1 description: Nova API,Keystone,Heat Engine and API,Glance,Neutron,Dedicated MySQL
2 server,Dedicated RabbitMQ Server,Group of Nova Computes
3 heat_template_version: 2013-05-23
7 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
12 description: The keystone auth secret.
17 description: The password for the cinder service account, used by cinder-api.
22 description: The iSCSI helper to use with cinder.
24 CinderLVMLoopDeviceSize:
26 description: The size of the loopback file used by the cinder LVM driver.
30 description: Set to True to enable debugging on all services.
35 Additional configuration to inject into the cluster. The JSON should have
36 the following structure:
39 [{"section": "SECTIONNAME",
41 [{"option": "OPTIONNAME",
52 [{"section": "default",
54 [{"option": "force_config_drive",
62 "value": "nova.cells.rpc_driver.CellsRPCDriver"
70 controllerExtraConfig:
73 Controller specific configuration to inject into the cluster. Same
74 structure as ExtraConfig.
76 NovaComputeExtraConfig:
79 NovaCompute specific configuration to inject into the cluster. Same
80 structure as ExtraConfig.
82 OvercloudControlFlavor:
84 description: Flavor for control nodes to request when deploying.
86 OvercloudComputeFlavor:
88 description: Flavor for compute nodes to request when deploying.
92 description: Glance port.
96 description: Protocol to use when connecting to glance, set to https for SSL.
100 description: The password for the glance service account, used by the glance services.
103 GlanceNotifierStrategy:
104 description: Strategy to use for Glance notification queue
108 description: The filepath of the file to use for logging messages from Glance.
113 description: The password for the Heat service account, used by the Heat services.
117 default: 'REBUILD_PRESERVE_EPHEMERAL'
118 description: What policy to use when reconstructing instances. REBUILD for rebuilds, REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
122 description: Name of an existing EC2 KeyPair to enable SSH access to the instances
124 NeutronBridgeMappings:
126 The OVS logical->physical bridge mappings to use. See the Neutron
127 documentation for details. Defaults to mapping br-ex - the external
128 bridge on hosts - to a physical name 'datacentre' which can be used
129 to create provider networks (and we use this for the default floating
130 network) - if changing this either use different post-install network
131 scripts or be sure to keep 'datacentre' as a mapping network name.
133 default: "datacentre:br-ex"
134 NeutronNetworkVLANRanges:
135 default: 'datacentre'
137 The Neutron ML2 and OpenVSwitch vlan mapping range to support. See the
138 Neutron documentation for permitted values. Defaults to permitting any
139 VLAN on the 'datacentre' physical network (See NeutronBridgeMappings).
143 description: The password for the neutron service account, used by neutron agents.
146 CeilometerComputeAgent:
147 description: Indicates whether the Compute agent is present and expects nova-compute to be configured accordingly
151 - allowed_values: ['', Present]
152 CeilometerMeteringSecret:
154 description: Secret shared by the ceilometer services.
159 description: The password for the ceilometer service account.
162 SnmpdReadonlyUserName:
163 default: ro_snmp_user
164 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
166 SnmpdReadonlyUserPassword:
168 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
173 description: The DNS name of this cloud. E.g. ci-overcloud.tripleo.org
176 default: libvirt.LibvirtDriver
178 NovaComputeLibvirtType:
183 default: overcloud-compute
186 description: The password for the nova service account, used by nova-api.
191 default: 'datacentre'
193 If set, flat networks to configure in neutron plugins. Defaults to
194 'datacentre' to permit external network creation.
195 HypervisorNeutronPhysicalBridge:
198 An OVS bridge to create on each hypervisor. This defaults to br-ex the
199 same as the control plane nodes, as we have a uniform configuration of
200 the openvswitch agent. Typically should not need to be changed.
202 HypervisorNeutronPublicInterface:
204 description: What interface to add to the HypervisorNeutronPhysicalBridge.
206 NeutronPublicInterface:
208 description: What interface to bridge onto br-ex for network nodes.
210 NeutronPublicInterfaceDefaultRoute:
212 description: A custom default route for the NeutronPublicInterface.
214 NeutronPublicInterfaceIP:
216 description: A custom IP address to put onto the NeutronPublicInterface.
218 NeutronPublicInterfaceTag:
221 VLAN tag for creating a public VLAN. The tag will be used to
222 create an access port on the exterior bridge for each control plane node,
223 and that port will be given the IP address returned by neutron from the
224 public network. Set CONTROLEXTRA=overcloud-vlan-port.yaml when compiling
225 overcloud.yaml to include the deployment of VLAN ports to the control
228 NeutronPublicInterfaceRawDevice:
230 description: If set, the public interface is a vlan with this device as the raw device.
232 NeutronControlPlaneID:
235 description: Neutron ID for ctlplane network.
236 NeutronDnsmasqOptions:
237 default: 'dhcp-option-force=26,1400'
238 description: Dnsmasq options for neutron-dhcp-agent. The default value here forces MTU to be set to 1400 to account for the tunnel overhead.
242 description: The tenant network type for Neutron, either gre or vxlan.
247 The tunnel types for the Neutron tenant network. To specify multiple
248 values, use a comma separated string, like so: 'gre,vxlan'
252 default: overcloud-control
258 description: The username for RabbitMQ
262 description: The password for RabbitMQ
268 description: Salt for the rabbit cookie, change this to force the randomly generated rabbit cookie to change.
269 HeatStackDomainAdminPassword:
270 description: Password for heat_domain_admin user.
276 description: The live-update username for the undercloud Glance API.
278 LiveUpdateTenantName:
280 description: The live-update tenant name for the undercloud Glance API.
284 description: The IP address for the undercloud Glance API.
289 description: The live-update password for the undercloud Glance API.
291 LiveUpdateComputeImage:
293 description: The image ID for live-updates to the overcloud compute nodes.
295 MysqlInnodbBufferPoolSize:
297 Specifies the size of the buffer pool in megabytes. Setting to
298 zero should be interpreted as "no value" and will defer to the
302 ControlVirtualInterface:
304 description: Interface where virtual ip will be assigned.
308 description: Should be used for arbitrary ips.
310 PublicVirtualFixedIPs:
313 Control the IP allocation for the PublicVirtualInterface port. E.g.
314 [{'ip_address':'1.2.3.4'}]
316 PublicVirtualInterface:
319 Specifies the interface where the public-facing virtual ip will be assigned.
320 This should be int_public when a VLAN is being used.
322 PublicVirtualNetwork:
326 Neutron network to allocate public virtual IP port on.
327 KeystoneCACertificate:
329 description: Keystone self-signed certificate authority certificate.
331 KeystoneSigningCertificate:
333 description: Keystone certificate for verifying token validity.
337 description: Keystone key for signing tokens.
340 DefaultSignalTransport:
342 description: Transport to use for software-config signals.
345 - allowed_values: [ CFN_SIGNAL, HEAT_SIGNAL, NO_SIGNAL ]
348 type: OS::Neutron::Port
350 name: control_virtual_ip
351 network_id: {get_param: NeutronControlPlaneID}
353 get_param: ControlFixedIPs
354 MysqlClusterUniquePart:
355 type: OS::Heat::RandomString
359 type: OS::Heat::RandomString
363 type: OS::Neutron::Port
365 name: public_virtual_ip
366 network: {get_param: PublicVirtualNetwork}
368 get_param: PublicVirtualFixedIPs
370 type: OS::Heat::RandomString
374 get_param: RabbitCookieSalt
375 NovaCompute0Deployment:
377 Path: nova-compute-instance.yaml
378 SubKey: resources.NovaCompute0Deployment
380 DefaultSignalTransport:
381 get_param: DefaultSignalTransport
382 NovaApiHost: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
383 KeystoneHost: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
384 NeutronHost: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
385 GlanceHost: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
386 RabbitHost: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
390 - - mysql://nova:unset@
391 - &compute_database_host {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
393 NovaPublicIP: {get_attr: [PublicVirtualIP, fixed_ips, 0, ip_address]}
397 - - mysql://ceilometer:unset@
398 - *compute_database_host
403 - - mysql://neutron:unset@
404 - *compute_database_host
407 get_param: NeutronNetworkType
409 get_param: NeutronTunnelTypes
410 NeutronEnableTunnelling: "True"
412 get_param: NeutronFlatNetworks
413 NeutronNetworkVLANRanges:
414 get_param: NeutronNetworkVLANRanges
415 NeutronPhysicalBridge:
416 get_param: HypervisorNeutronPhysicalBridge
417 NeutronPublicInterface:
418 get_param: HypervisorNeutronPublicInterface
419 NeutronBridgeMappings:
420 get_param: NeutronBridgeMappings
421 NovaCompute0AllNodesDeployment:
423 Path: nova-compute-instance.yaml
424 SubKey: resources.NovaCompute0AllNodesDeployment
426 AllNodesConfig: {get_resource: allNodesConfig}
429 Path: nova-compute-instance.yaml
430 SubKey: resources.NovaCompute0
431 NovaCompute0Passthrough:
433 Path: nova-compute-instance.yaml
434 SubKey: resources.NovaCompute0Passthrough
436 passthrough_config: {get_param: ExtraConfig}
437 NovaCompute0PassthroughSpecific:
439 Path: nova-compute-instance.yaml
440 SubKey: resources.NovaCompute0PassthroughSpecific
442 passthrough_config_specific: {get_param: NovaComputeExtraConfig}
444 type: OS::Heat::StructuredConfig
446 group: os-apply-config
449 get_param: AdminPassword
451 get_param: AdminToken
454 get_param: NeutronPublicInterfaceIP
466 nodeid: {get_input: bootstack_nodeid}
469 {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
474 - - mysql://cinder:unset@
477 debug: {get_param: Debug}
479 get_param: CinderLVMLoopDeviceSize
481 get_param: CinderPassword
483 get_param: CinderISCSIHelper
485 get_input: controller_host
487 bindnetaddr: {get_input: controller_host}
492 ip: {get_attr: [controller0, networks, ctlplane, 0]}
494 stonith_enabled : false
496 quorum_policy : ignore
500 host: {get_input: controller_virtual_ip}
505 - - mysql://glance:unset@
508 debug: {get_param: Debug}
510 get_input: controller_virtual_ip
512 get_param: GlancePort
514 get_param: GlanceProtocol
516 get_param: GlancePassword
517 swift-store-user: service:glance
519 get_param: GlancePassword
521 get_param: GlanceNotifierStrategy
523 get_param: GlanceLogFile
526 get_param: HeatPassword
527 admin_tenant_name: service
529 auth_encryption_key: unset___________
533 - - mysql://heat:unset@
536 debug: {get_param: Debug}
537 stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
538 watch_server_url: {get_input: heat.watch_server_url}
539 metadata_server_url: {get_input: heat.metadata_server_url}
540 waitcondition_server_url: {get_input: heat.waitcondition_server_url}
547 {get_attr: [controller0, name]}
552 - - mysql://keystone:unset@
555 debug: {get_param: Debug}
557 get_input: controller_virtual_ip
558 ca_certificate: {get_param: KeystoneCACertificate}
559 signing_key: {get_param: KeystoneSigningKey}
560 signing_certificate: {get_param: KeystoneSigningCertificate}
562 innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
564 root-password: {get_resource: MysqlRootPassword}
568 ip: {get_attr: [controller0, networks, ctlplane, 0]}
573 - {get_resource: MysqlClusterUniquePart}
575 debug: {get_param: Debug}
576 flat-networks: {get_param: NeutronFlatNetworks}
577 host: {get_input: controller_virtual_ip}
578 metadata_proxy_shared_secret: unset
580 enable_tunneling: 'True'
582 get_input: controller_host
583 network_vlan_ranges: {get_param: NeutronNetworkVLANRanges}
584 bridge_mappings: {get_param: NeutronBridgeMappings}
586 get_param: NeutronPublicInterface
587 public_interface_raw_device:
588 get_param: NeutronPublicInterfaceRawDevice
589 public_interface_route:
590 get_param: NeutronPublicInterfaceDefaultRoute
591 public_interface_tag:
592 get_param: NeutronPublicInterfaceTag
593 physical_bridge: br-ex
595 get_param: NeutronNetworkType
597 get_param: NeutronTunnelTypes
601 - - mysql://neutron:unset@
603 - /ovs_neutron?charset=utf8
605 get_param: NeutronPassword
607 get_param: NeutronDnsmasqOptions
612 - - mysql://ceilometer:unset@
615 debug: {get_param: Debug}
616 metering_secret: {get_param: CeilometerMeteringSecret}
618 get_param: CeilometerPassword
620 export_MIB: UCD-SNMP-MIB
622 get_param: SnmpdReadonlyUserName
623 readonly_user_password:
624 get_param: SnmpdReadonlyUserPassword
626 compute_driver: libvirt.LibvirtDriver
630 - - mysql://nova:unset@
633 default_floating_pool:
635 host: {get_input: controller_virtual_ip}
638 get_param: NovaPassword
640 host: {get_input: controller_virtual_ip}
642 get_param: RabbitUserName
644 get_param: RabbitPassword
651 - {server: {get_param: NtpServer}, fudge: "stratum 0"}
654 - vrrp_instance_name: VI_CONTROL
655 virtual_router_id: 51
657 get_param: ControlVirtualInterface
660 - ip: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
662 get_param: ControlVirtualInterface
663 - vrrp_instance_name: VI_PUBLIC
664 virtual_router_id: 52
666 get_param: PublicVirtualInterface
669 - ip: {get_attr: [PublicVirtualIP, fixed_ips, 0, ip_address]}
671 get_param: PublicVirtualInterface
679 get_param: PublicVirtualInterface
683 ip: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
685 get_param: ControlVirtualInterface
687 ip: {get_attr: [PublicVirtualIP, fixed_ips, 0, ip_address]}
689 get_param: PublicVirtualInterface
694 ip: {get_attr: [controller0, networks, ctlplane, 0]}
695 name: {get_attr: [controller0, name]}
697 - ip: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
699 - name: keystone_admin
701 net_binds: &public_binds
702 - ip: {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
703 - ip: {get_attr: [PublicVirtualIP, fixed_ips, 0, ip_address]}
704 - name: keystone_public
706 net_binds: *public_binds
709 net_binds: *public_binds
712 net_binds: *public_binds
715 net_binds: *public_binds
718 net_binds: *public_binds
719 - name: glance_registry
721 net_binds: *public_binds
724 net_binds: *public_binds
725 - name: heat_cloudwatch
727 net_binds: *public_binds
730 net_binds: *public_binds
742 net_binds: *public_binds
743 - name: nova_metadata
745 net_binds: *public_binds
748 net_binds: *public_binds
749 - name: swift_proxy_server
751 net_binds: *public_binds
757 controllerPassthrough:
758 type: OS::Heat::StructuredConfig
760 group: os-apply-config
761 config: {get_input: passthrough_config}
762 controllerPassthroughSpecific:
763 type: OS::Heat::StructuredConfig
765 group: os-apply-config
766 config: {get_input: passthrough_config_specific}
768 type: OS::Nova::Server
771 get_param: controllerImage
773 get_param: ImageUpdatePolicy
775 get_param: OvercloudControlFlavor
780 user_data_format: SOFTWARE_CONFIG
781 controller0AllNodesDeployment:
782 depends_on: [controller0Deployment,controller0SSLDeployment,controller0Swift,controller0PassthroughSpecific]
783 type: OS::Heat::StructuredDeployment
785 signal_transport: {get_param: DefaultSignalTransport}
786 config: {get_resource: allNodesConfig}
787 server: {get_resource: controller0}
788 controller0Deployment:
789 type: OS::Heat::StructuredDeployment
791 signal_transport: NO_SIGNAL
792 config: {get_resource: controllerConfig}
793 server: {get_resource: controller0}
795 bootstack_nodeid: {get_attr: [controller0, name]}
796 controller_host: {get_attr: [controller0, networks, ctlplane, 0]}
797 controller_virtual_ip:
798 {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
799 heat.watch_server_url:
803 - {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
805 heat.metadata_server_url:
809 - {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
811 heat.waitcondition_server_url:
815 - {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
816 - ':8000/v1/waitcondition'
818 type: OS::Heat::StructuredConfig
821 completion-signal: {get_input: deploy_signal_id}
831 - - {get_attr: [NovaCompute0, networks, ctlplane, 0]}
832 - {get_attr: [NovaCompute0, name]}
835 - - {get_attr: [NovaCompute0, name]}
843 - - {get_attr: [BlockStorage0, networks, ctlplane, 0]}
844 - {get_attr: [BlockStorage0, name]}
847 - - {get_attr: [BlockStorage0, name]}
855 - - {get_attr: [SwiftStorage0, networks, ctlplane, 0]}
856 - {get_attr: [SwiftStorage0, name]}
859 - - {get_attr: [SwiftStorage0, name]}
867 - - {get_attr: [controller0, networks, ctlplane, 0]}
868 - {get_attr: [controller0, name]}
871 - - {get_attr: [controller0, name]}
873 - {get_param: CloudName}
880 {get_attr: [controller0, name]}
881 controller0SSLDeployment:
882 type: OS::Heat::StructuredDeployment
884 config: {get_resource: SSLConfig}
885 server: {get_resource: controller0}
886 signal_transport: NO_SIGNAL
888 controller_host: {get_attr: [controller0, networks, ctlplane, 0]}
889 ssl_certificate: {get_param: SSLCertificate}
890 ssl_key: {get_param: SSLKey}
891 ssl_ca_certificate: {get_param: SSLCACertificate}
892 controller0Passthrough:
893 type: OS::Heat::StructuredDeployment
895 config: {get_resource: controllerPassthrough}
896 server: {get_resource: controller0}
897 signal_transport: NO_SIGNAL
899 passthrough_config: {get_param: ExtraConfig}
900 controller0PassthroughSpecific:
901 depends_on: [controller0Passthrough]
902 type: OS::Heat::StructuredDeployment
904 config: {get_resource: controllerPassthroughSpecific}
905 server: {get_resource: controller0}
906 signal_transport: NO_SIGNAL
908 passthrough_config_specific: {get_param: controllerExtraConfig}
911 description: URL for the Overcloud Keystone service
916 - {get_attr: [ControlVirtualIP, fixed_ips, 0, ip_address]}
Code Review / apex-tripleo-heat-templates.git / blob