff8f7b12a4178e6081de6134cd8e67794d710
2016-08-25Move Swift hiera settings into composable servicesDan Prince1-6/+0
This moves the swift local bind and hash prefix settings into the relevant swift-* composable services. Change-Id: I807ff14c4cc9afa39efee13849e0f8c22718f1c0
2016-08-25Merge "Move glance/heat hiera settings to services"Jenkins1-1/+0
2016-08-25Merge "Move network bind IPs out of compute.yaml"Jenkins1-3/+0
2016-08-25Move glance/heat hiera settings to servicesDan Prince1-1/+0
This patch removes the remaining bind IP, and password settings for Heat and Glance into the composable services. Change-Id: I17abcb2a08a1972cbcf8163f6608ac22ddfc15f7 Related-bug: #1604414
2016-08-25Merge "Allow a fixed IP to be allocated to RedisVirtualIP"Jenkins1-0/+7
2016-08-24Move network bind IPs out of compute.yamlDan Prince1-3/+0
This patch moves the local bind host hiera data out of compute.yaml and into composable services. Change-Id: Iae4ca707c429cc8f5ec4d1d514ae7da0bf557dfd
2016-08-24Enable usage of FQDNs for the endpointsJuan Antonio Osorio Robles1-1/+30
The endpoint map has the capability of using the cloud's name for the endpoint. This is broken, however, since this has the problem that we only take into account the overcloud's external endpoint name, which we then cannot use if we have network-isolation enabled, which is the most common use-case for real deployments. So this change proposes the following: * The external endpoint is still CloudName. * We can now set different (or the same if we want) names for the different VIPs of the network. * Using CLOUDNAME for the endpoint map will get a name for the appropriate network. bp tls-via-certmonger Change-Id: I3e7144653f0a1d783d87e6f638304b297f718929
2016-08-23Move RabbitMQ settings out of controller.yamlDan Prince1-1/+0
This moves the config settings out of controller.yaml for RabbitMQ and into puppet/services/rabbitmq.yaml. Related-Bug: #1604414 Change-Id: I6b3d71653fb91b89b85dae7df4088afff22b71ac
2016-08-23Move MySQL settings out of puppet/controller.yamlDan Prince1-9/+0
This moves the config settings out of controller.yaml for MySQL and into puppet/services/database/mysql.yaml. The top leve MysqlRootPassword is still maintained by default in overcloud.yaml so that users who upgrade won't get broken. New users may optionally specify the MysqlRootPassword as a parameter instead which will take priority over the top level generated parameter. We drop the top level MysqlClusterUniquePart because it is no longer used (I think it was a remnant from t-i-e). Related-Bug: #1604414 Change-Id: I06ebac0f4c87dabfccefb2e550a64650868c5b26
2016-08-22Add deployment of CAs via hieradataJuan Antonio Osorio Robles1-0/+5
This enables us to pass a map of CAs to deploy the CA certificates using puppet and hiera instead of the bash script we were using. It also gives us the feature that we will be able to deploy several CA certificates on the nodes instead of just one as was the case before. Change-Id: I9559487874b80aeb093cc2fa2cfa7c0479d5a8b2 Depends-On: I84273b4cd6576a63fa78dc93ad6b077dd2a780c7
2016-08-22SR-IOV nic agent changes in line with composable roles.Sanjay Upadhyay1-0/+1
This add sriov nic agent as composable service. Implements: blueprint tripleo-sriov Depends-On: I3385d831a339deec7d1315f74b501e76109db811 Co-Authored-By: Saravanan KR <skramaja@redhat.com> Change-Id: I8d920f50da9e4261a9fdf702f7760efaa04a5278
2016-08-18Add DefaultPasswords to composable servicesDan Prince1-0/+15
This patch adds a new DefaultPasswords parameter to composable services. This is needed to help provide access to top level password resources that overcloud.yaml currently manages (passwords for Rabbit, Mysql, etc.). Moving the RandomString resources into composable services would cause them to regenerate within the stack. With this approach we can leave them where they are while we deprecate the top level mechanism and move the code that uses the passwords into the composable services. Change-Id: I4f21603c58a169a093962594e860933306879e3f
2016-08-18Pass ServiceNetMap to servicesGiulio Fidente1-1/+5
This will be needed to pick the network where the service has to bind to from within the service template. Change-Id: I52652e1ad8c7b360efd2c7af199e35932aaaea8c
2016-08-18Merge "Add management network to list of networks to ping"Jenkins1-0/+1
2016-08-18Merge "Add tripleo-firewall composable service"Jenkins1-0/+5
2016-08-18Merge "Add tripleo-packages composable service"Jenkins1-0/+5