1 heat_template_version: 2015-04-30
4 OpenStack controller node configured by Puppet.
9 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
14 description: The keystone auth secret and db password.
19 description: The ceilometer backend type.
21 CeilometerMeteringSecret:
23 description: Secret shared by the ceilometer services.
28 description: The password for the ceilometer service and db account.
31 CinderEnableIscsiBackend:
33 description: Whether to enable or not the Iscsi backend for Cinder
35 CinderEnableRbdBackend:
37 description: Whether to enable or not the Rbd backend for Cinder
41 description: The iSCSI helper to use with cinder.
43 CinderLVMLoopDeviceSize:
45 description: The size of the loopback file used by the cinder LVM driver.
49 description: The password for the cinder service and db account, used by cinder-api.
54 description: Contains parameters to configure Cinder backends. Typically
55 set via parameter_defaults in the resource registry.
59 description: The DNS name of this cloud. E.g. ci-overcloud.tripleo.org
61 ControllerExtraConfig:
64 Controller specific configuration to inject into the cluster. Same
65 structure as ExtraConfig.
67 ControlVirtualInterface:
69 description: Interface where virtual ip will be assigned.
73 description: Set to True to enable debugging on all services.
77 description: Whether to use Galera instead of regular MariaDB.
81 description: If enabled services will be monitored by Pacemaker; it
82 will manage VIPs as well, in place of Keepalived.
86 description: Whether to deploy Ceph Storage (OSD) on the Controller
90 description: Whether to enable Swift Storage on the Controller
95 Additional configuration to inject into the cluster. The JSON should have
96 the following structure:
99 [{"section": "SECTIONNAME",
101 [{"option": "OPTIONNAME",
112 [{"section": "default",
114 [{"option": "compute_manager",
115 "value": "ironic.nova.compute.manager.ClusterComputeManager"
121 [{"option": "driver",
122 "value": "nova.cells.rpc_driver.CellsRPCDriver"
131 description: Flavor for control nodes to request when deploying.
134 - custom_constraint: nova.flavor
135 GlanceNotifierStrategy:
136 description: Strategy to use for Glance notification queue
140 description: The filepath of the file to use for logging messages from Glance.
145 description: The password for the glance service and db account, used by the glance services.
150 description: Glance port.
154 description: Protocol to use when connecting to glance, set to https for SSL.
158 description: The short name of the Glance backend to use. Should be one
159 of swift, rbd, or file
162 - allowed_values: ['swift', 'file', 'rbd']
165 description: The password for the Heat service and db account, used by the Heat services.
168 HeatStackDomainAdminPassword:
169 description: Password for heat_domain_admin user.
173 HeatAuthEncryptionKey:
174 description: Auth encryption key for heat-engine
177 description: Secret key for Django
181 default: overcloud-control
183 - custom_constraint: glance.image
185 default: 'REBUILD_PRESERVE_EPHEMERAL'
186 description: What policy to use when reconstructing instances. REBUILD for rebuilds, REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
190 description: Name of an existing EC2 KeyPair to enable SSH access to the instances
193 - custom_constraint: nova.keypair
194 KeystoneCACertificate:
196 description: Keystone self-signed certificate authority certificate.
198 KeystoneSigningCertificate:
200 description: Keystone certificate for verifying token validity.
204 description: Keystone key for signing tokens.
207 KeystoneSSLCertificate:
209 description: Keystone certificate for verifying token validity.
211 KeystoneSSLCertificateKey:
213 description: Keystone key for signing tokens.
216 MysqlClusterUniquePart:
217 description: A unique identifier of the MySQL cluster the controller is in.
219 default: 'unset' # Has to be here because of the ignored empty value bug
220 # Drop the validation: https://bugs.launchpad.net/tripleo/+bug/1405446
222 # - length: {min: 4, max: 10}
223 MysqlInnodbBufferPoolSize:
225 Specifies the size of the buffer pool in megabytes. Setting to
226 zero should be interpreted as "no value" and will defer to the
233 default: '' # Has to be here because of the ignored empty value bug
234 NeutronBridgeMappings:
236 The OVS logical->physical bridge mappings to use. See the Neutron
237 documentation for details. Defaults to mapping br-ex - the external
238 bridge on hosts - to a physical name 'datacentre' which can be used
239 to create provider networks (and we use this for the default floating
240 network) - if changing this either use different post-install network
241 scripts or be sure to keep 'datacentre' as a mapping network name.
243 default: "datacentre:br-ex"
244 NeutronDnsmasqOptions:
245 default: 'dhcp-option-force=26,1400'
246 description: Dnsmasq options for neutron-dhcp-agent. The default value here forces MTU to be set to 1400 to account for the gre tunnel overhead.
250 description: Agent mode for the neutron-l3-agent on the controller hosts
254 description: Whether to enable l3-agent HA
258 description: Whether to configure Neutron Distributed Virtual Routers
260 NeutronMetadataProxySharedSecret:
262 description: Shared secret to prevent spoofing
264 NeutronMechanismDrivers:
265 default: 'openvswitch'
267 The mechanism drivers for the Neutron tenant network. To specify multiple
268 values, use a comma separated string, like so: 'openvswitch,l2_population'
270 NeutronAllowL3AgentFailover:
272 description: Allow automatic l3-agent failover
274 NeutronEnableTunnelling:
279 default: 'datacentre'
280 description: If set, flat networks to configure in neutron plugins.
283 description: Whether to enable l3-agent HA
287 description: The tenant network type for Neutron, either gre or vxlan.
289 NeutronNetworkVLANRanges:
290 default: 'datacentre'
292 The Neutron ML2 and OpenVSwitch vlan mapping range to support. See the
293 Neutron documentation for permitted values. Defaults to permitting any
294 VLAN on the 'datacentre' physical network (See NeutronBridgeMappings).
295 type: comma_delimited_list
298 description: The password for the neutron service and db account, used by neutron agents.
301 NeutronPublicInterface:
303 description: What interface to bridge onto br-ex for network nodes.
305 NeutronPublicInterfaceTag:
308 VLAN tag for creating a public VLAN. The tag will be used to
309 create an access port on the exterior bridge for each control plane node,
310 and that port will be given the IP address returned by neutron from the
311 public network. Set CONTROLEXTRA=overcloud-vlan-port.yaml when compiling
312 overcloud.yaml to include the deployment of VLAN ports to the control
315 NeutronPublicInterfaceDefaultRoute:
317 description: A custom default route for the NeutronPublicInterface.
319 NeutronPublicInterfaceIP:
321 description: A custom IP address to put onto the NeutronPublicInterface.
323 NeutronPublicInterfaceRawDevice:
325 description: If set, the public interface is a vlan with this device as the raw device.
330 The tunnel types for the Neutron tenant network. To specify multiple
331 values, use a comma separated string, like so: 'gre,vxlan'
335 description: The password for the nova service and db account, used by nova-api.
343 description: The password for the 'pcsd' user.
344 PublicVirtualInterface:
347 Specifies the interface where the public-facing virtual ip will be assigned.
348 This should be int_public when a VLAN is being used.
350 PublicVirtualIP: # DEPRECATED: use per service settings instead
352 default: '' # Has to be here because of the ignored empty value bug
355 default: '' # Has to be here because of the ignored empty value bug
359 description: The password for RabbitMQ
364 description: The username for RabbitMQ
369 Rabbit client subscriber parameter to specify
370 an SSL connection to the RabbitMQ host.
374 description: Set rabbit subscriber port, change this if using SSL
378 default: '' # Has to be here because of the ignored empty value bug
379 SnmpdReadonlyUserName:
380 default: ro_snmp_user
381 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
383 SnmpdReadonlyUserPassword:
385 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
390 description: If set, the contents of an SSL certificate authority file.
394 description: If set, the contents of an SSL certificate .crt file for encrypting SSL endpoints.
399 description: If set, the contents of an SSL certificate .key file for encrypting SSL endpoints.
404 description: A random string to be used as a salt when hashing to determine mappings
410 description: Value of mount_check in Swift account/container/object -server.conf
415 description: The minimum time (in hours) before a partition in a ring can be moved following a rebalance.
418 description: Partition Power to use when building Swift rings
422 description: The password for the swift service account, used by the swift proxy
429 description: How many replicas to use in the swift rings.
430 VirtualIP: # DEPRECATED: use per service settings instead
432 default: '' # Has to be here because of the ignored empty value bug
442 KeystonePublicApiVirtualIP:
448 EnablePackageInstall:
450 description: Set to true to enable package installation via Puppet
454 description: Mapping of service_name -> network name. Typically set
455 via parameter_defaults in the resource registry.
461 Setting to a previously unused value during stack-update will trigger
462 package update on all nodes
467 type: OS::Nova::Server
469 image: {get_param: Image}
470 image_update_policy: {get_param: ImageUpdatePolicy}
471 flavor: {get_param: Flavor}
472 key_name: {get_param: KeyName}
475 user_data_format: SOFTWARE_CONFIG
476 user_data: {get_resource: NodeUserData}
479 type: OS::TripleO::NodeUserData
482 type: OS::TripleO::Controller::Ports::ExternalPort
484 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
487 type: OS::TripleO::Controller::Ports::InternalApiPort
489 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
492 type: OS::TripleO::Controller::Ports::StoragePort
494 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
497 type: OS::TripleO::Controller::Ports::StorageMgmtPort
499 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
502 type: OS::TripleO::Controller::Ports::TenantPort
504 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
507 type: OS::TripleO::Network::Ports::NetIpMap
509 ExternalIp: {get_attr: [ExternalPort, ip_address]}
510 InternalApiIp: {get_attr: [InternalApiPort, ip_address]}
511 StorageIp: {get_attr: [StoragePort, ip_address]}
512 StorageMgmtIp: {get_attr: [StorageMgmtPort, ip_address]}
513 TenantIp: {get_attr: [TenantPort, ip_address]}
516 type: OS::TripleO::Network::Ports::NetIpMap
518 ExternalIp: {get_attr: [ExternalPort, ip_subnet]}
519 InternalApiIp: {get_attr: [InternalApiPort, ip_subnet]}
520 StorageIp: {get_attr: [StoragePort, ip_subnet]}
521 StorageMgmtIp: {get_attr: [StorageMgmtPort, ip_subnet]}
522 TenantIp: {get_attr: [TenantPort, ip_subnet]}
525 type: OS::TripleO::Controller::Net::SoftwareConfig
527 ExternalIpSubnet: {get_attr: [ExternalPort, ip_subnet]}
528 InternalApiIpSubnet: {get_attr: [InternalApiPort, ip_subnet]}
529 StorageIpSubnet: {get_attr: [StoragePort, ip_subnet]}
530 StorageMgmtIpSubnet: {get_attr: [StorageMgmtPort, ip_subnet]}
531 TenantIpSubnet: {get_attr: [TenantPort, ip_subnet]}
534 type: OS::TripleO::SoftwareDeployment
536 signal_transport: NO_SIGNAL
537 config: {get_resource: NetworkConfig}
538 server: {get_resource: Controller}
541 interface_name: {get_param: NeutronPublicInterface}
543 ControllerDeployment:
544 type: OS::TripleO::SoftwareDeployment
546 signal_transport: NO_SIGNAL
547 config: {get_resource: ControllerConfig}
548 server: {get_resource: Controller}
550 bootstack_nodeid: {get_attr: [Controller, name]}
551 neutron_enable_tunneling: {get_param: NeutronEnableTunnelling}
552 heat.watch_server_url:
556 - {get_param: HeatApiVirtualIP}
558 heat.metadata_server_url:
562 - {get_param: HeatApiVirtualIP}
564 heat.waitcondition_server_url:
568 - {get_param: HeatApiVirtualIP}
569 - ':8000/v1/waitcondition'
570 heat_auth_encryption_key: {get_param: HeatAuthEncryptionKey}
571 horizon_secret: {get_param: HorizonSecret}
572 admin_password: {get_param: AdminPassword}
573 admin_token: {get_param: AdminToken}
574 neutron_public_interface_ip: {get_param: NeutronPublicInterfaceIP}
575 debug: {get_param: Debug}
576 cinder_enable_rbd_backend: {get_param: CinderEnableRbdBackend}
577 cinder_lvm_loop_device_size: {get_param: CinderLVMLoopDeviceSize}
578 cinder_password: {get_param: CinderPassword}
579 cinder_enable_iscsi_backend: {get_param: CinderEnableIscsiBackend}
580 cinder_iscsi_helper: {get_param: CinderISCSIHelper}
581 cinder_backend_config: {get_param: CinderBackendConfig}
585 - - 'mysql://cinder:'
586 - {get_param: CinderPassword}
588 - {get_param: MysqlVirtualIP}
590 glance_port: {get_param: GlancePort}
591 glance_password: {get_param: GlancePassword}
592 glance_backend: {get_param: GlanceBackend}
593 glance_notifier_strategy: {get_param: GlanceNotifierStrategy}
594 glance_log_file: {get_param: GlanceLogFile}
598 - - 'mysql://glance:'
599 - {get_param: GlancePassword}
601 - {get_param: MysqlVirtualIP}
603 heat_password: {get_param: HeatPassword}
604 heat_stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
609 - {get_param: HeatPassword}
611 - {get_param: MysqlVirtualIP}
613 keystone_auth_address: {list_join: ['', ['http://', {get_param: KeystonePublicApiVirtualIP} , ':5000/v2.0']]}
614 keystone_ca_certificate: {get_param: KeystoneCACertificate}
615 keystone_signing_key: {get_param: KeystoneSigningKey}
616 keystone_signing_certificate: {get_param: KeystoneSigningCertificate}
617 keystone_ssl_certificate: {get_param: KeystoneSSLCertificate}
618 keystone_ssl_certificate_key: {get_param: KeystoneSSLCertificateKey}
622 - - 'mysql://keystone:'
623 - {get_param: AdminToken}
625 - {get_param: MysqlVirtualIP}
627 keystone_identity_uri:
631 - {get_param: KeystonePublicApiVirtualIP}
637 - {get_param: KeystonePublicApiVirtualIP}
639 enable_galera: {get_param: EnableGalera}
640 enable_ceph_storage: {get_param: EnableCephStorage}
641 enable_swift_storage: {get_param: EnableSwiftStorage}
642 mysql_innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
643 mysql_root_password: {get_param: MysqlRootPassword}
646 template: tripleo-CLUSTER
648 CLUSTER: {get_param: MysqlClusterUniquePart}
649 neutron_flat_networks: {get_param: NeutronFlatNetworks}
650 neutron_metadata_proxy_shared_secret: {get_param: NeutronMetadataProxySharedSecret}
651 neutron_agent_mode: {get_param: NeutronAgentMode}
652 neutron_router_distributed: {get_param: NeutronDVR}
653 neutron_mechanism_drivers: {get_param: NeutronMechanismDrivers}
654 neutron_allow_l3agent_failover: {get_param: NeutronAllowL3AgentFailover}
655 neutron_l3_ha: {get_param: NeutronL3HA}
656 neutron_network_vlan_ranges:
658 template: "['RANGES']"
663 - {get_param: NeutronNetworkVLANRanges}
664 neutron_bridge_mappings: {get_param: NeutronBridgeMappings}
665 neutron_public_interface: {get_param: NeutronPublicInterface}
666 neutron_public_interface_raw_device: {get_param: NeutronPublicInterfaceRawDevice}
667 neutron_public_interface_default_route: {get_param: NeutronPublicInterfaceDefaultRoute}
668 neutron_public_interface_tag: {get_param: NeutronPublicInterfaceTag}
669 neutron_tenant_network_type: {get_param: NeutronNetworkType}
670 neutron_tunnel_types: {get_param: NeutronTunnelTypes}
671 neutron_password: {get_param: NeutronPassword}
672 neutron_dnsmasq_options: {get_param: NeutronDnsmasqOptions}
676 - - 'mysql://neutron:'
677 - {get_param: NeutronPassword}
679 - {get_param: MysqlVirtualIP}
680 - '/ovs_neutron?charset=utf8'
685 - {get_param: NeutronApiVirtualIP}
687 neutron_admin_auth_url:
691 - {get_param: KeystonePublicApiVirtualIP}
693 ceilometer_backend: {get_param: CeilometerBackend}
694 ceilometer_metering_secret: {get_param: CeilometerMeteringSecret}
695 ceilometer_password: {get_param: CeilometerPassword}
699 - - 'mysql://ceilometer:unset@'
700 - {get_param: MysqlVirtualIP}
702 snmpd_readonly_user_name: {get_param: SnmpdReadonlyUserName}
703 snmpd_readonly_user_password: {get_param: SnmpdReadonlyUserPassword}
704 nova_password: {get_param: NovaPassword}
709 - {get_param: NovaPassword}
711 - {get_param: MysqlVirtualIP}
713 pcsd_password: {get_param: PcsdPassword}
714 rabbit_username: {get_param: RabbitUserName}
715 rabbit_password: {get_param: RabbitPassword}
716 rabbit_cookie: {get_param: RabbitCookie}
717 rabbit_client_use_ssl: {get_param: RabbitClientUseSSL}
718 rabbit_client_port: {get_param: RabbitClientPort}
721 template: '["server"]'
723 server: {get_param: NtpServer}
724 control_virtual_interface: {get_param: ControlVirtualInterface}
725 public_virtual_interface: {get_param: PublicVirtualInterface}
726 swift_hash_suffix: {get_param: SwiftHashSuffix}
727 swift_password: {get_param: SwiftPassword}
728 swift_part_power: {get_param: SwiftPartPower}
729 swift_replicas: {get_param: SwiftReplicas}
730 swift_min_part_hours: {get_param: SwiftMinPartHours}
731 swift_mount_check: {get_param: SwiftMountCheck}
732 enable_package_install: {get_param: EnablePackageInstall}
733 swift_proxy_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftProxyNetwork]}]}
734 swift_management_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftMgmtNetwork]}]}
735 cinder_iscsi_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CinderIscsiNetwork]}]}
736 cinder_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CinderApiNetwork]}]}
737 glance_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceApiNetwork]}]}
738 glance_registry_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceRegistryNetwork]}]}
742 - - {get_param: GlanceProtocol}
744 - {get_param: GlanceApiVirtualIP}
746 - {get_param: GlancePort}
747 heat_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, HeatApiNetwork]}]}
748 keystone_public_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, KeystonePublicApiNetwork]}]}
749 keystone_admin_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, KeystoneAdminApiNetwork]}]}
750 mongo_db_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MongoDbNetwork]}]}
751 neutron_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NeutronApiNetwork]}]}
752 neutron_local_ip: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NeutronLocalIp]}]}
753 ceilometer_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CeilometerApiNetwork]}]}
754 nova_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NovaApiNetwork]}]}
755 nova_metadata_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NovaMetadataNetwork]}]}
756 horizon_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, HorizonNetwork]}]}
757 rabbitmq_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, RabbitMqNetwork]}]}
758 redis_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, RedisNetwork]}]}
759 redis_vip: {get_param: RedisVirtualIP}
760 memcached_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MemcachedNetwork]}]}
761 mysql_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MysqlNetwork]}]}
762 ceph_cluster_network: {get_attr: [NetIpSubnetMap, net_ip_map, {get_param: [ServiceNetMap, CephClusterNetwork]}]}
763 ceph_public_network: {get_attr: [NetIpSubnetMap, net_ip_map, {get_param: [ServiceNetMap, CephPublicNetwork]}]}
764 ceph_public_ip: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CephPublicNetwork]}]}
766 # Map heat metadata into hiera datafiles
768 type: OS::Heat::StructuredConfig
770 group: os-apply-config
774 - heat_config_%{::deploy_config_name}
777 - swift_devices_and_proxy # provided by SwiftDevicesAndProxyConfig
778 - ceph_cluster # provided by CephClusterConfig
780 - bootstrap_node # provided by BootstrapNodeConfig
781 - all_nodes # provided by allNodesConfig
782 - vip_data # provided by vip-config
787 raw_data: {get_file: hieradata/common.yaml}
789 raw_data: {get_file: hieradata/ceph.yaml}
791 ceph::profile::params::cluster_network: {get_input: ceph_cluster_network}
792 ceph::profile::params::public_network: {get_input: ceph_public_network}
793 ceph::mon::public_addr: {get_input: ceph_public_ip}
795 raw_data: {get_file: hieradata/object.yaml}
797 raw_data: {get_file: hieradata/controller.yaml}
798 mapped_data: # data supplied directly to this deployment configuration, etc
799 bootstack_nodeid: {get_input: bootstack_nodeid}
802 hacluster_pwd: {get_input: pcsd_password}
805 swift::proxy::proxy_local_net_ip: {get_input: swift_proxy_network}
806 swift::proxy::authtoken::auth_uri: {get_input: keystone_auth_uri}
807 swift::proxy::authtoken::identity_uri: {get_input: keystone_identity_uri}
808 swift::storage::all::storage_local_net_ip: {get_input: swift_management_network}
809 swift::swift_hash_suffix: {get_input: swift_hash_suffix}
810 swift::proxy::authtoken::admin_password: {get_input: swift_password}
811 tripleo::ringbuilder::part_power: {get_input: swift_part_power}
812 tripleo::ringbuilder::replicas: {get_input: swift_replicas}
813 tripleo::ringbuilder::min_part_hours: {get_input: swift_min_part_hours}
814 swift_mount_check: {get_input: swift_mount_check}
816 # NOTE(dprince): build_ring support is currently not wired in.
817 # See: https://review.openstack.org/#/c/109225/
818 tripleo::ringbuilder::build_ring: True
821 cinder_enable_rbd_backend: {get_input: cinder_enable_rbd_backend}
822 cinder_lvm_loop_device_size: {get_input: cinder_lvm_loop_device_size}
823 cinder_iscsi_helper: {get_input: cinder_iscsi_helper}
824 cinder_iscsi_ip_address: {get_input: cinder_iscsi_network}
825 cinder::database_connection: {get_input: cinder_dsn}
826 cinder::api::keystone_password: {get_input: cinder_password}
827 cinder::api::auth_uri: {get_input: keystone_auth_uri}
828 cinder::api::identity_uri: {get_input: keystone_identity_uri}
829 cinder::api::bind_host: {get_input: cinder_api_network}
830 cinder::rabbit_userid: {get_input: rabbit_username}
831 cinder::rabbit_password: {get_input: rabbit_password}
832 cinder::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
833 cinder::rabbit_port: {get_input: rabbit_client_port}
834 cinder::debug: {get_input: debug}
835 cinder_enable_iscsi_backend: {get_input: cinder_enable_iscsi_backend}
836 cinder::glance::glance_api_servers: {get_input: glance_api_servers}
837 cinder_backend_config: {get_input: CinderBackendConfig}
840 glance::api::bind_port: {get_input: glance_port}
841 glance::api::bind_host: {get_input: glance_api_network}
842 glance::api::auth_uri: {get_input: keystone_auth_uri}
843 glance::api::identity_uri: {get_input: keystone_identity_uri}
844 glance::api::registry_host: {get_input: glance_registry_network}
845 glance::api::keystone_password: {get_input: glance_password}
846 glance::api::debug: {get_input: debug}
847 glance_notifier_strategy: {get_input: glance_notifier_strategy}
848 glance_log_file: {get_input: glance_log_file}
849 glance_log_file: {get_input: glance_log_file}
850 glance::api::database_connection: {get_input: glance_dsn}
851 glance::registry::keystone_password: {get_input: glance_password}
852 glance::registry::database_connection: {get_input: glance_dsn}
853 glance::registry::bind_host: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceRegistryNetwork]}]}
854 glance::registry::auth_uri: {get_input: keystone_auth_uri}
855 glance::registry::identity_uri: {get_input: keystone_identity_uri}
856 glance::registry::debug: {get_input: debug}
857 glance::backend::swift::swift_store_auth_address: {get_input: keystone_auth_address}
858 glance::backend::swift::swift_store_user: service:glance
859 glance::backend::swift::swift_store_key: {get_input: glance_password}
860 glance_backend: {get_input: glance_backend}
863 heat_stack_domain_admin_password: {get_input: heat_stack_domain_admin_password}
864 heat::engine::heat_watch_server_url: {get_input: heat.watch_server_url}
865 heat::engine::heat_metadata_server_url: {get_input: heat.metadata_server_url}
866 heat::engine::heat_waitcondition_server_url: {get_input: heat.waitcondition_server_url}
867 heat::engine::auth_encryption_key: {get_input: heat_auth_encryption_key}
868 heat::rabbit_userid: {get_input: rabbit_username}
869 heat::rabbit_password: {get_input: rabbit_password}
870 heat::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
871 heat::rabbit_port: {get_input: rabbit_client_port}
872 heat::auth_uri: {get_input: keystone_auth_uri}
873 heat::identity_uri: {get_input: keystone_identity_uri}
874 heat::keystone_password: {get_input: heat_password}
875 heat::api::bind_host: {get_input: heat_api_network}
876 heat::api_cloudwatch::bind_host: {get_input: heat_api_network}
877 heat::api_cfn::bind_host: {get_input: heat_api_network}
878 heat::database_connection: {get_input: heat_dsn}
879 heat::instance_user: heat-admin
880 heat::debug: {get_input: debug}
883 keystone::admin_token: {get_input: admin_token}
884 keystone_ca_certificate: {get_input: keystone_ca_certificate}
885 keystone_signing_key: {get_input: keystone_signing_key}
886 keystone_signing_certificate: {get_input: keystone_signing_certificate}
887 keystone_ssl_certificate: {get_input: keystone_ssl_certificate}
888 keystone_ssl_certificate_key: {get_input: keystone_ssl_certificate_key}
889 keystone::database_connection: {get_input: keystone_dsn}
890 keystone::public_bind_host: {get_input: keystone_public_api_network}
891 keystone::admin_bind_host: {get_input: keystone_admin_api_network}
892 keystone::debug: {get_input: debug}
894 mongodb::server::bind_ip: {get_input: mongo_db_network}
896 admin_password: {get_input: admin_password}
897 enable_galera: {get_input: enable_galera}
898 enable_ceph_storage: {get_input: enable_ceph_storage}
899 enable_swift_storage: {get_input: enable_swift_storage}
900 mysql_innodb_buffer_pool_size: {get_input: mysql_innodb_buffer_pool_size}
901 mysql::server::root_password: {get_input: mysql_root_password}
902 mysql_cluster_name: {get_input: mysql_cluster_name}
903 mysql_bind_host: {get_input: mysql_network}
906 neutron::bind_host: {get_input: neutron_api_network}
907 neutron::rabbit_password: {get_input: rabbit_password}
908 neutron::rabbit_user: {get_input: rabbit_user}
909 neutron::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
910 neutron::rabbit_port: {get_input: rabbit_client_port}
911 neutron::debug: {get_input: debug}
912 neutron::server::auth_uri: {get_input: keystone_auth_uri}
913 neutron::server::identity_uri: {get_input: keystone_identity_uri}
914 neutron::server::database_connection: {get_input: neutron_dsn}
915 neutron::agents::ml2::ovs::enable_tunneling: {get_input: neutron_enable_tunneling}
916 neutron::agents::ml2::ovs::local_ip: {get_input: neutron_local_ip}
917 neutron_flat_networks: {get_input: neutron_flat_networks}
918 neutron::agents::metadata::shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
919 neutron::agents::metadata::metadata_ip: {get_input: neutron_api_network}
920 neutron_agent_mode: {get_input: neutron_agent_mode}
921 neutron_router_distributed: {get_input: neutron_router_distributed}
922 neutron_mechanism_drivers: {get_input: neutron_mechanism_drivers}
923 neutron::server::allow_automatic_l3agent_failover: {get_input: neutron_allow_l3agent_failover}
924 neutron::server::l3_ha: {get_input: neutron_l3_ha}
925 neutron::plugins::ml2::network_vlan_ranges: {get_input: neutron_network_vlan_ranges}
926 neutron_bridge_mappings: {get_input: neutron_bridge_mappings}
927 neutron_public_interface: {get_input: neutron_public_interface}
928 neutron_public_interface_raw_device: {get_input: neutron_public_interface_raw_device}
929 neutron_public_interface_default_route: {get_input: neutron_public_interface_default_route}
930 neutron_public_interface_tag: {get_input: neutron_public_interface_tag}
931 neutron_tenant_network_type: {get_input: neutron_tenant_network_type}
932 neutron_tunnel_types: {get_input: neutron_tunnel_types}
933 neutron::server::auth_password: {get_input: neutron_password}
934 neutron::agents::metadata::auth_password: {get_input: neutron_password}
935 neutron_dnsmasq_options: {get_input: neutron_dnsmasq_options}
936 neutron_dsn: {get_input: neutron_dsn}
937 neutron::agents::metadata::auth_url: {get_input: keystone_identity_uri}
940 ceilometer_backend: {get_input: ceilometer_backend}
941 ceilometer_mysql_conn_string: {get_input: ceilometer_dsn}
942 ceilometer::metering_secret: {get_input: ceilometer_metering_secret}
943 ceilometer::rabbit_userid: {get_input: rabbit_username}
944 ceilometer::rabbit_password: {get_input: rabbit_password}
945 ceilometer::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
946 ceilometer::rabbit_port: {get_input: rabbit_client_port}
947 ceilometer::debug: {get_input: debug}
948 ceilometer::api::host: {get_input: ceilometer_api_network}
949 ceilometer::api::keystone_password: {get_input: ceilometer_password}
950 ceilometer::api::keystone_auth_uri: {get_input: keystone_auth_uri}
951 ceilometer::api::keystone_identity_uri: {get_input: keystone_identity_uri}
952 ceilometer::agent::auth::auth_password: {get_input: ceilometer_password}
953 ceilometer::agent::auth::auth_url: {get_input: keystone_auth_address}
954 snmpd_readonly_user_name: {get_input: snmpd_readonly_user_name}
955 snmpd_readonly_user_password: {get_input: snmpd_readonly_user_password}
958 nova::rabbit_userid: {get_input: rabbit_username}
959 nova::rabbit_password: {get_input: rabbit_password}
960 nova::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
961 nova::rabbit_port: {get_input: rabbit_client_port}
962 nova::debug: {get_input: debug}
963 nova::api::auth_uri: {get_input: keystone_auth_uri}
964 nova::api::identity_uri: {get_input: keystone_identity_uri}
965 nova::api::api_bind_address: {get_input: nova_api_network}
966 nova::api::metadata_listen: {get_input: nova_metadata_network}
967 nova::api::admin_password: {get_input: nova_password}
968 nova::database_connection: {get_input: nova_dsn}
969 nova::glance_api_servers: {get_input: glance_api_servers}
970 nova::api::neutron_metadata_proxy_shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
971 nova::network::neutron::neutron_admin_password: {get_input: neutron_password}
972 nova::network::neutron::neutron_url: {get_input: neutron_url}
973 nova::network::neutron::neutron_admin_auth_url: {get_input: neutron_admin_auth_url}
976 horizon::django_debug: {get_input: debug}
977 horizon::secret_key: {get_input: horizon_secret}
978 horizon::bind_address: {get_input: horizon_network}
979 horizon::keystone_url: {get_input: keystone_auth_uri}
982 rabbitmq::node_ip_address: {get_input: rabbitmq_network}
983 rabbitmq::erlang_cookie: {get_input: rabbit_cookie}
985 redis::bind: {get_input: redis_network}
986 redis_vip: {get_input: redis_vip}
988 memcached::listen_ip: {get_input: memcached_network}
989 neutron_public_interface_ip: {get_input: neutron_public_interface_ip}
990 ntp::servers: {get_input: ntp_servers}
991 control_virtual_interface: {get_input: control_virtual_interface}
992 public_virtual_interface: {get_input: public_virtual_interface}
993 tripleo::loadbalancer::control_virtual_interface: {get_input: control_virtual_interface}
994 tripleo::loadbalancer::public_virtual_interface: {get_input: public_virtual_interface}
995 enable_package_install: {get_input: enable_package_install}
998 type: OS::TripleO::Tasks::PackageUpdate
1001 type: OS::Heat::SoftwareDeployment
1003 config: {get_resource: UpdateConfig}
1004 server: {get_resource: Controller}
1007 get_param: UpdateIdentifier
1011 description: IP address of the server in the ctlplane network
1012 value: {get_attr: [Controller, networks, ctlplane, 0]}
1013 external_ip_address:
1014 description: IP address of the server in the external network
1015 value: {get_attr: [ExternalPort, ip_address]}
1016 internal_api_ip_address:
1017 description: IP address of the server in the internal_api network
1018 value: {get_attr: [InternalApiPort, ip_address]}
1020 description: IP address of the server in the storage network
1021 value: {get_attr: [StoragePort, ip_address]}
1022 storage_mgmt_ip_address:
1023 description: IP address of the server in the storage_mgmt network
1024 value: {get_attr: [StorageMgmtPort, ip_address]}
1026 description: IP address of the server in the tenant network
1027 value: {get_attr: [TenantPort, ip_address]}
1029 description: Hostname of the server
1030 value: {get_attr: [Controller, name]}
1033 Node object in the format {ip: ..., name: ...} format that the corosync
1036 ip: {get_attr: [Controller, networks, ctlplane, 0]}
1037 name: {get_attr: [Controller, name]}
1040 Server's IP address and hostname in the /etc/hosts format
1043 template: IP HOST CLOUDNAME
1045 IP: {get_attr: [Controller, networks, ctlplane, 0]}
1046 HOST: {get_attr: [Controller, name]}
1047 CLOUDNAME: {get_param: CloudName}
1048 nova_server_resource:
1049 description: Heat resource handle for the Nova compute server
1051 {get_resource: Controller}
1053 description: Swift device formatted for swift-ring-builder
1056 template: 'r1z1-IP:%PORT%/d1'
1058 IP: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftMgmtNetwork]}]}
1059 swift_proxy_memcache:
1060 description: Swift proxy-memcache value
1063 template: "IP:11211"
1065 IP: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MemcachedNetwork]}]}