1 description: Deprecated. Use instack-undercloud instead. All-in-one baremetal OpenStack and all dependencies.
2 heat_template_version: 2013-05-23
6 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
11 description: The keystone auth secret.
16 description: The architecture to use in Nova-BM - i386 or amd64.
18 CeilometerMeteringSecret:
20 description: Secret shared by the ceilometer services.
25 description: The password for the ceilometer service account.
30 description: Set to True to enable debugging on all services.
32 DefaultSignalTransport:
34 description: Transport to use for software-config signals.
37 - allowed_values: [ CFN_SIGNAL, HEAT_SIGNAL, NO_SIGNAL ]
41 Additional configuration to inject into the cluster. The JSON should have
42 the following structure:
45 [{"section": "SECTIONNAME",
47 [{"option": "OPTIONNAME",
58 [{"section": "default",
60 [{"option": "compute_manager",
61 "value": "ironic.nova.compute.manager.ClusterComputeManager"
68 "value": "nova.cells.rpc_driver.CellsRPCDriver"
77 description: Flavor to request when deploying.
80 - custom_constraint: nova.flavor
82 description: The filepath of the file to use for logging messages from Glance.
87 description: The password for the glance service account, used by the glance services.
92 description: Glance port.
96 description: Protocol to use when connecting to glance, set to https for SSL.
98 GlanceNotifierStrategy:
99 description: Strategy to use for Glance notification queue
104 description: Name of an existing EC2 KeyPair to enable SSH access to the instances
106 KeystoneCACertificate:
108 description: Keystone self-signed certificate authority certificate.
110 KeystoneSigningCertificate:
112 description: Keystone certificate for verifying token validity.
116 description: Keystone key for signing tokens.
119 KeystoneSSLCertificate:
121 description: Keystone certificate for verifying token validity.
123 KeystoneSSLCertificateKey:
125 description: Keystone key for signing tokens.
130 description: The password for the Heat service account, used by the Heat services.
133 HeatStackDomainAdminPassword:
134 description: Password for heat_domain_admin user.
139 default: REBUILD_PRESERVE_EPHEMERAL
140 description: What policy to use when reconstructing instances. REBUILD for rebuilds,
141 REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
143 MysqlInnodbBufferPoolSize:
145 Specifies the size of the buffer pool in megabytes. Setting to
146 zero should be interpreted as "no value" and will defer to the
152 description: The password for the neutron service account, used by neutron agents.
155 NeutronPublicInterfaceDefaultRoute:
157 description: A custom default route for the NeutronPublicInterface.
159 NeutronPublicInterfaceIP:
162 A custom IP address to put onto the NeutronPublicInterface bridge.
163 See also NeutronPublicInterfaceTagIP for adding a VLAN tagging IP.
164 NeutronPublicInterfaceIP is deprecated in the context of deploying
165 underclouds - its only needed for the seed bootstrap process.
167 NeutronPublicInterfaceRawDevice:
169 description: If set, the public interface is a vlan with this device as the raw device.
171 NeutronPublicInterfaceTag:
174 VLAN tag for creating a public VLAN. The tag will be used to
175 create an access port on the exterior bridge, and that port will be
176 given the IP address returned by neutron from the public network.
180 description: The password for the nova service account, used by nova-api.
192 description: Salt for the rabbit cookie, change this to force the randomly generated rabbit cookie to change.
195 description: The username for RabbitMQ
199 description: The password for RabbitMQ
202 SnmpdReadonlyUserName:
203 default: ro_snmp_user
204 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
206 SnmpdReadonlyUserPassword:
208 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
216 type: OS::Heat::RandomString
220 get_param: RabbitCookieSalt
222 type: OS::Heat::RandomString
226 type: OS::Heat::StructuredConfig
229 completion-signal: {get_input: deploy_signal_id}
231 get_param: AdminPassword
233 get_param: AdminToken
245 nodeid: {get_input: bootstack_nodeid}
248 get_param: NeutronPublicInterfaceIP
250 get_input: controller_host
252 bindnetaddr: {get_input: controller_host}
257 ip: {get_attr: [undercloud, networks, ctlplane, 0]}
259 stonith_enabled : false
261 quorum_policy : ignore
263 db: {list_join: ['', ['mysql://ceilometer:', {get_param: CeilometerPassword}, '@localhost/ceilometer']]}
264 debug: {get_param: Debug}
265 metering_secret: {get_param: CeilometerMeteringSecret}
266 snmpd_readonly_user_name:
267 get_param: SnmpdReadonlyUserName
268 snmpd_readonly_user_password:
269 get_param: SnmpdReadonlyUserPassword
271 get_param: CeilometerPassword
275 db: {list_join: ['', ['mysql://glance:', {get_param: GlancePassword}, '@localhost/glance']]}
276 debug: {get_param: Debug}
279 get_param: GlancePort
281 get_param: GlanceProtocol
283 get_param: GlancePassword
285 get_param: GlanceNotifierStrategy
287 get_param: GlanceLogFile
290 get_param: HeatPassword
291 admin_tenant_name: service
293 auth_encryption_key: unset___________
294 db: {list_join: ['', ['mysql://heat:', {get_param: HeatPassword}, '@localhost/heat']]}
295 debug: {get_param: Debug}
296 stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
297 watch_server_url: {get_input: heat.watch_server_url}
298 metadata_server_url: {get_input: heat.metadata_server_url}
299 waitcondition_server_url: {get_input: heat.waitcondition_server_url}
301 db: {list_join: ['', ['mysql://keystone:', {get_param: AdminToken}, '@localhost/keystone']]}
302 debug: {get_param: Debug}
304 ca_certificate: {get_param: KeystoneCACertificate}
305 signing_key: {get_param: KeystoneSigningKey}
306 signing_certificate: {get_param: KeystoneSigningCertificate}
308 certificate: {get_param: KeystoneSSLCertificate}
309 certificate_key: {get_param: KeystoneSSLCertificateKey}
311 innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
312 root-password: {get_resource: MysqlRootPassword}
313 bind_address: 127.0.0.1
315 debug: {get_param: Debug}
317 ovs_db: {list_join: ['', ['mysql://neutron:', {get_param: NeutronPassword}, '@localhost/ovs_neutron?charset=utf8']]}
320 get_input: controller_host
322 get_param: NeutronPublicInterface
323 public_interface_raw_device:
324 get_param: NeutronPublicInterfaceRawDevice
325 public_interface_route:
326 get_param: NeutronPublicInterfaceDefaultRoute
327 public_interface_tag:
328 get_param: NeutronPublicInterfaceTag
329 physical_bridge: br-ctlplane
330 physical_network: ctlplane
331 network_vlan_ranges: ctlplane
332 bridge_mappings: ctlplane:br-ctlplane
333 tenant_network_type: vlan
334 enable_tunneling: 'False'
336 get_param: NeutronPassword
340 get_param: RabbitUserName
342 get_param: RabbitPassword
349 - {server: {get_param: NtpServer}}
350 undercloudPassthroughConfig:
351 type: OS::Heat::StructuredConfig
353 config: {get_input: passthrough_config}
355 type: OS::Nova::Server
358 get_param: undercloudImage
364 get_param: ImageUpdatePolicy
367 user_data_format: SOFTWARE_CONFIG
368 undercloudDeployment:
369 depends_on: [undercloudPassthroughDeployment]
370 type: OS::Heat::StructuredDeployment
372 config: {get_resource: undercloudConfig}
373 server: {get_resource: undercloud}
374 signal_transport: {get_param: DefaultSignalTransport}
386 heat.watch_server_url:
390 - get_attr: [undercloud, networks, ctlplane, 0]
392 heat.metadata_server_url:
396 - {get_attr: [undercloud, networks, ctlplane, 0]}
398 heat.waitcondition_server_url:
402 - {get_attr: [undercloud, networks, ctlplane, 0]}
403 - ':8000/v1/waitcondition'
404 undercloudPassthroughDeployment:
405 depends_on: [undercloudNovaDeployment]
406 type: OS::Heat::StructuredDeployment
408 config: {get_resource: undercloudPassthroughConfig}
409 server: {get_resource: undercloud}
410 signal_transport: NO_SIGNAL
412 passthrough_config: {get_param: ExtraConfig}