1 heat_template_version: 2015-04-30
4 OpenStack controller node configured by Puppet.
9 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
14 description: The keystone auth secret and db password.
19 description: The ceilometer backend type.
21 CeilometerMeteringSecret:
23 description: Secret shared by the ceilometer services.
28 description: The password for the ceilometer service and db account.
31 CinderEnableIscsiBackend:
33 description: Whether to enable or not the Iscsi backend for Cinder
35 CinderEnableRbdBackend:
37 description: Whether to enable or not the Rbd backend for Cinder
41 description: The iSCSI helper to use with cinder.
43 CinderLVMLoopDeviceSize:
45 description: The size of the loopback file used by the cinder LVM driver.
49 description: The password for the cinder service and db account, used by cinder-api.
54 description: Contains parameters to configure Cinder backends. Typically
55 set via parameter_defaults in the resource registry.
59 description: The DNS name of this cloud. E.g. ci-overcloud.tripleo.org
61 ControllerExtraConfig:
64 Controller specific configuration to inject into the cluster. Same
65 structure as ExtraConfig.
67 ControlVirtualInterface:
69 description: Interface where virtual ip will be assigned.
73 description: Set to True to enable debugging on all services.
77 description: Whether to use Galera instead of regular MariaDB.
81 description: Whether to deploy Ceph Storage (OSD) on the Controller
85 description: Whether to enable Swift Storage on the Controller
90 Additional configuration to inject into the cluster. The JSON should have
91 the following structure:
94 [{"section": "SECTIONNAME",
96 [{"option": "OPTIONNAME",
107 [{"section": "default",
109 [{"option": "compute_manager",
110 "value": "ironic.nova.compute.manager.ClusterComputeManager"
116 [{"option": "driver",
117 "value": "nova.cells.rpc_driver.CellsRPCDriver"
126 description: Flavor for control nodes to request when deploying.
129 - custom_constraint: nova.flavor
130 GlanceNotifierStrategy:
131 description: Strategy to use for Glance notification queue
135 description: The filepath of the file to use for logging messages from Glance.
140 description: The password for the glance service and db account, used by the glance services.
145 description: Glance port.
149 description: Protocol to use when connecting to glance, set to https for SSL.
153 description: The short name of the Glance backend to use. Should be one
154 of swift, rbd, or file
157 - allowed_values: ['swift', 'file', 'rbd']
160 description: The password for the Heat service and db account, used by the Heat services.
163 HeatStackDomainAdminPassword:
164 description: Password for heat_domain_admin user.
168 HeatAuthEncryptionKey:
169 description: Auth encryption key for heat-engine
172 description: Secret key for Django
176 default: overcloud-control
178 - custom_constraint: glance.image
180 default: 'REBUILD_PRESERVE_EPHEMERAL'
181 description: What policy to use when reconstructing instances. REBUILD for rebuilds, REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
185 description: Name of an existing EC2 KeyPair to enable SSH access to the instances
188 - custom_constraint: nova.keypair
189 KeystoneCACertificate:
191 description: Keystone self-signed certificate authority certificate.
193 KeystoneSigningCertificate:
195 description: Keystone certificate for verifying token validity.
199 description: Keystone key for signing tokens.
202 KeystoneSSLCertificate:
204 description: Keystone certificate for verifying token validity.
206 KeystoneSSLCertificateKey:
208 description: Keystone key for signing tokens.
211 MysqlClusterUniquePart:
212 description: A unique identifier of the MySQL cluster the controller is in.
214 default: 'unset' # Has to be here because of the ignored empty value bug
215 # Drop the validation: https://bugs.launchpad.net/tripleo/+bug/1405446
217 # - length: {min: 4, max: 10}
218 MysqlInnodbBufferPoolSize:
220 Specifies the size of the buffer pool in megabytes. Setting to
221 zero should be interpreted as "no value" and will defer to the
228 default: '' # Has to be here because of the ignored empty value bug
229 NeutronBridgeMappings:
231 The OVS logical->physical bridge mappings to use. See the Neutron
232 documentation for details. Defaults to mapping br-ex - the external
233 bridge on hosts - to a physical name 'datacentre' which can be used
234 to create provider networks (and we use this for the default floating
235 network) - if changing this either use different post-install network
236 scripts or be sure to keep 'datacentre' as a mapping network name.
238 default: "datacentre:br-ex"
239 NeutronDnsmasqOptions:
240 default: 'dhcp-option-force=26,1400'
241 description: Dnsmasq options for neutron-dhcp-agent. The default value here forces MTU to be set to 1400 to account for the gre tunnel overhead.
245 description: Agent mode for the neutron-l3-agent on the controller hosts
249 description: Whether to enable l3-agent HA
253 description: Whether to configure Neutron Distributed Virtual Routers
255 NeutronMetadataProxySharedSecret:
257 description: Shared secret to prevent spoofing
259 NeutronMechanismDrivers:
260 default: 'openvswitch'
262 The mechanism drivers for the Neutron tenant network. To specify multiple
263 values, use a comma separated string, like so: 'openvswitch,l2_population'
265 NeutronAllowL3AgentFailover:
267 description: Allow automatic l3-agent failover
269 NeutronEnableTunnelling:
274 default: 'datacentre'
275 description: If set, flat networks to configure in neutron plugins.
278 description: Whether to enable l3-agent HA
282 description: The tenant network type for Neutron, either gre or vxlan.
284 NeutronNetworkVLANRanges:
285 default: 'datacentre'
287 The Neutron ML2 and OpenVSwitch vlan mapping range to support. See the
288 Neutron documentation for permitted values. Defaults to permitting any
289 VLAN on the 'datacentre' physical network (See NeutronBridgeMappings).
290 type: comma_delimited_list
293 description: The password for the neutron service and db account, used by neutron agents.
296 NeutronPublicInterface:
298 description: What interface to bridge onto br-ex for network nodes.
300 NeutronPublicInterfaceTag:
303 VLAN tag for creating a public VLAN. The tag will be used to
304 create an access port on the exterior bridge for each control plane node,
305 and that port will be given the IP address returned by neutron from the
306 public network. Set CONTROLEXTRA=overcloud-vlan-port.yaml when compiling
307 overcloud.yaml to include the deployment of VLAN ports to the control
310 NeutronPublicInterfaceDefaultRoute:
312 description: A custom default route for the NeutronPublicInterface.
314 NeutronPublicInterfaceIP:
316 description: A custom IP address to put onto the NeutronPublicInterface.
318 NeutronPublicInterfaceRawDevice:
320 description: If set, the public interface is a vlan with this device as the raw device.
325 The tunnel types for the Neutron tenant network. To specify multiple
326 values, use a comma separated string, like so: 'gre,vxlan'
330 description: The password for the nova service and db account, used by nova-api.
338 description: The password for the 'pcsd' user.
339 PublicVirtualInterface:
342 Specifies the interface where the public-facing virtual ip will be assigned.
343 This should be int_public when a VLAN is being used.
345 PublicVirtualIP: # DEPRECATED: use per service settings instead
347 default: '' # Has to be here because of the ignored empty value bug
350 default: '' # Has to be here because of the ignored empty value bug
354 description: The password for RabbitMQ
359 description: The username for RabbitMQ
364 Rabbit client subscriber parameter to specify
365 an SSL connection to the RabbitMQ host.
369 description: Set rabbit subscriber port, change this if using SSL
373 default: '' # Has to be here because of the ignored empty value bug
374 SnmpdReadonlyUserName:
375 default: ro_snmp_user
376 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
378 SnmpdReadonlyUserPassword:
380 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
385 description: If set, the contents of an SSL certificate authority file.
389 description: If set, the contents of an SSL certificate .crt file for encrypting SSL endpoints.
394 description: If set, the contents of an SSL certificate .key file for encrypting SSL endpoints.
399 description: A random string to be used as a salt when hashing to determine mappings
405 description: Value of mount_check in Swift account/container/object -server.conf
410 description: The minimum time (in hours) before a partition in a ring can be moved following a rebalance.
413 description: Partition Power to use when building Swift rings
417 description: The password for the swift service account, used by the swift proxy
424 description: How many replicas to use in the swift rings.
425 VirtualIP: # DEPRECATED: use per service settings instead
427 default: '' # Has to be here because of the ignored empty value bug
437 KeystonePublicApiVirtualIP:
443 EnablePackageInstall:
445 description: Set to true to enable package installation via Puppet
449 description: Mapping of service_name -> network name. Typically set
450 via parameter_defaults in the resource registry.
456 Setting to a previously unused value during stack-update will trigger
457 package update on all nodes
460 default: '' # Defaults to Heat created hostname
465 type: OS::Nova::Server
467 image: {get_param: Image}
468 image_update_policy: {get_param: ImageUpdatePolicy}
469 flavor: {get_param: Flavor}
470 key_name: {get_param: KeyName}
473 user_data_format: SOFTWARE_CONFIG
474 user_data: {get_resource: NodeUserData}
475 name: {get_param: Hostname}
478 type: OS::TripleO::NodeUserData
481 type: OS::TripleO::Controller::Ports::ExternalPort
483 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
486 type: OS::TripleO::Controller::Ports::InternalApiPort
488 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
491 type: OS::TripleO::Controller::Ports::StoragePort
493 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
496 type: OS::TripleO::Controller::Ports::StorageMgmtPort
498 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
501 type: OS::TripleO::Controller::Ports::TenantPort
503 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
506 type: OS::TripleO::Network::Ports::NetIpMap
508 ExternalIp: {get_attr: [ExternalPort, ip_address]}
509 InternalApiIp: {get_attr: [InternalApiPort, ip_address]}
510 StorageIp: {get_attr: [StoragePort, ip_address]}
511 StorageMgmtIp: {get_attr: [StorageMgmtPort, ip_address]}
512 TenantIp: {get_attr: [TenantPort, ip_address]}
515 type: OS::TripleO::Network::Ports::NetIpMap
517 ExternalIp: {get_attr: [ExternalPort, ip_subnet]}
518 InternalApiIp: {get_attr: [InternalApiPort, ip_subnet]}
519 StorageIp: {get_attr: [StoragePort, ip_subnet]}
520 StorageMgmtIp: {get_attr: [StorageMgmtPort, ip_subnet]}
521 TenantIp: {get_attr: [TenantPort, ip_subnet]}
524 type: OS::TripleO::Controller::Net::SoftwareConfig
526 ExternalIpSubnet: {get_attr: [ExternalPort, ip_subnet]}
527 InternalApiIpSubnet: {get_attr: [InternalApiPort, ip_subnet]}
528 StorageIpSubnet: {get_attr: [StoragePort, ip_subnet]}
529 StorageMgmtIpSubnet: {get_attr: [StorageMgmtPort, ip_subnet]}
530 TenantIpSubnet: {get_attr: [TenantPort, ip_subnet]}
533 type: OS::TripleO::SoftwareDeployment
535 config: {get_resource: NetworkConfig}
536 server: {get_resource: Controller}
539 interface_name: {get_param: NeutronPublicInterface}
541 ControllerDeployment:
542 type: OS::TripleO::SoftwareDeployment
543 depends_on: NetworkDeployment
545 config: {get_resource: ControllerConfig}
546 server: {get_resource: Controller}
548 bootstack_nodeid: {get_attr: [Controller, name]}
549 neutron_enable_tunneling: {get_param: NeutronEnableTunnelling}
550 heat.watch_server_url:
554 - {get_param: HeatApiVirtualIP}
556 heat.metadata_server_url:
560 - {get_param: HeatApiVirtualIP}
562 heat.waitcondition_server_url:
566 - {get_param: HeatApiVirtualIP}
567 - ':8000/v1/waitcondition'
568 heat_auth_encryption_key: {get_param: HeatAuthEncryptionKey}
569 horizon_secret: {get_param: HorizonSecret}
570 admin_password: {get_param: AdminPassword}
571 admin_token: {get_param: AdminToken}
572 neutron_public_interface_ip: {get_param: NeutronPublicInterfaceIP}
573 debug: {get_param: Debug}
574 cinder_enable_rbd_backend: {get_param: CinderEnableRbdBackend}
575 cinder_lvm_loop_device_size: {get_param: CinderLVMLoopDeviceSize}
576 cinder_password: {get_param: CinderPassword}
577 cinder_enable_iscsi_backend: {get_param: CinderEnableIscsiBackend}
578 cinder_iscsi_helper: {get_param: CinderISCSIHelper}
579 cinder_backend_config: {get_param: CinderBackendConfig}
583 - - 'mysql://cinder:'
584 - {get_param: CinderPassword}
586 - {get_param: MysqlVirtualIP}
588 glance_port: {get_param: GlancePort}
589 glance_password: {get_param: GlancePassword}
590 glance_backend: {get_param: GlanceBackend}
591 glance_notifier_strategy: {get_param: GlanceNotifierStrategy}
592 glance_log_file: {get_param: GlanceLogFile}
596 - - 'mysql://glance:'
597 - {get_param: GlancePassword}
599 - {get_param: MysqlVirtualIP}
601 heat_password: {get_param: HeatPassword}
602 heat_stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
607 - {get_param: HeatPassword}
609 - {get_param: MysqlVirtualIP}
611 keystone_auth_address: {list_join: ['', ['http://', {get_param: KeystonePublicApiVirtualIP} , ':5000/v2.0']]}
612 keystone_ca_certificate: {get_param: KeystoneCACertificate}
613 keystone_signing_key: {get_param: KeystoneSigningKey}
614 keystone_signing_certificate: {get_param: KeystoneSigningCertificate}
615 keystone_ssl_certificate: {get_param: KeystoneSSLCertificate}
616 keystone_ssl_certificate_key: {get_param: KeystoneSSLCertificateKey}
620 - - 'mysql://keystone:'
621 - {get_param: AdminToken}
623 - {get_param: MysqlVirtualIP}
625 keystone_identity_uri:
629 - {get_param: KeystonePublicApiVirtualIP}
635 - {get_param: KeystonePublicApiVirtualIP}
637 enable_galera: {get_param: EnableGalera}
638 enable_ceph_storage: {get_param: EnableCephStorage}
639 enable_swift_storage: {get_param: EnableSwiftStorage}
640 mysql_innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
641 mysql_root_password: {get_param: MysqlRootPassword}
644 template: tripleo-CLUSTER
646 CLUSTER: {get_param: MysqlClusterUniquePart}
647 neutron_flat_networks: {get_param: NeutronFlatNetworks}
648 neutron_metadata_proxy_shared_secret: {get_param: NeutronMetadataProxySharedSecret}
649 neutron_agent_mode: {get_param: NeutronAgentMode}
650 neutron_router_distributed: {get_param: NeutronDVR}
651 neutron_mechanism_drivers: {get_param: NeutronMechanismDrivers}
652 neutron_allow_l3agent_failover: {get_param: NeutronAllowL3AgentFailover}
653 neutron_l3_ha: {get_param: NeutronL3HA}
654 neutron_network_vlan_ranges:
656 template: "['RANGES']"
661 - {get_param: NeutronNetworkVLANRanges}
662 neutron_bridge_mappings: {get_param: NeutronBridgeMappings}
663 neutron_public_interface: {get_param: NeutronPublicInterface}
664 neutron_public_interface_raw_device: {get_param: NeutronPublicInterfaceRawDevice}
665 neutron_public_interface_default_route: {get_param: NeutronPublicInterfaceDefaultRoute}
666 neutron_public_interface_tag: {get_param: NeutronPublicInterfaceTag}
667 neutron_tenant_network_type: {get_param: NeutronNetworkType}
668 neutron_tunnel_types: {get_param: NeutronTunnelTypes}
669 neutron_password: {get_param: NeutronPassword}
670 neutron_dnsmasq_options: {get_param: NeutronDnsmasqOptions}
674 - - 'mysql://neutron:'
675 - {get_param: NeutronPassword}
677 - {get_param: MysqlVirtualIP}
678 - '/ovs_neutron?charset=utf8'
683 - {get_param: NeutronApiVirtualIP}
685 neutron_admin_auth_url:
689 - {get_param: KeystonePublicApiVirtualIP}
691 ceilometer_backend: {get_param: CeilometerBackend}
692 ceilometer_metering_secret: {get_param: CeilometerMeteringSecret}
693 ceilometer_password: {get_param: CeilometerPassword}
694 ceilometer_coordination_url:
698 - {get_param: RedisVirtualIP}
703 - - 'mysql://ceilometer:unset@'
704 - {get_param: MysqlVirtualIP}
706 snmpd_readonly_user_name: {get_param: SnmpdReadonlyUserName}
707 snmpd_readonly_user_password: {get_param: SnmpdReadonlyUserPassword}
708 nova_password: {get_param: NovaPassword}
713 - {get_param: NovaPassword}
715 - {get_param: MysqlVirtualIP}
717 pcsd_password: {get_param: PcsdPassword}
718 rabbit_username: {get_param: RabbitUserName}
719 rabbit_password: {get_param: RabbitPassword}
720 rabbit_cookie: {get_param: RabbitCookie}
721 rabbit_client_use_ssl: {get_param: RabbitClientUseSSL}
722 rabbit_client_port: {get_param: RabbitClientPort}
725 template: '["server"]'
727 server: {get_param: NtpServer}
728 control_virtual_interface: {get_param: ControlVirtualInterface}
729 public_virtual_interface: {get_param: PublicVirtualInterface}
730 swift_hash_suffix: {get_param: SwiftHashSuffix}
731 swift_password: {get_param: SwiftPassword}
732 swift_part_power: {get_param: SwiftPartPower}
733 swift_replicas: {get_param: SwiftReplicas}
734 swift_min_part_hours: {get_param: SwiftMinPartHours}
735 swift_mount_check: {get_param: SwiftMountCheck}
736 enable_package_install: {get_param: EnablePackageInstall}
737 swift_proxy_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftProxyNetwork]}]}
738 swift_management_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftMgmtNetwork]}]}
739 cinder_iscsi_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CinderIscsiNetwork]}]}
740 cinder_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CinderApiNetwork]}]}
741 glance_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceApiNetwork]}]}
742 glance_registry_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceRegistryNetwork]}]}
746 - - {get_param: GlanceProtocol}
748 - {get_param: GlanceApiVirtualIP}
750 - {get_param: GlancePort}
751 heat_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, HeatApiNetwork]}]}
752 keystone_public_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, KeystonePublicApiNetwork]}]}
753 keystone_admin_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, KeystoneAdminApiNetwork]}]}
754 mongo_db_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MongoDbNetwork]}]}
755 neutron_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NeutronApiNetwork]}]}
756 neutron_local_ip: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NeutronTenantNetwork]}]}
757 ceilometer_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CeilometerApiNetwork]}]}
758 nova_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NovaApiNetwork]}]}
759 nova_metadata_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NovaMetadataNetwork]}]}
760 horizon_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, HorizonNetwork]}]}
761 rabbitmq_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, RabbitMqNetwork]}]}
762 redis_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, RedisNetwork]}]}
763 redis_vip: {get_param: RedisVirtualIP}
764 memcached_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MemcachedNetwork]}]}
765 mysql_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MysqlNetwork]}]}
766 ceph_cluster_network: {get_attr: [NetIpSubnetMap, net_ip_map, {get_param: [ServiceNetMap, CephClusterNetwork]}]}
767 ceph_public_network: {get_attr: [NetIpSubnetMap, net_ip_map, {get_param: [ServiceNetMap, CephPublicNetwork]}]}
768 ceph_public_ip: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CephPublicNetwork]}]}
770 # Map heat metadata into hiera datafiles
772 type: OS::Heat::StructuredConfig
774 group: os-apply-config
778 - heat_config_%{::deploy_config_name}
781 - swift_devices_and_proxy # provided by SwiftDevicesAndProxyConfig
782 - ceph_cluster # provided by CephClusterConfig
784 - bootstrap_node # provided by BootstrapNodeConfig
785 - all_nodes # provided by allNodesConfig
786 - vip_data # provided by vip-config
791 raw_data: {get_file: hieradata/common.yaml}
793 raw_data: {get_file: hieradata/ceph.yaml}
795 ceph::profile::params::cluster_network: {get_input: ceph_cluster_network}
796 ceph::profile::params::public_network: {get_input: ceph_public_network}
797 ceph::mon::public_addr: {get_input: ceph_public_ip}
799 raw_data: {get_file: hieradata/object.yaml}
801 raw_data: {get_file: hieradata/controller.yaml}
802 mapped_data: # data supplied directly to this deployment configuration, etc
803 bootstack_nodeid: {get_input: bootstack_nodeid}
806 hacluster_pwd: {get_input: pcsd_password}
809 swift::proxy::proxy_local_net_ip: {get_input: swift_proxy_network}
810 swift::proxy::authtoken::auth_uri: {get_input: keystone_auth_uri}
811 swift::proxy::authtoken::identity_uri: {get_input: keystone_identity_uri}
812 swift::storage::all::storage_local_net_ip: {get_input: swift_management_network}
813 swift::swift_hash_suffix: {get_input: swift_hash_suffix}
814 swift::proxy::authtoken::admin_password: {get_input: swift_password}
815 tripleo::ringbuilder::part_power: {get_input: swift_part_power}
816 tripleo::ringbuilder::replicas: {get_input: swift_replicas}
817 tripleo::ringbuilder::min_part_hours: {get_input: swift_min_part_hours}
818 swift_mount_check: {get_input: swift_mount_check}
820 # NOTE(dprince): build_ring support is currently not wired in.
821 # See: https://review.openstack.org/#/c/109225/
822 tripleo::ringbuilder::build_ring: True
825 cinder_enable_rbd_backend: {get_input: cinder_enable_rbd_backend}
826 cinder_lvm_loop_device_size: {get_input: cinder_lvm_loop_device_size}
827 cinder_iscsi_helper: {get_input: cinder_iscsi_helper}
828 cinder_iscsi_ip_address: {get_input: cinder_iscsi_network}
829 cinder::database_connection: {get_input: cinder_dsn}
830 cinder::api::keystone_password: {get_input: cinder_password}
831 cinder::api::auth_uri: {get_input: keystone_auth_uri}
832 cinder::api::identity_uri: {get_input: keystone_identity_uri}
833 cinder::api::bind_host: {get_input: cinder_api_network}
834 cinder::rabbit_userid: {get_input: rabbit_username}
835 cinder::rabbit_password: {get_input: rabbit_password}
836 cinder::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
837 cinder::rabbit_port: {get_input: rabbit_client_port}
838 cinder::debug: {get_input: debug}
839 cinder_enable_iscsi_backend: {get_input: cinder_enable_iscsi_backend}
840 cinder::glance::glance_api_servers: {get_input: glance_api_servers}
841 cinder_backend_config: {get_input: CinderBackendConfig}
844 glance::api::bind_port: {get_input: glance_port}
845 glance::api::bind_host: {get_input: glance_api_network}
846 glance::api::auth_uri: {get_input: keystone_auth_uri}
847 glance::api::identity_uri: {get_input: keystone_identity_uri}
848 glance::api::registry_host: {get_input: glance_registry_network}
849 glance::api::keystone_password: {get_input: glance_password}
850 glance::api::debug: {get_input: debug}
851 glance_notifier_strategy: {get_input: glance_notifier_strategy}
852 glance_log_file: {get_input: glance_log_file}
853 glance_log_file: {get_input: glance_log_file}
854 glance::api::database_connection: {get_input: glance_dsn}
855 glance::registry::keystone_password: {get_input: glance_password}
856 glance::registry::database_connection: {get_input: glance_dsn}
857 glance::registry::bind_host: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceRegistryNetwork]}]}
858 glance::registry::auth_uri: {get_input: keystone_auth_uri}
859 glance::registry::identity_uri: {get_input: keystone_identity_uri}
860 glance::registry::debug: {get_input: debug}
861 glance::backend::swift::swift_store_auth_address: {get_input: keystone_auth_address}
862 glance::backend::swift::swift_store_user: service:glance
863 glance::backend::swift::swift_store_key: {get_input: glance_password}
864 glance_backend: {get_input: glance_backend}
867 heat_stack_domain_admin_password: {get_input: heat_stack_domain_admin_password}
868 heat::engine::heat_watch_server_url: {get_input: heat.watch_server_url}
869 heat::engine::heat_metadata_server_url: {get_input: heat.metadata_server_url}
870 heat::engine::heat_waitcondition_server_url: {get_input: heat.waitcondition_server_url}
871 heat::engine::auth_encryption_key: {get_input: heat_auth_encryption_key}
872 heat::rabbit_userid: {get_input: rabbit_username}
873 heat::rabbit_password: {get_input: rabbit_password}
874 heat::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
875 heat::rabbit_port: {get_input: rabbit_client_port}
876 heat::auth_uri: {get_input: keystone_auth_uri}
877 heat::identity_uri: {get_input: keystone_identity_uri}
878 heat::keystone_password: {get_input: heat_password}
879 heat::api::bind_host: {get_input: heat_api_network}
880 heat::api_cloudwatch::bind_host: {get_input: heat_api_network}
881 heat::api_cfn::bind_host: {get_input: heat_api_network}
882 heat::database_connection: {get_input: heat_dsn}
883 heat::instance_user: heat-admin
884 heat::debug: {get_input: debug}
887 keystone::admin_token: {get_input: admin_token}
888 keystone_ca_certificate: {get_input: keystone_ca_certificate}
889 keystone_signing_key: {get_input: keystone_signing_key}
890 keystone_signing_certificate: {get_input: keystone_signing_certificate}
891 keystone_ssl_certificate: {get_input: keystone_ssl_certificate}
892 keystone_ssl_certificate_key: {get_input: keystone_ssl_certificate_key}
893 keystone::database_connection: {get_input: keystone_dsn}
894 keystone::public_bind_host: {get_input: keystone_public_api_network}
895 keystone::admin_bind_host: {get_input: keystone_admin_api_network}
896 keystone::debug: {get_input: debug}
898 mongodb::server::bind_ip: {get_input: mongo_db_network}
900 admin_password: {get_input: admin_password}
901 enable_galera: {get_input: enable_galera}
902 enable_ceph_storage: {get_input: enable_ceph_storage}
903 enable_swift_storage: {get_input: enable_swift_storage}
904 mysql_innodb_buffer_pool_size: {get_input: mysql_innodb_buffer_pool_size}
905 mysql::server::root_password: {get_input: mysql_root_password}
906 mysql_cluster_name: {get_input: mysql_cluster_name}
907 mysql_bind_host: {get_input: mysql_network}
910 neutron::bind_host: {get_input: neutron_api_network}
911 neutron::rabbit_password: {get_input: rabbit_password}
912 neutron::rabbit_user: {get_input: rabbit_user}
913 neutron::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
914 neutron::rabbit_port: {get_input: rabbit_client_port}
915 neutron::debug: {get_input: debug}
916 neutron::server::auth_uri: {get_input: keystone_auth_uri}
917 neutron::server::identity_uri: {get_input: keystone_identity_uri}
918 neutron::server::database_connection: {get_input: neutron_dsn}
919 neutron::agents::ml2::ovs::enable_tunneling: {get_input: neutron_enable_tunneling}
920 neutron::agents::ml2::ovs::local_ip: {get_input: neutron_local_ip}
921 neutron_flat_networks: {get_input: neutron_flat_networks}
922 neutron::agents::metadata::shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
923 neutron::agents::metadata::metadata_ip: {get_input: neutron_api_network}
924 neutron_agent_mode: {get_input: neutron_agent_mode}
925 neutron_router_distributed: {get_input: neutron_router_distributed}
926 neutron_mechanism_drivers: {get_input: neutron_mechanism_drivers}
927 neutron::server::allow_automatic_l3agent_failover: {get_input: neutron_allow_l3agent_failover}
928 neutron::server::l3_ha: {get_input: neutron_l3_ha}
929 neutron::plugins::ml2::network_vlan_ranges: {get_input: neutron_network_vlan_ranges}
930 neutron_bridge_mappings: {get_input: neutron_bridge_mappings}
931 neutron_public_interface: {get_input: neutron_public_interface}
932 neutron_public_interface_raw_device: {get_input: neutron_public_interface_raw_device}
933 neutron_public_interface_default_route: {get_input: neutron_public_interface_default_route}
934 neutron_public_interface_tag: {get_input: neutron_public_interface_tag}
935 neutron_tenant_network_type: {get_input: neutron_tenant_network_type}
936 neutron_tunnel_types: {get_input: neutron_tunnel_types}
937 neutron::server::auth_password: {get_input: neutron_password}
938 neutron::agents::metadata::auth_password: {get_input: neutron_password}
939 neutron_dnsmasq_options: {get_input: neutron_dnsmasq_options}
940 neutron_dsn: {get_input: neutron_dsn}
941 neutron::agents::metadata::auth_url: {get_input: keystone_identity_uri}
944 ceilometer_backend: {get_input: ceilometer_backend}
945 ceilometer_mysql_conn_string: {get_input: ceilometer_dsn}
946 ceilometer::metering_secret: {get_input: ceilometer_metering_secret}
947 ceilometer::rabbit_userid: {get_input: rabbit_username}
948 ceilometer::rabbit_password: {get_input: rabbit_password}
949 ceilometer::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
950 ceilometer::rabbit_port: {get_input: rabbit_client_port}
951 ceilometer::debug: {get_input: debug}
952 ceilometer::api::host: {get_input: ceilometer_api_network}
953 ceilometer::api::keystone_password: {get_input: ceilometer_password}
954 ceilometer::api::keystone_auth_uri: {get_input: keystone_auth_uri}
955 ceilometer::api::keystone_identity_uri: {get_input: keystone_identity_uri}
956 ceilometer::agent::auth::auth_password: {get_input: ceilometer_password}
957 ceilometer::agent::auth::auth_url: {get_input: keystone_auth_address}
958 ceilometer::agent::central::coordination_url: {get_input: ceilometer_coordination_url}
959 snmpd_readonly_user_name: {get_input: snmpd_readonly_user_name}
960 snmpd_readonly_user_password: {get_input: snmpd_readonly_user_password}
963 nova::rabbit_userid: {get_input: rabbit_username}
964 nova::rabbit_password: {get_input: rabbit_password}
965 nova::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
966 nova::rabbit_port: {get_input: rabbit_client_port}
967 nova::debug: {get_input: debug}
968 nova::api::auth_uri: {get_input: keystone_auth_uri}
969 nova::api::identity_uri: {get_input: keystone_identity_uri}
970 nova::api::api_bind_address: {get_input: nova_api_network}
971 nova::api::metadata_listen: {get_input: nova_metadata_network}
972 nova::api::admin_password: {get_input: nova_password}
973 nova::database_connection: {get_input: nova_dsn}
974 nova::glance_api_servers: {get_input: glance_api_servers}
975 nova::api::neutron_metadata_proxy_shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
976 nova::network::neutron::neutron_admin_password: {get_input: neutron_password}
977 nova::network::neutron::neutron_url: {get_input: neutron_url}
978 nova::network::neutron::neutron_admin_auth_url: {get_input: neutron_admin_auth_url}
979 nova::vncproxy::host: {get_input: nova_api_network}
982 apache::ip: {get_input: horizon_network}
983 horizon::django_debug: {get_input: debug}
984 horizon::secret_key: {get_input: horizon_secret}
985 horizon::bind_address: {get_input: horizon_network}
986 horizon::keystone_url: {get_input: keystone_auth_uri}
989 rabbitmq::node_ip_address: {get_input: rabbitmq_network}
990 rabbitmq::erlang_cookie: {get_input: rabbit_cookie}
992 redis::bind: {get_input: redis_network}
993 redis_vip: {get_input: redis_vip}
995 memcached::listen_ip: {get_input: memcached_network}
996 neutron_public_interface_ip: {get_input: neutron_public_interface_ip}
997 ntp::servers: {get_input: ntp_servers}
998 control_virtual_interface: {get_input: control_virtual_interface}
999 public_virtual_interface: {get_input: public_virtual_interface}
1000 tripleo::loadbalancer::control_virtual_interface: {get_input: control_virtual_interface}
1001 tripleo::loadbalancer::public_virtual_interface: {get_input: public_virtual_interface}
1002 enable_package_install: {get_input: enable_package_install}
1005 type: OS::TripleO::Tasks::PackageUpdate
1008 type: OS::Heat::SoftwareDeployment
1010 config: {get_resource: UpdateConfig}
1011 server: {get_resource: Controller}
1014 get_param: UpdateIdentifier
1018 description: IP address of the server in the ctlplane network
1019 value: {get_attr: [Controller, networks, ctlplane, 0]}
1020 external_ip_address:
1021 description: IP address of the server in the external network
1022 value: {get_attr: [ExternalPort, ip_address]}
1023 internal_api_ip_address:
1024 description: IP address of the server in the internal_api network
1025 value: {get_attr: [InternalApiPort, ip_address]}
1027 description: IP address of the server in the storage network
1028 value: {get_attr: [StoragePort, ip_address]}
1029 storage_mgmt_ip_address:
1030 description: IP address of the server in the storage_mgmt network
1031 value: {get_attr: [StorageMgmtPort, ip_address]}
1033 description: IP address of the server in the tenant network
1034 value: {get_attr: [TenantPort, ip_address]}
1036 description: Hostname of the server
1037 value: {get_attr: [Controller, name]}
1040 Node object in the format {ip: ..., name: ...} format that the corosync
1043 ip: {get_attr: [Controller, networks, ctlplane, 0]}
1044 name: {get_attr: [Controller, name]}
1047 Server's IP address and hostname in the /etc/hosts format
1050 template: IP HOST.localdomain HOST CLOUDNAME
1052 IP: {get_attr: [Controller, networks, ctlplane, 0]}
1053 HOST: {get_attr: [Controller, name]}
1054 CLOUDNAME: {get_param: CloudName}
1055 nova_server_resource:
1056 description: Heat resource handle for the Nova compute server
1058 {get_resource: Controller}
1060 description: Swift device formatted for swift-ring-builder
1063 template: 'r1z1-IP:%PORT%/d1'
1065 IP: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftMgmtNetwork]}]}
1066 swift_proxy_memcache:
1067 description: Swift proxy-memcache value
1070 template: "IP:11211"
1072 IP: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MemcachedNetwork]}]}