Description: Nova API,Keystone,Heat Engine and API,Glance,Neutron,Dedicated MySQL server,Dedicated RabbitMQ Server,Group of Nova Computes HeatTemplateFormatVersion: '2012-12-12' Parameters: AdminPassword: Default: unset Description: The password for the keystone admin account, used for monitoring, querying neutron etc. Type: String NoEcho: true AdminToken: Default: unset Description: The keystone auth secret. Type: String NoEcho: true CinderPassword: Default: unset Description: The password for the cinder service account, used by cinder-api. Type: String NoEcho: true CinderISCSIHelper: Default: tgtadm Description: The iSCSI helper to use with cinder. Type: String OvercloudControlFlavor: Default: baremetal Description: Flavor for control nodes to request when deploying. Type: String OvercloudComputeFlavor: Default: baremetal Description: Flavor for compute nodes to request when deploying. Type: String GlancePassword: Default: unset Description: The password for the glance service account, used by the glance services. Type: String NoEcho: true GlanceNotifierStrategy: Description: Strategy to use for Glance notification queue Type: String Default: noop GlanceLogFile: Description: The filepath of the file to use for logging messages from Glance. Type: String Default: '' HeatPassword: Default: unset Description: The password for the Heat service account, used by the Heat services. Type: String NoEcho: true ImageUpdatePolicy: Default: 'REPLACE' Description: What policy to use when reconstructing instances. REBUILD for rebuilds, REBUILD_PRESERVE_EPHEMERAL to preserve /mnt. Type: String KeyName: Default: default Description: Name of an existing EC2 KeyPair to enable SSH access to the instances Type: String NeutronBridgeMappings: Description: The OVS logical->physical bridge mappings to use. Type: String Default: '' NeutronPassword: Default: unset Description: The password for the neutron service account, used by neutron agents. Type: String NoEcho: true CeilometerComputeAgent: Description: Indicates whether the Compute agent is present and expects nova-compute to be configured accordingly Type: String Default: '' AllowedValues: ['', Present] CeilometerMeteringSecret: Default: unset Description: Secret shared by the ceilometer services. Type: String NoEcho: true CeilometerPassword: Default: unset Description: The password for the ceilometer service account. Type: String NoEcho: true CloudName: Default: '' Description: The DNS name of this cloud. E.g. ci-overcloud.tripleo.org Type: String NovaComputeDriver: Default: libvirt.LibvirtDriver Type: String NovaComputeLibvirtType: Default: '' Type: String NovaImage: Type: String Default: overcloud-compute NovaPassword: Default: unset Description: The password for the nova service account, used by nova-api. Type: String NoEcho: true NeutronFlatNetworks: Type: String Default: '' Description: If set, flat networks to configure in neutron plugins. HypervisorNeutronPhysicalBridge: Default: '' Description: An OVS bridge to create on each hypervisor. Type: String HypervisorNeutronPublicInterface: Default: '' Description: What interface to add to the HypervisorNeutronPhysicalBridge. Type: String NeutronPublicInterface: Default: eth0 Description: What interface to bridge onto br-ex for network nodes. Type: String NeutronPublicInterfaceDefaultRoute: Default: '' Description: A custom default route for the NeutronPublicInterface. Type: String NeutronPublicInterfaceIP: Default: '' Description: A custom IP address to put onto the NeutronPublicInterface. Type: String NeutronPublicInterfaceRawDevice: Default: '' Description: If set, the public interface is a vlan with this device as the raw device. Type: String notcomputeImage: Type: String Default: overcloud-control NtpServer: Type: String Default: '' RabbitUserName: Default: guest Description: The username for RabbitMQ Type: String RabbitPassword: Default: guest Description: The password for RabbitMQ Type: String NoEcho: true RabbitCookieSalt: Type: String Default: unset Description: Salt for the rabbit cookie, change this to force the randomly generated rabbit cookie to change. HeatStackDomainAdminPassword: Description: Password for heat_domain_admin user. Type: String Default: '' NoEcho: true LiveUpdateUserName: Type: String Description: The live-update username for the undercloud Glance API. Default: '' LiveUpdateTenantName: Type: String Description: The live-update tenant name for the undercloud Glance API. Default: '' LiveUpdateHost: Type: String Description: The IP address for the undercloud Glance API. Default: '' LiveUpdatePassword: Type: String Default: '' Description: The live-update password for the undercloud Glance API. NoEcho: true LiveUpdateComputeImage: Type: String Description: The image ID for live-updates to the overcloud compute nodes. Default: '' Resources: RabbitCookie: Type: OS::Heat::RandomString Properties: length: 20 salt: Ref: RabbitCookieSalt AccessPolicy: Properties: AllowedResources: - notCompute0 - notCompute0Config Type: OS::Heat::AccessPolicy ComputeAccessPolicy: Properties: AllowedResources: - NovaCompute0 - NovaCompute0Config Type: OS::Heat::AccessPolicy notCompute0Key: Properties: UserName: Ref: User Type: AWS::IAM::AccessKey notCompute0CompletionCondition: Type: AWS::CloudFormation::WaitCondition DependsOn: notCompute0Config Properties: Handle: {Ref: notCompute0CompletionHandle} Count: '1' Timeout: '1800' notCompute0CompletionHandle: Type: OS::Heat::UpdateWaitConditionHandle NovaCompute0Key: Type: FileInclude Path: nova-compute-instance.yaml SubKey: Resources.NovaCompute0Key NovaCompute0CompletionCondition: Type: FileInclude Path: nova-compute-instance.yaml SubKey: Resources.NovaCompute0CompletionCondition NovaCompute0CompletionHandle: Type: FileInclude Path: nova-compute-instance.yaml SubKey: Resources.NovaCompute0CompletionHandle ComputeUser: Properties: Policies: - Ref: ComputeAccessPolicy Type: AWS::IAM::User NovaCompute0Config: Type: FileInclude Path: nova-compute-instance.yaml SubKey: Resources.NovaCompute0Config Parameters: NovaApiHost: {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ] } KeystoneHost: {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ] } RabbitHost: {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ] } NeutronHost: {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ] } GlanceHost: {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ] } NovaDSN: {"Fn::Join": ['', ['mysql://nova:unset@', {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ]}, '/nova']]} CeilometerDSN: {"Fn::Join": ['', ['mysql://ceilometer:unset@', {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ]}, '/ceilometer']]} NeutronDSN: {"Fn::Join": ['', ['mysql://neutron:unset@', {"Fn::Select": [ 0, {"Fn::Select": [ "ctlplane", {"Fn::GetAtt": [notCompute0, networks]} ]} ]}, '/neutron']]} NeutronNetworkType: "gre" NeutronEnableTunnelling: "True" NeutronFlatNetworks: Ref: NeutronFlatNetworks NeutronNetworkVLANRanges: "" NeutronPhysicalBridge: Ref: HypervisorNeutronPhysicalBridge NeutronPublicInterface: Ref: HypervisorNeutronPublicInterface NeutronBridgeMappings: Ref: NeutronBridgeMappings StaticHosts: Fn::Join: - "\n" - - Fn::Join: - "\n" - Merge::Map: NovaCompute0: Fn::Join: - ' ' - - Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - NovaCompute0 - networks - Fn::Select: - name - Fn::GetAtt: - NovaCompute0 - show - Fn::Join: - '.' - - Fn::Select: - name - Fn::GetAtt: - NovaCompute0 - show - 'novalocal' - Fn::Join: - ' ' - - Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - notCompute0 - networks - {Ref: CloudName} # If CloudName is unset, make the hosts line still valid - unused NovaCompute0: Type: FileInclude Path: nova-compute-instance.yaml SubKey: Resources.NovaCompute0 User: Properties: Policies: - Ref: AccessPolicy Type: AWS::IAM::User notCompute0Config: Type: AWS::AutoScaling::LaunchConfiguration Properties: ImageId: '0' InstanceType: '0' Metadata: OpenStack::Heat::Stack: {} OpenStack::ImageBuilder::Elements: - boot-stack - heat-cfntools - heat-localip - neutron-network-node admin-password: Ref: AdminPassword admin-token: Ref: AdminToken bootstack: public_interface_ip: Ref: NeutronPublicInterfaceIP cinder: db: mysql://cinder:unset@localhost/cinder volume_size_mb: '5000' service-password: Ref: CinderPassword iscsi-helper: Ref: CinderISCSIHelper completion-handle: Ref: notCompute0CompletionHandle controller-address: Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks db-password: unset glance: backend: swift db: mysql://glance:unset@localhost/glance host: Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks service-password: Ref: GlancePassword swift-store-user: service:glance swift-store-key: Ref: GlancePassword notifier-strategy: Ref: GlanceNotifierStrategy log-file: Ref: GlanceLogFile heat: admin_password: Ref: HeatPassword admin_tenant_name: service admin_user: heat auth_encryption_key: unset___________ db: mysql://heat:unset@localhost/heat stack_domain_admin_password: {Ref: HeatStackDomainAdminPassword} watch_server_url: Fn::Join: - '' - - 'http://' - Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks - ':8003' metadata_server_url: Fn::Join: - '' - - 'http://' - Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks - ':8000' waitcondition_server_url: Fn::Join: - '' - - 'http://' - Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks - ':8000/v1/waitcondition' hosts: Fn::Join: - ' ' - - Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - notCompute0 - networks - {Ref: CloudName} keystone: db: mysql://keystone:unset@localhost/keystone host: Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks neutron: flat-networks: {Ref: NeutronFlatNetworks} host: Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - notCompute0 - networks metadata_proxy_shared_secret: unset ovs: enable_tunneling: 'True' local_ip: Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - notCompute0 - networks bridge_mappings: {Ref: NeutronBridgeMappings} public_interface: Ref: NeutronPublicInterface public_interface_raw_device: Ref: NeutronPublicInterfaceRawDevice public_interface_route: Ref: NeutronPublicInterfaceDefaultRoute physical_bridge: br-ex tenant_network_type: gre ovs_db: mysql://neutron:unset@localhost/ovs_neutron?charset=utf8 service-password: Ref: NeutronPassword ceilometer: db: mysql://ceilometer:unset@localhost/ceilometer metering_secret: {Ref: CeilometerMeteringSecret} service-password: Ref: CeilometerPassword nova: compute_driver: libvirt.LibvirtDriver db: mysql://nova:unset@localhost/nova default_floating_pool: ext-net host: Fn::Select: - 0 - Fn::Select: - 'ctlplane' - Fn::GetAtt: - notCompute0 - networks metadata-proxy: true service-password: Ref: NovaPassword os-collect-config: cfn: access_key_id: Ref: notCompute0Key path: notCompute0Config.Metadata secret_access_key: Fn::GetAtt: - notCompute0Key - SecretAccessKey stack_name: Ref: AWS::StackName rabbit: host: Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - notCompute0 - networks username: Ref: RabbitUserName password: Ref: RabbitPassword cookie: Fn::GetAtt: - RabbitCookie - value ntp: servers: - {server: {Ref: NtpServer}, fudge: "stratum 0"} notCompute0: Type: OS::Nova::Server Properties: image: Ref: notcomputeImage image_update_policy: Ref: ImageUpdatePolicy flavor: Ref: OvercloudControlFlavor key_name: Ref: KeyName Metadata: os-collect-config: cfn: access_key_id: Ref: notCompute0Key path: notCompute0Config.Metadata secret_access_key: Fn::GetAtt: - notCompute0Key - SecretAccessKey stack_name: Ref: AWS::StackName Outputs: KeystoneURL: Description: URL for the Overcloud Keystone service Value: Fn::Join: - '' - - http:// - Fn::Select: - 0 - Fn::Select: - ctlplane - Fn::GetAtt: - notCompute0 - networks - :5000/v2.0/