heat_template_version: ocata

description: >
  Pacemaker remote service configured with Puppet

parameters:
  ServiceNetMap:
    default: {}
    description: Mapping of service_name -> network name. Typically set
                 via parameter_defaults in the resource registry.  This
                 mapping overrides those in ServiceNetMapDefaults.
    type: json
  DefaultPasswords:
    default: {}
    type: json
  EndpointMap:
    default: {}
    description: Mapping of service endpoint -> protocol. Typically set
                 via parameter_defaults in the resource registry.
    type: json
  PacemakerRemoteAuthkey:
    type: string
    description: The authkey for the pacemaker remote service.
    hidden: true
    default: ''
  MonitoringSubscriptionPacemakerRemote:
    default: 'overcloud-pacemaker_remote'
    type: string
  PacemakerRemoteLoggingSource:
    type: json
    default:
      tag: system.pacemaker_remote
      path: /var/log/pacemaker.log
      format: >-
        /^(?<time>[^ ]*\s*[^ ]* [^ ]*)
        \[(?<pid>[^ ]*)\]
        (?<host>[^ ]*)
        (?<message>.*)$/

outputs:
  role_data:
    description: Role data for the Pacemaker remote role.
    value:
      service_name: pacemaker_remote
      monitoring_subscription: {get_param: MonitoringSubscriptionPacemakerRemote}
      logging_groups:
        - haclient
      logging_source: {get_param: PacemakerRemoteLoggingSource}
      config_settings:
        tripleo.pacemaker_remote.firewall_rules:
          '130 pacemaker_remote tcp':
            proto: 'tcp'
            dport:
              - 3121
        tripleo::profile::base::pacemaker_remote::remote_authkey: {get_param: PacemakerRemoteAuthkey}
      step_config: |
        include ::tripleo::profile::base::pacemaker_remote