1 heat_template_version: 2015-04-30
4 OpenStack control plane node. Can be wrapped in a ResourceGroup for scaling.
9 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
14 description: The keystone auth secret and db password.
19 description: The ceilometer backend type.
21 CeilometerMeteringSecret:
23 description: Secret shared by the ceilometer services.
28 description: The password for the ceilometer service and db account.
31 CinderEnableNfsBackend:
33 description: Whether to enable or not the NFS backend for Cinder
35 CinderEnableIscsiBackend:
37 description: Whether to enable or not the Iscsi backend for Cinder
39 CinderEnableRbdBackend:
41 description: Whether to enable or not the Rbd backend for Cinder
45 description: The iSCSI helper to use with cinder.
47 CinderLVMLoopDeviceSize:
49 description: The size of the loopback file used by the cinder LVM driver.
51 CinderNfsMountOptions:
54 Mount options for NFS mounts used by Cinder NFS backend. Effective
55 when CinderEnableNfsBackend is true.
60 NFS servers used by Cinder NFS backend. Effective when
61 CinderEnableNfsBackend is true.
62 type: comma_delimited_list
65 description: The password for the cinder service and db account, used by cinder-api.
70 description: The DNS name of this cloud. E.g. ci-overcloud.tripleo.org
72 ControllerExtraConfig:
75 Controller specific configuration to inject into the cluster. Same
76 structure as ExtraConfig.
78 ControlVirtualInterface:
80 description: Interface where virtual ip will be assigned.
84 description: Set to True to enable debugging on all services.
88 description: Whether to enable fencing in Pacemaker or not.
92 description: Whether to use Galera instead of regular MariaDB.
96 description: Whether to deploy Ceph Storage (OSD) on the Controller
100 description: Whether to enable Swift Storage on the Controller
105 Additional configuration to inject into the cluster. The JSON should have
106 the following structure:
109 [{"section": "SECTIONNAME",
111 [{"option": "OPTIONNAME",
122 [{"section": "default",
124 [{"option": "compute_manager",
125 "value": "ironic.nova.compute.manager.ClusterComputeManager"
131 [{"option": "driver",
132 "value": "nova.cells.rpc_driver.CellsRPCDriver"
143 Pacemaker fencing configuration. The JSON should have
144 the following structure:
148 "agent": "AGENT_NAME",
149 "host_mac": "HOST_MAC_ADDRESS",
150 "params": {"PARAM_NAME": "PARAM_VALUE"}
158 "agent": "fence_xvm",
159 "host_mac": "52:54:00:aa:bb:cc",
161 "multicast_address": "225.0.0.12",
162 "port": "baremetal_0",
164 "manage_key_file": true,
165 "key_file": "/etc/fence_xvm.key",
166 "key_file_password": "abcdef"
173 description: Flavor for control nodes to request when deploying.
176 - custom_constraint: nova.flavor
177 GlanceNotifierStrategy:
178 description: Strategy to use for Glance notification queue
182 description: The filepath of the file to use for logging messages from Glance.
187 description: The password for the glance service and db account, used by the glance services.
192 description: Glance port.
196 description: Protocol to use when connecting to glance, set to https for SSL.
200 description: The short name of the Glance backend to use. Should be one
201 of swift, rbd, or file
204 - allowed_values: ['swift', 'file', 'rbd']
207 description: The password for the Heat service and db account, used by the Heat services.
210 HeatStackDomainAdminPassword:
211 description: Password for heat_domain_admin user.
215 HeatAuthEncryptionKey:
216 description: Auth encryption key for heat-engine
219 description: Secret key for Django
223 default: overcloud-control
225 - custom_constraint: glance.image
227 default: 'REBUILD_PRESERVE_EPHEMERAL'
228 description: What policy to use when reconstructing instances. REBUILD for rebuilds, REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
232 description: Name of an existing EC2 KeyPair to enable SSH access to the instances
235 - custom_constraint: nova.keypair
236 KeystoneCACertificate:
238 description: Keystone self-signed certificate authority certificate.
240 KeystoneSigningCertificate:
242 description: Keystone certificate for verifying token validity.
246 description: Keystone key for signing tokens.
249 KeystoneSSLCertificate:
251 description: Keystone certificate for verifying token validity.
253 KeystoneSSLCertificateKey:
255 description: Keystone key for signing tokens.
258 KeystoneNotificationDriver:
259 description: Comma-separated list of Oslo notification drivers used by Keystone
260 default: ['messaging']
261 type: comma_delimited_list
262 KeystoneNotificationFormat:
263 description: The Keystone notification format
267 - allowed_values: [ 'basic', 'cadf' ]
268 MysqlClusterUniquePart:
269 description: A unique identifier of the MySQL cluster the controller is in.
271 default: 'unset' # Has to be here because of the ignored empty value bug
272 # Drop the validation: https://bugs.launchpad.net/tripleo/+bug/1405446
274 # - length: {min: 4, max: 10}
275 MysqlInnodbBufferPoolSize:
277 Specifies the size of the buffer pool in megabytes. Setting to
278 zero should be interpreted as "no value" and will defer to the
283 description: Configures MySQL max_connections config setting
289 default: '' # Has to be here because of the ignored empty value bug
290 NeutronExternalNetworkBridge:
291 description: Name of bridge used for external network traffic.
294 NeutronBridgeMappings:
296 The OVS logical->physical bridge mappings to use. See the Neutron
297 documentation for details. Defaults to mapping br-ex - the external
298 bridge on hosts - to a physical name 'datacentre' which can be used
299 to create provider networks (and we use this for the default floating
300 network) - if changing this either use different post-install network
301 scripts or be sure to keep 'datacentre' as a mapping network name.
303 default: "datacentre:br-ex"
304 NeutronDnsmasqOptions:
305 default: 'dhcp-option-force=26,1400'
306 description: Dnsmasq options for neutron-dhcp-agent. The default value here forces MTU to be set to 1400 to account for the gre tunnel overhead.
310 description: Agent mode for the neutron-l3-agent on the controller hosts
314 description: Whether to configure Neutron Distributed Virtual Routers
316 NeutronMetadataProxySharedSecret:
318 description: Shared secret to prevent spoofing
323 The core plugin for Neutron. The value should be the entrypoint to be loaded
324 from neutron.core_plugins namespace.
326 NeutronServicePlugins:
329 Comma-separated list of service plugin entrypoints to be loaded from the
330 neutron.service_plugins namespace.
331 type: comma_delimited_list
333 default: "vxlan,vlan,flat,gre"
335 Comma-separated list of network type driver entrypoints to be loaded.
336 type: comma_delimited_list
337 NeutronMechanismDrivers:
338 default: 'openvswitch'
340 The mechanism drivers for the Neutron tenant network. To specify multiple
341 values, use a comma separated string, like so: 'openvswitch,l2_population'
343 NeutronAllowL3AgentFailover:
345 description: Allow automatic l3-agent failover
349 description: Whether to enable l3-agent HA
351 NeutronDhcpAgentsPerNetwork:
354 description: The number of neutron dhcp agents to schedule per network
355 NeutronEnableTunnelling:
360 default: 'datacentre'
361 description: If set, flat networks to configure in neutron plugins.
364 description: The tenant network type for Neutron, either gre or vxlan.
366 NeutronNetworkVLANRanges:
367 default: 'datacentre'
369 The Neutron ML2 and OpenVSwitch vlan mapping range to support. See the
370 Neutron documentation for permitted values. Defaults to permitting any
371 VLAN on the 'datacentre' physical network (See NeutronBridgeMappings).
372 type: comma_delimited_list
375 description: The password for the neutron service and db account, used by neutron agents.
378 NeutronPublicInterface:
380 description: What interface to bridge onto br-ex for network nodes.
382 NeutronPublicInterfaceTag:
385 VLAN tag for creating a public VLAN. The tag will be used to
386 create an access port on the exterior bridge for each control plane node,
387 and that port will be given the IP address returned by neutron from the
388 public network. Set CONTROLEXTRA=overcloud-vlan-port.yaml when compiling
389 overcloud.yaml to include the deployment of VLAN ports to the control
392 NeutronPublicInterfaceDefaultRoute:
394 description: A custom default route for the NeutronPublicInterface.
396 NeutronPublicInterfaceIP:
398 description: A custom IP address to put onto the NeutronPublicInterface.
400 NeutronPublicInterfaceRawDevice:
402 description: If set, the public interface is a vlan with this device as the raw device.
407 The tunnel types for the Neutron tenant network. To specify multiple
408 values, use a comma separated string, like so: 'gre,vxlan'
410 NeutronTunnelIdRanges:
412 Comma-separated list of <tun_min>:<tun_max> tuples enumerating ranges
413 of GRE tunnel IDs that are available for tenant network allocation
414 default: ["1:1000", ]
415 type: comma_delimited_list
418 Comma-separated list of <vni_min>:<vni_max> tuples enumerating ranges
419 of VXLAN VNI IDs that are available for tenant network allocation
420 default: ["1:1000", ]
421 type: comma_delimited_list
424 description: The password for the nova service and db account, used by nova-api.
429 description: Should MongoDb journaling be disabled
436 description: The password for the 'pcsd' user.
437 PublicVirtualInterface:
440 Specifies the interface where the public-facing virtual ip will be assigned.
441 This should be int_public when a VLAN is being used.
445 default: '' # Has to be here because of the ignored empty value bug
448 default: '' # Has to be here because of the ignored empty value bug
452 description: The password for RabbitMQ
457 description: The username for RabbitMQ
462 Rabbit client subscriber parameter to specify
463 an SSL connection to the RabbitMQ host.
467 description: Set rabbit subscriber port, change this if using SSL
471 default: '' # Has to be here because of the ignored empty value bug
472 SnmpdReadonlyUserName:
473 default: ro_snmp_user
474 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
476 SnmpdReadonlyUserPassword:
478 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
483 description: If set, the contents of an SSL certificate authority file.
487 description: If set, the contents of an SSL certificate .crt file for encrypting SSL endpoints.
492 description: If set, the contents of an SSL certificate .key file for encrypting SSL endpoints.
497 description: A random string to be used as a salt when hashing to determine mappings
503 description: Value of mount_check in Swift account/container/object -server.conf
508 description: The minimum time (in hours) before a partition in a ring can be moved following a rebalance.
511 description: Partition Power to use when building Swift rings
515 description: The password for the swift service account, used by the swift proxy
522 description: How many replicas to use in the swift rings.
525 default: '' # Has to be here because of the ignored empty value bug
535 KeystoneAdminApiVirtualIP:
538 KeystonePublicApiVirtualIP:
546 description: Mapping of service_name -> network name. Typically set
547 via parameter_defaults in the resource registry.
553 Setting to a previously unused value during stack-update will trigger
554 package update on all nodes
557 default: '' # Defaults to Heat created hostname
562 type: OS::Nova::Server
564 image: {get_param: Image}
565 image_update_policy: {get_param: ImageUpdatePolicy}
566 flavor: {get_param: Flavor}
567 key_name: {get_param: KeyName}
570 user_data_format: SOFTWARE_CONFIG
571 user_data: {get_resource: NodeUserData}
572 name: {get_param: Hostname}
575 type: OS::TripleO::NodeUserData
578 type: OS::TripleO::Controller::Ports::ExternalPort
580 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
583 type: OS::TripleO::Controller::Ports::InternalApiPort
585 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
588 type: OS::TripleO::Controller::Ports::StoragePort
590 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
593 type: OS::TripleO::Controller::Ports::StorageMgmtPort
595 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
598 type: OS::TripleO::Controller::Ports::TenantPort
600 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
603 type: OS::TripleO::Controller::Net::SoftwareConfig
605 ControlPlaneIp: {get_attr: [Controller, networks, ctlplane, 0]}
606 ExternalIpSubnet: {get_attr: [ExternalPort, ip_subnet]}
607 InternalApiIpSubnet: {get_attr: [InternalApiPort, ip_subnet]}
608 StorageIpSubnet: {get_attr: [StoragePort, ip_subnet]}
609 StorageMgmtIpSubnet: {get_attr: [StorageMgmtPort, ip_subnet]}
610 TenantIpSubnet: {get_attr: [TenantPort, ip_subnet]}
613 type: OS::TripleO::SoftwareDeployment
615 signal_transport: NO_SIGNAL
616 config: {get_resource: NetworkConfig}
617 server: {get_resource: Controller}
620 interface_name: {get_param: NeutronPublicInterface}
622 ControllerPassthroughConfig:
623 type: OS::Heat::StructuredConfig
625 group: os-apply-config
626 config: {get_input: passthrough_config}
628 ControllerPassthroughConfigSpecific:
629 type: OS::Heat::StructuredConfig
631 group: os-apply-config
632 config: {get_input: passthrough_config_specific}
635 type: OS::Heat::StructuredConfig
637 group: os-apply-config
639 admin-password: {get_input: admin_password}
640 admin-token: {get_input: admin_token}
642 public_interface_ip: {get_input: neutron_public_interface_ip}
644 nodeid: {get_input: bootstack_nodeid}
646 db: {get_input: cinder_dsn}
647 debug: {get_input: debug}
648 volume_size_mb: {get_input: cinder_lvm_loop_device_size}
649 service-password: {get_input: cinder_password}
650 iscsi-helper: {get_input: CinderISCSIHelper}
651 controller-address: {get_input: controller_host}
653 bindnetaddr: {get_input: controller_host}
656 stonith_enabled : false
658 quorum_policy : ignore
662 host: {get_input: controller_virtual_ip}
664 db: {get_input: glance_dsn}
665 debug: {get_input: debug}
666 host: {get_input: controller_virtual_ip}
667 port: {get_input: glance_port}
668 protocol: {get_input: glance_protocol}
669 service-password: {get_input: glance_password}
670 swift-store-user: service:glance
671 swift-store-key: {get_input: glance_password}
672 notifier-strategy: {get_input: glance_notifier_strategy}
673 log-file: {get_input: glance_log_file}
675 admin_password: {get_input: heat_password}
676 admin_tenant_name: service
678 auth_encryption_key: {get_input: heat_auth_encryption_key}
679 db: {get_input: heat_dsn}
680 debug: {get_input: debug}
681 stack_domain_admin_password: {get_input: heat_stack_domain_admin_password}
682 watch_server_url: {get_input: heat.watch_server_url}
683 metadata_server_url: {get_input: heat.metadata_server_url}
684 waitcondition_server_url: {get_input: heat.waitcondition_server_url}
686 db: {get_input: keystone_dsn}
687 debug: {get_input: debug}
688 host: {get_input: controller_virtual_ip}
689 ca_certificate: {get_input: keystone_ca_certificate}
690 signing_key: {get_input: keystone_signing_key}
691 signing_certificate: {get_input: keystone_signing_certificate}
693 certificate: {get_input: keystone_ssl_certificate}
694 certificate_key: {get_input: keystone_ssl_certificate_key}
696 innodb_buffer_pool_size: {get_input: mysql_innodb_buffer_pool_size}
698 root-password: {get_input: mysql_root_password}
699 cluster_name: {get_input: mysql_cluster_name}
701 debug: {get_input: debug}
702 flat-networks: {get_input: neutron_flat_networks}
703 host: {get_input: controller_virtual_ip}
704 metadata_proxy_shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
705 agent_mode: {get_input: neutron_agent_mode}
706 router_distributed: {get_input: neutron_router_distributed}
707 core_plugin: {get_input: neutron_core_plugin}
708 service_plugins: {get_input: neutron_service_plugins}
709 type_drivers: {get_input: neutron_type_drivers}
710 mechanism_drivers: {get_input: neutron_mechanism_drivers}
711 allow_automatic_l3agent_failover: {get_input: neutron_allow_l3agent_failover}
712 l3_ha: {get_input: neutron_l3_ha}
713 dhcp_agents_per_network: {get_input: neutron_dhcp_agents_per_network}
715 enable_tunneling: {get_input: neutron_enable_tunneling}
716 local_ip: {get_input: controller_host}
717 network_vlan_ranges: {get_input: neutron_network_vlan_ranges}
718 bridge_mappings: {get_input: neutron_bridge_mappings}
719 public_interface: {get_input: neutron_public_interface}
720 public_interface_raw_device: {get_input: neutron_public_interface_raw_device}
721 public_interface_route: {get_input: neutron_public_interface_default_route}
722 public_interface_tag: {get_input: neutron_public_interface_tag}
723 physical_bridge: br-ex
724 tenant_network_type: {get_input: neutron_tenant_network_type}
725 tunnel_types: {get_input: neutron_tunnel_types}
726 tunnel_id_ranges: {get_input: neutron_tunnel_id_ranges}
727 vni_ranges: {get_input: neutron_vni_ranges}
728 ovs_db: {get_input: neutron_dsn}
729 service-password: {get_input: neutron_password}
730 dnsmasq-options: {get_input: neutron_dnsmasq_options}
732 db: {get_input: ceilometer_dsn}
733 debug: {get_input: debug}
734 metering_secret: {get_input: ceilometer_metering_secret}
735 service-password: {get_input: ceilometer_password}
737 export_MIB: UCD-SNMP-MIB
738 readonly_user_name: {get_input: snmpd_readonly_user_name}
739 readonly_user_password: {get_input: snmpd_readonly_user_password}
741 compute_driver: libvirt.LibvirtDriver
742 db: {get_input: nova_dsn}
743 default_floating_pool:
745 host: {get_input: controller_virtual_ip}
747 service-password: {get_input: nova_password}
749 nojournal: {get_input: mongodb_no_journal}
751 host: {get_input: controller_virtual_ip}
752 username: {get_input: rabbit_username}
753 password: {get_input: rabbit_password}
754 cookie: {get_input: rabbit_cookie}
755 rabbit_client_use_ssl: {get_input: rabbit_client_use_ssl}
756 rabbit_port: {get_input: rabbit_client_port}
759 - {server: {get_input: ntp_server}}
762 - vrrp_instance_name: VI_CONTROL
763 virtual_router_id: 51
764 keepalive_interface: {get_input: control_virtual_interface}
767 - ip: {get_input: controller_virtual_ip}
768 interface: {get_input: control_virtual_interface}
769 - vrrp_instance_name: VI_PUBLIC
770 virtual_router_id: 52
771 keepalive_interface: {get_input: public_virtual_interface}
774 - ip: {get_input: public_virtual_ip}
775 interface: {get_input: public_virtual_interface}
782 keepalive_interface: {get_input: public_virtual_interface}
786 ip: {get_input: controller_virtual_ip}
787 interface: {get_input: control_virtual_interface}
789 ip: {get_input: public_virtual_ip}
790 interface: {get_input: public_virtual_interface}
793 - ip: {get_input: controller_virtual_ip}
795 - option httpchk GET /
797 - name: keystone_admin
799 net_binds: &public_binds
800 - ip: {get_input: controller_virtual_ip}
801 - ip: {get_input: public_virtual_ip}
802 - name: keystone_public
804 net_binds: *public_binds
807 net_binds: *public_binds
810 net_binds: *public_binds
813 net_binds: *public_binds
816 net_binds: *public_binds
817 - name: glance_registry
819 net_binds: *public_binds
820 options: # overwrite options as glace_reg needs auth for http req
823 net_binds: *public_binds
824 - name: heat_cloudwatch
826 net_binds: *public_binds
829 net_binds: *public_binds
841 net_binds: *public_binds
842 - name: nova_metadata
844 net_binds: *public_binds
845 - name: nova_novncproxy
847 net_binds: *public_binds
850 net_binds: *public_binds
851 options: # overwrite options as ceil needs auth for http req
852 - name: swift_proxy_server
854 net_binds: *public_binds
856 - option httpchk GET /info
864 ControllerDeployment:
865 type: OS::TripleO::SoftwareDeployment
867 signal_transport: NO_SIGNAL
868 config: {get_resource: ControllerConfig}
869 server: {get_resource: Controller}
871 bootstack_nodeid: {get_attr: [Controller, name]}
872 controller_host: {get_attr: [Controller, networks, ctlplane, 0]}
873 controller_virtual_ip: {get_param: VirtualIP}
874 neutron_enable_tunneling: {get_param: NeutronEnableTunnelling}
875 heat.watch_server_url:
879 - {get_param: VirtualIP}
881 heat.metadata_server_url:
885 - {get_param: VirtualIP}
887 heat.waitcondition_server_url:
891 - {get_param: VirtualIP}
892 - ':8000/v1/waitcondition'
893 admin_password: {get_param: AdminPassword}
894 admin_token: {get_param: AdminToken}
895 neutron_public_interface_ip: {get_param: NeutronPublicInterfaceIP}
896 debug: {get_param: Debug}
897 cinder_lvm_loop_device_size: {get_param: CinderLVMLoopDeviceSize}
898 cinder_password: {get_param: CinderPassword}
899 cinder_iscsi_helper: {get_param: CinderISCSIHelper}
903 - - 'mysql://cinder:'
904 - {get_param: CinderPassword}
906 - {get_param: VirtualIP}
908 glance_port: {get_param: GlancePort}
909 glance_protocol: {get_param: GlanceProtocol}
910 glance_password: {get_param: GlancePassword}
911 glance_notifier_strategy: {get_param: GlanceNotifierStrategy}
912 glance_log_file: {get_param: GlanceLogFile}
916 - - 'mysql://glance:'
917 - {get_param: GlancePassword}
919 - {get_param: VirtualIP}
921 heat_password: {get_param: HeatPassword}
922 heat_stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
923 heat_auth_encryption_key: {get_param: HeatAuthEncryptionKey}
928 - {get_param: HeatPassword}
930 - {get_param: VirtualIP}
932 keystone_ca_certificate: {get_param: KeystoneCACertificate}
933 keystone_signing_key: {get_param: KeystoneSigningKey}
934 keystone_signing_certificate: {get_param: KeystoneSigningCertificate}
935 keystone_ssl_certificate: {get_param: KeystoneSSLCertificate}
936 keystone_ssl_certificate_key: {get_param: KeystoneSSLCertificateKey}
940 - - 'mysql://keystone:'
941 - {get_param: AdminToken}
943 - {get_param: VirtualIP}
945 mongodb_no_journal: {get_param: MongoDbNoJournal}
946 mysql_innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
947 mysql_root_password: {get_param: MysqlRootPassword}
950 template: tripleo-CLUSTER
952 CLUSTER: {get_param: MysqlClusterUniquePart}
953 neutron_flat_networks: {get_param: NeutronFlatNetworks}
954 neutron_metadata_proxy_shared_secret: {get_param: NeutronMetadataProxySharedSecret}
955 neutron_agent_mode: {get_param: NeutronAgentMode}
956 neutron_router_distributed: {get_param: NeutronDVR}
957 neutron_core_plugin: {get_param: NeutronCorePlugin}
958 neutron_service_plugins:
960 template: "['PLUGINS']"
965 - {get_param: NeutronServicePlugins}
966 neutron_type_drivers:
968 template: "['DRIVERS']"
973 - {get_param: NeutronTypeDrivers}
974 neutron_mechanism_drivers: {get_param: NeutronMechanismDrivers}
975 neutron_allow_l3agent_failover: {get_param: NeutronAllowL3AgentFailover}
976 neutron_l3_ha: {get_param: NeutronL3HA}
977 neutron_dhcp_agents_per_network: {get_param: NeutronDhcpAgentsPerNetwork}
978 neutron_network_vlan_ranges: {get_param: NeutronNetworkVLANRanges}
979 neutron_bridge_mappings: {get_param: NeutronBridgeMappings}
980 neutron_public_interface: {get_param: NeutronPublicInterface}
981 neutron_public_interface_raw_device: {get_param: NeutronPublicInterfaceRawDevice}
982 neutron_public_interface_default_route: {get_param: NeutronPublicInterfaceDefaultRoute}
983 neutron_public_interface_tag: {get_param: NeutronPublicInterfaceTag}
984 neutron_tenant_network_type: {get_param: NeutronNetworkType}
985 neutron_tunnel_types: {get_param: NeutronTunnelTypes}
986 neutron_tunnel_id_ranges:
988 template: "['RANGES']"
993 - {get_param: NeutronTunnelIdRanges}
996 template: "['RANGES']"
1001 - {get_param: NeutronVniRanges}
1002 neutron_password: {get_param: NeutronPassword}
1003 neutron_dnsmasq_options: {get_param: NeutronDnsmasqOptions}
1007 - - 'mysql://neutron:'
1008 - {get_param: NeutronPassword}
1010 - {get_param: VirtualIP}
1011 - '/ovs_neutron?charset=utf8'
1012 ceilometer_metering_secret: {get_param: CeilometerMeteringSecret}
1013 ceilometer_password: {get_param: CeilometerPassword}
1017 - - 'mysql://ceilometer:'
1018 - {get_param: CeilometerPassword}
1020 - {get_param: VirtualIP}
1022 snmpd_readonly_user_name: {get_param: SnmpdReadonlyUserName}
1023 snmpd_readonly_user_password: {get_param: SnmpdReadonlyUserPassword}
1024 nova_password: {get_param: NovaPassword}
1029 - {get_param: NovaPassword}
1031 - {get_param: VirtualIP}
1033 rabbit_username: {get_param: RabbitUserName}
1034 rabbit_password: {get_param: RabbitPassword}
1035 rabbit_cookie: {get_param: RabbitCookie}
1036 rabbit_client_use_ssl: {get_param: RabbitClientUseSSL}
1037 rabbit_client_port: {get_param: RabbitClientPort}
1038 ntp_server: {get_param: NtpServer}
1039 control_virtual_interface: {get_param: ControlVirtualInterface}
1040 public_virtual_interface: {get_param: PublicVirtualInterface}
1041 public_virtual_ip: {get_param: PublicVirtualIP}
1044 type: OS::Heat::StructuredConfig
1046 group: os-apply-config
1049 ca_certificate: {get_input: ssl_ca_certificate}
1051 cert: {get_input: ssl_certificate}
1052 key: {get_input: ssl_key}
1053 cacert: {get_input: ssl_ca_certificate}
1058 connect_host: {get_input: controller_host}
1062 connect_host: {get_input: controller_host}
1066 connect_host: {get_input: controller_host}
1070 connect_host: {get_input: controller_host}
1074 connect_host: {get_input: controller_host}
1075 - name: 'swift-proxy'
1078 connect_host: {get_input: controller_host}
1082 connect_host: {get_input: controller_host}
1083 - name: 'ceilometer'
1086 connect_host: {get_input: controller_host}
1088 ControllerSSLDeployment:
1089 type: OS::Heat::StructuredDeployment
1091 config: {get_resource: SSLConfig}
1092 server: {get_resource: Controller}
1093 signal_transport: NO_SIGNAL
1095 controller_host: {get_attr: [Controller, networks, ctlplane, 0]}
1096 ssl_certificate: {get_param: SSLCertificate}
1097 ssl_key: {get_param: SSLKey}
1098 ssl_ca_certificate: {get_param: SSLCACertificate}
1100 ControllerPassthroughDeployment:
1101 type: OS::Heat::StructuredDeployment
1103 config: {get_resource: ControllerPassthroughConfig}
1104 server: {get_resource: Controller}
1105 signal_transport: NO_SIGNAL
1107 passthrough_config: {get_param: ExtraConfig}
1109 ControllerPassthroughSpecificDeployment:
1110 depends_on: [ControllerPassthroughDeployment]
1111 type: OS::Heat::StructuredDeployment
1113 config: {get_resource: ControllerPassthroughConfigSpecific}
1114 server: {get_resource: Controller}
1115 signal_transport: NO_SIGNAL
1117 passthrough_config_specific: {get_param: ControllerExtraConfig}
1120 type: OS::Heat::StructuredConfig
1122 group: os-apply-config
1125 hash: { get_input: swift_hash_suffix }
1126 part-power: { get_input: swift_part_power }
1127 mount-check: { get_input: swift_mount_check }
1128 min-part-hours: { get_input: swift_min_part_hours }
1129 replicas: {get_input: swift_replicas }
1130 service-password: { get_input: swift_password }
1133 type: OS::Heat::StructuredDeployment
1135 server: {get_resource: Controller}
1136 config: {get_resource: SwiftConfig}
1137 signal_transport: NO_SIGNAL
1139 swift_hash_suffix: {get_param: SwiftHashSuffix}
1140 swift_mount_check: {get_param: SwiftMountCheck}
1141 swift_password: {get_param: SwiftPassword}
1142 swift_min_part_hours: {get_param: SwiftMinPartHours}
1143 swift_part_power: {get_param: SwiftPartPower}
1144 swift_replicas: { get_param: SwiftReplicas}
1148 description: IP address of the server in the ctlplane network
1149 value: {get_attr: [Controller, networks, ctlplane, 0]}
1150 external_ip_address:
1151 description: IP address of the server in the external network
1152 value: {get_attr: [ExternalPort, ip_address]}
1153 internal_api_ip_address:
1154 description: IP address of the server in the internal_api network
1155 value: {get_attr: [InternalApiPort, ip_address]}
1157 description: IP address of the server in the storage network
1158 value: {get_attr: [StoragePort, ip_address]}
1159 storage_mgmt_ip_address:
1160 description: IP address of the server in the storage_mgmt network
1161 value: {get_attr: [StorageMgmtPort, ip_address]}
1163 description: IP address of the server in the tenant network
1164 value: {get_attr: [TenantPort, ip_address]}
1166 description: Hostname of the server
1167 value: {get_attr: [Controller, name]}
1170 Node object in the format {ip: ..., name: ...} format that the corosync
1173 ip: {get_attr: [Controller, networks, ctlplane, 0]}
1174 name: {get_attr: [Controller, name]}
1177 Server's IP address and hostname in the /etc/hosts format
1180 template: IP HOST CLOUDNAME
1182 IP: {get_attr: [Controller, networks, ctlplane, 0]}
1183 HOST: {get_attr: [Controller, name]}
1184 CLOUDNAME: {get_param: CloudName}
1185 nova_server_resource:
1186 description: Heat resource handle for the Nova compute server
1188 {get_resource: Controller}
1190 description: Swift device formatted for swift-ring-builder
1193 template: 'r1z1-IP:%PORT%/d1'
1195 IP: {get_attr: [Controller, networks, ctlplane, 0]}
1196 swift_proxy_memcache:
1197 description: Swift proxy-memcache value
1200 template: "IP:11211"
1202 IP: {get_attr: [Controller, networks, ctlplane, 0]}
1204 description: identifier which changes if the node configuration may need re-applying
1205 value: "None - NO_SIGNAL"