1 heat_template_version: 2016-04-08
4 OpenStack controller node configured by Puppet.
8 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
15 description: The password for the aodh services.
18 CeilometerApiVirtualIP:
23 description: The ceilometer backend type.
25 CeilometerMeteringSecret:
26 description: Secret shared by the ceilometer services.
30 description: The password for the ceilometer service and db account.
33 CeilometerStoreEvents:
35 description: Whether to store events in ceilometer.
37 CeilometerMeterDispatcher:
39 description: Dispatcher to process meter data
42 - allowed_values: ['gnocchi', 'database']
48 description: Number of workers for Ceilometer service.
53 Whether to create cron job for purging soft deleted rows in Cinder database.
55 CinderEnableNfsBackend:
57 description: Whether to enable or not the NFS backend for Cinder
59 CinderEnableIscsiBackend:
61 description: Whether to enable or not the Iscsi backend for Cinder
63 CinderEnableRbdBackend:
65 description: Whether to enable or not the Rbd backend for Cinder
69 description: The iSCSI helper to use with cinder.
71 CinderLVMLoopDeviceSize:
73 description: The size of the loopback file used by the cinder LVM driver.
75 CinderNfsMountOptions:
78 Mount options for NFS mounts used by Cinder NFS backend. Effective
79 when CinderEnableNfsBackend is true.
84 NFS servers used by Cinder NFS backend. Effective when
85 CinderEnableNfsBackend is true.
86 type: comma_delimited_list
88 description: The password for the cinder service and db account, used by cinder-api.
93 description: Contains parameters to configure Cinder backends. Typically
94 set via parameter_defaults in the resource registry.
98 description: Number of workers for Cinder service.
100 controllerExtraConfig:
103 Deprecated. Use ControllerExtraConfig via parameter_defaults instead.
105 ControllerExtraConfig:
108 Controller specific hiera configuration data to inject into the cluster.
113 A network mapped list of IPs to assign to Controllers in the following form:
115 "internal_api": ["a.b.c.d", "e.f.g.h"],
119 ControlVirtualInterface:
121 description: Interface where virtual ip will be assigned.
125 description: Enable IPv6 in Corosync
129 description: Set to True to enable debugging on all services.
133 description: Whether to enable fencing in Pacemaker or not.
137 description: Whether to use Galera instead of regular MariaDB.
141 description: Whether to deploy a LoadBalancer on the Controller
145 description: Whether to deploy Ceph Storage (OSD) on the Controller
149 description: Whether to enable Swift Storage on the Controller
154 Additional hieradata to inject into the cluster, note that
155 ControllerExtraConfig takes precedence over ExtraConfig.
160 Pacemaker fencing configuration. The JSON should have
161 the following structure:
165 "agent": "AGENT_NAME",
166 "host_mac": "HOST_MAC_ADDRESS",
167 "params": {"PARAM_NAME": "PARAM_VALUE"}
175 "agent": "fence_xvm",
176 "host_mac": "52:54:00:aa:bb:cc",
178 "multicast_address": "225.0.0.12",
179 "port": "baremetal_0",
181 "manage_key_file": true,
182 "key_file": "/etc/fence_xvm.key",
183 "key_file_password": "abcdef"
190 description: Flavor for control nodes to request when deploying.
193 - custom_constraint: nova.flavor
196 description: The short name of the Gnocchi backend to use. Should be one
197 of swift, rbd, or file
200 - allowed_values: ['swift', 'file', 'rbd']
201 GnocchiIndexerBackend:
203 description: The short name of the Gnocchi indexer backend to use.
209 description: The password for the gnocchi service and db account.
212 HAProxyStatsPassword:
213 description: Password for HAProxy stats endpoint
216 description: User for HAProxy stats endpoint
219 HAProxySyslogAddress:
221 description: Syslog address where HAproxy will send its log
224 description: The password for the Heat service and db account, used by the Heat services.
227 HeatStackDomainAdminPassword:
228 description: Password for heat_stack_domain_admin user.
231 HeatAuthEncryptionKey:
232 description: Auth encryption key for heat-engine
237 description: A list of IP/Hostname allowed to connect to horizon
238 type: comma_delimited_list
241 description: Number of workers for Heat service.
247 Whether to create cron job for purging soft deleted rows in the Heat database.
249 description: Secret key for Django
254 default: overcloud-control
256 - custom_constraint: glance.image
258 default: 'REBUILD_PRESERVE_EPHEMERAL'
259 description: What policy to use when reconstructing instances. REBUILD for rebuilds, REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
261 InstanceNameTemplate:
262 default: 'instance-%08x'
263 description: Template string to be used to generate instance names
267 description: Name of an existing Nova key pair to enable SSH access to the instances
270 - custom_constraint: nova.keypair
274 description: Keystone region for endpoint
277 description: Whether to manage IPtables rules.
281 description: Enable IPv6 features in Memcached.
285 description: Whether IPtables rules should be purged before setting up the new ones.
292 description: The password for the sahara service account, used by sahara-api.
295 MysqlClusterUniquePart:
296 description: A unique identifier of the MySQL cluster the controller is in.
298 default: 'unset' # Has to be here because of the ignored empty value bug
299 # Drop the validation: https://bugs.launchpad.net/tripleo/+bug/1405446
301 # - length: {min: 4, max: 10}
302 MysqlInnodbBufferPoolSize:
304 Specifies the size of the buffer pool in megabytes. Setting to
305 zero should be interpreted as "no value" and will defer to the
310 description: Configures MySQL max_connections config setting
316 default: '' # Has to be here because of the ignored empty value bug
317 NeutronExternalNetworkBridge:
318 description: Name of bridge used for external network traffic.
321 NeutronBridgeMappings:
323 The OVS logical->physical bridge mappings to use. See the Neutron
324 documentation for details. Defaults to mapping br-ex - the external
325 bridge on hosts - to a physical name 'datacentre' which can be used
326 to create provider networks (and we use this for the default floating
327 network) - if changing this either use different post-install network
328 scripts or be sure to keep 'datacentre' as a mapping network name.
329 type: comma_delimited_list
330 default: "datacentre:br-ex"
331 NeutronEnableL3Agent:
332 description: Knob to enable/disable L3 agent
335 NeutronEnableMetadataAgent:
336 description: Knob to enable/disable Metadata agent
339 NeutronEnableOVSAgent:
340 description: Knob to enable/disable OVS Agent
345 description: Agent mode for the neutron-l3-agent on the controller hosts
349 description: Whether to enable l3-agent HA
353 description: Whether to configure Neutron Distributed Virtual Routers
355 NeutronMetadataProxySharedSecret:
356 description: Shared secret to prevent spoofing
362 The core plugin for Neutron. The value should be the entrypoint to be loaded
363 from neutron.core_plugins namespace.
365 NeutronServicePlugins:
366 default: "router,qos"
368 Comma-separated list of service plugin entrypoints to be loaded from the
369 neutron.service_plugins namespace.
370 type: comma_delimited_list
372 default: "vxlan,vlan,flat,gre"
374 Comma-separated list of network type driver entrypoints to be loaded.
375 type: comma_delimited_list
376 NeutronMechanismDrivers:
377 default: 'openvswitch'
379 The mechanism drivers for the Neutron tenant network.
380 type: comma_delimited_list
381 NeutronAllowL3AgentFailover:
383 description: Allow automatic l3-agent failover
385 NeutronEnableTunnelling:
391 Enable/disable the L2 population feature in the Neutron agents.
394 type: comma_delimited_list
395 default: 'datacentre'
396 description: If set, flat networks to configure in neutron plugins.
399 description: Whether to enable l3-agent HA
403 description: The tenant network type for Neutron.
404 type: comma_delimited_list
405 NeutronNetworkVLANRanges:
406 default: 'datacentre:1:1000'
408 The Neutron ML2 and OpenVSwitch vlan mapping range to support. See the
409 Neutron documentation for permitted values. Defaults to permitting any
410 VLAN on the 'datacentre' physical network (See NeutronBridgeMappings).
411 type: comma_delimited_list
413 description: The password for the neutron service and db account, used by neutron agents.
416 NeutronPublicInterface:
418 description: What interface to bridge onto br-ex for network nodes.
420 NeutronPublicInterfaceTag:
423 VLAN tag for creating a public VLAN. The tag will be used to
424 create an access port on the exterior bridge for each control plane node,
425 and that port will be given the IP address returned by neutron from the
426 public network. Set CONTROLEXTRA=overcloud-vlan-port.yaml when compiling
427 overcloud.yaml to include the deployment of VLAN ports to the control
430 NeutronPublicInterfaceDefaultRoute:
432 description: A custom default route for the NeutronPublicInterface.
434 NeutronPublicInterfaceIP:
436 description: A custom IP address to put onto the NeutronPublicInterface.
438 NeutronPublicInterfaceRawDevice:
440 description: If set, the public interface is a vlan with this device as the raw device.
444 The default MTU for tenant networks. For VXLAN/GRE tunneling, this should
445 be at least 50 bytes smaller than the MTU on the physical network. This
446 value will be used to set the MTU on the virtual Ethernet device.
447 This number is related to the value of NeutronDnsmasqOptions, since that
448 will determine the MTU that is assigned to the VM host through DHCP.
454 The tunnel types for the Neutron tenant network.
455 type: comma_delimited_list
456 NeutronTunnelIdRanges:
458 Comma-separated list of <tun_min>:<tun_max> tuples enumerating ranges
459 of GRE tunnel IDs that are available for tenant network allocation
460 default: ["1:4094", ]
461 type: comma_delimited_list
464 Comma-separated list of <vni_min>:<vni_max> tuples enumerating ranges
465 of VXLAN VNI IDs that are available for tenant network allocation
466 default: ["1:4094", ]
467 type: comma_delimited_list
468 NeutronPluginExtensions:
469 default: "qos,port_security"
471 Comma-separated list of extensions enabled for the Neutron plugin.
472 type: comma_delimited_list
473 NeutronAgentExtensions:
476 Comma-separated list of extensions enabled for the Neutron agents.
477 type: comma_delimited_list
483 description: Number of workers for Neutron service.
488 Whether to create cron job for purging soft deleted rows in Nova database.
492 description: Enable IPv6 features in Nova
495 description: The password for the nova service and db account, used by nova-api.
500 description: Number of workers for Nova service.
504 description: Should MongoDb journaling be disabled
508 description: Enable IPv6 if Mongo DB VIP is IPv6
512 description: Comma-separated list of ntp servers
513 type: comma_delimited_list
516 description: The password for the 'pcsd' user.
518 PublicVirtualInterface:
521 Specifies the interface where the public-facing virtual ip will be assigned.
522 This should be int_public when a VLAN is being used.
526 default: '' # Has to be here because of the ignored empty value bug
529 default: '' # Has to be here because of the ignored empty value bug
532 description: The password for RabbitMQ
537 description: The username for RabbitMQ
542 Rabbit client subscriber parameter to specify
543 an SSL connection to the RabbitMQ host.
547 description: Set rabbit subscriber port, change this if using SSL
551 description: Configures RabbitMQ FD limit
555 description: Enable IPv6 in RabbitMQ
559 description: The password to access the Redis service
563 default: '' # Has to be here because of the ignored empty value bug
566 default: '' # Has to be here because of the ignored empty value bug
567 description: An IP address which is wrapped in brackets in case of IPv6
568 SnmpdReadonlyUserName:
569 default: ro_snmp_user
570 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
572 SnmpdReadonlyUserPassword:
573 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
577 description: A random string to be used as a salt when hashing to determine mappings
583 description: Value of mount_check in Swift account/container/object -server.conf
588 description: The minimum time (in hours) before a partition in a ring can be moved following a rebalance.
591 description: Partition Power to use when building Swift rings
595 description: Whether to manage Swift rings or not
598 description: The password for the swift service account, used by the swift proxy
608 description: How many replicas to use in the swift rings.
611 description: Number of workers for Swift service.
615 description: The timezone to be set on controller nodes.
617 UpgradeLevelNovaCompute:
619 description: Nova Compute upgrade level
621 VirtualIP: # DEPRECATED: use per service settings instead
623 default: '' # Has to be here because of the ignored empty value bug
639 EnablePackageInstall:
641 description: Set to true to enable package installation via Puppet
645 description: Mapping of service_name -> network name. Typically set
646 via parameter_defaults in the resource registry.
650 description: Mapping of service endpoint -> protocol. Typically set
651 via parameter_defaults in the resource registry.
657 Setting to a previously unused value during stack-update will trigger
658 package update on all nodes
661 default: '' # Defaults to Heat created hostname
665 description: Optional mapping to override hostnames
666 NetworkDeploymentActions:
667 type: comma_delimited_list
669 Heat action when to apply network configuration changes
674 SoftwareConfigTransport:
675 default: POLL_SERVER_CFN
677 How the server should receive the metadata required for software configuration.
680 - allowed_values: [POLL_SERVER_CFN, POLL_SERVER_HEAT, POLL_TEMP_URL, ZAQAR_MESSAGE]
685 The DNS domain used for the hosts. This should match the dhcp_domain
686 configured in the Undercloud neutron. Defaults to localdomain.
690 Extra properties or metadata passed to Nova for the created nodes in
691 the overcloud. It's accessible via the Nova metadata API.
695 description: Optional scheduler hints to pass to nova
697 ServiceConfigSettings:
703 description: Do not use deprecated params, they will be removed.
705 - controllerExtraConfig
710 type: OS::Nova::Server
712 image: {get_param: Image}
713 image_update_policy: {get_param: ImageUpdatePolicy}
714 flavor: {get_param: Flavor}
715 key_name: {get_param: KeyName}
718 user_data_format: SOFTWARE_CONFIG
719 user_data: {get_resource: UserData}
722 template: {get_param: Hostname}
723 params: {get_param: HostnameMap}
724 software_config_transport: {get_param: SoftwareConfigTransport}
725 metadata: {get_param: ServerMetadata}
726 scheduler_hints: {get_param: SchedulerHints}
728 # Combine the NodeAdminUserData and NodeUserData mime archives
730 type: OS::Heat::MultipartMime
733 - config: {get_resource: NodeAdminUserData}
735 - config: {get_resource: NodeUserData}
738 # Creates the "heat-admin" user if configured via the environment
739 # Should return a OS::Heat::MultipartMime reference via OS::stack_id
741 type: OS::TripleO::NodeAdminUserData
743 # For optional operator additional userdata
744 # Should return a OS::Heat::MultipartMime reference via OS::stack_id
746 type: OS::TripleO::NodeUserData
749 type: OS::TripleO::Controller::Ports::ExternalPort
751 IPPool: {get_param: ControllerIPs}
752 NodeIndex: {get_param: NodeIndex}
753 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
756 type: OS::TripleO::Controller::Ports::InternalApiPort
758 IPPool: {get_param: ControllerIPs}
759 NodeIndex: {get_param: NodeIndex}
760 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
763 type: OS::TripleO::Controller::Ports::StoragePort
765 IPPool: {get_param: ControllerIPs}
766 NodeIndex: {get_param: NodeIndex}
767 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
770 type: OS::TripleO::Controller::Ports::StorageMgmtPort
772 IPPool: {get_param: ControllerIPs}
773 NodeIndex: {get_param: NodeIndex}
774 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
777 type: OS::TripleO::Controller::Ports::TenantPort
779 IPPool: {get_param: ControllerIPs}
780 NodeIndex: {get_param: NodeIndex}
781 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
784 type: OS::TripleO::Controller::Ports::ManagementPort
786 IPPool: {get_param: ControllerIPs}
787 NodeIndex: {get_param: NodeIndex}
788 ControlPlaneIP: {get_attr: [Controller, networks, ctlplane, 0]}
791 type: OS::TripleO::Network::Ports::NetIpMap
793 ControlPlaneIp: {get_attr: [Controller, networks, ctlplane, 0]}
794 ExternalIp: {get_attr: [ExternalPort, ip_address]}
795 ExternalIpUri: {get_attr: [ExternalPort, ip_address_uri]}
796 InternalApiIp: {get_attr: [InternalApiPort, ip_address]}
797 InternalApiIpUri: {get_attr: [InternalApiPort, ip_address_uri]}
798 StorageIp: {get_attr: [StoragePort, ip_address]}
799 StorageIpUri: {get_attr: [StoragePort, ip_address_uri]}
800 StorageMgmtIp: {get_attr: [StorageMgmtPort, ip_address]}
801 StorageMgmtIpUri: {get_attr: [StorageMgmtPort, ip_address_uri]}
802 TenantIp: {get_attr: [TenantPort, ip_address]}
803 TenantIpUri: {get_attr: [TenantPort, ip_address_uri]}
804 ManagementIp: {get_attr: [ManagementPort, ip_address]}
805 ManagementIpUri: {get_attr: [ManagementPort, ip_address_uri]}
808 type: OS::TripleO::Network::Ports::NetIpSubnetMap
810 ControlPlaneIp: {get_attr: [Controller, networks, ctlplane, 0]}
811 ExternalIpSubnet: {get_attr: [ExternalPort, ip_subnet]}
812 InternalApiIpSubnet: {get_attr: [InternalApiPort, ip_subnet]}
813 StorageIpSubnet: {get_attr: [StoragePort, ip_subnet]}
814 StorageMgmtIpSubnet: {get_attr: [StorageMgmtPort, ip_subnet]}
815 TenantIpSubnet: {get_attr: [TenantPort, ip_subnet]}
816 ManagementIpSubnet: {get_attr: [ManagementPort, ip_subnet]}
819 type: OS::TripleO::Controller::Net::SoftwareConfig
821 ControlPlaneIp: {get_attr: [Controller, networks, ctlplane, 0]}
822 ExternalIpSubnet: {get_attr: [ExternalPort, ip_subnet]}
823 InternalApiIpSubnet: {get_attr: [InternalApiPort, ip_subnet]}
824 StorageIpSubnet: {get_attr: [StoragePort, ip_subnet]}
825 StorageMgmtIpSubnet: {get_attr: [StorageMgmtPort, ip_subnet]}
826 TenantIpSubnet: {get_attr: [TenantPort, ip_subnet]}
827 ManagementIpSubnet: {get_attr: [ManagementPort, ip_subnet]}
830 type: OS::TripleO::SoftwareDeployment
832 name: NetworkDeployment
833 config: {get_resource: NetworkConfig}
834 server: {get_resource: Controller}
835 actions: {get_param: NetworkDeploymentActions}
838 interface_name: {get_param: NeutronPublicInterface}
840 # Resource for site-specific injection of root certificate
842 depends_on: NetworkDeployment
843 type: OS::TripleO::NodeTLSCAData
845 server: {get_resource: Controller}
847 # Resource for site-specific passing of private keys/certificates
849 depends_on: NodeTLSCAData
850 type: OS::TripleO::NodeTLSData
852 server: {get_resource: Controller}
853 NodeIndex: {get_param: NodeIndex}
856 ControllerDeployment:
857 type: OS::TripleO::SoftwareDeployment
858 depends_on: NetworkDeployment
860 name: ControllerDeployment
861 config: {get_resource: ControllerConfig}
862 server: {get_resource: Controller}
864 bootstack_nodeid: {get_attr: [Controller, name]}
865 ceilometer_workers: {get_param: CeilometerWorkers}
866 cinder_workers: {get_param: CinderWorkers}
867 heat_workers: {get_param: HeatWorkers}
868 nova_workers: {get_param: NovaWorkers}
869 neutron_workers: {get_param: NeutronWorkers}
870 swift_workers: {get_param: SwiftWorkers}
871 neutron_enable_tunneling: {get_param: NeutronEnableTunnelling}
872 neutron_enable_l2pop: {get_param: NeutronEnableL2Pop}
873 haproxy_log_address: {get_param: HAProxySyslogAddress}
874 haproxy_stats_password: {get_param: HAProxyStatsPassword}
875 haproxy_stats_user: {get_param: HAProxyStatsUser}
876 heat.watch_server_url:
880 - {get_param: HeatApiVirtualIPUri}
882 heat.metadata_server_url:
886 - {get_param: HeatApiVirtualIPUri}
888 heat.waitcondition_server_url:
892 - {get_param: HeatApiVirtualIPUri}
893 - ':8000/v1/waitcondition'
894 heat_public_url: {get_param: [EndpointMap, HeatPublic, uri]}
895 heat_internal_url: {get_param: [EndpointMap, HeatInternal, uri]}
896 heat_admin_url: {get_param: [EndpointMap, HeatAdmin, uri]}
897 heat_auth_encryption_key: {get_param: HeatAuthEncryptionKey}
898 heat_enable_db_purge: {get_param: HeatEnableDBPurge}
899 horizon_allowed_hosts: {get_param: HorizonAllowedHosts}
900 horizon_secret: {get_param: HorizonSecret}
901 admin_password: {get_param: AdminPassword}
902 neutron_public_interface_ip: {get_param: NeutronPublicInterfaceIP}
903 debug: {get_param: Debug}
904 cinder_enable_db_purge: {get_param: CinderEnableDBPurge}
905 cinder_enable_nfs_backend: {get_param: CinderEnableNfsBackend}
906 cinder_enable_rbd_backend: {get_param: CinderEnableRbdBackend}
907 cinder_nfs_mount_options: {get_param: CinderNfsMountOptions}
912 SERVERS: {get_param: CinderNfsServers}
913 cinder_lvm_loop_device_size: {get_param: CinderLVMLoopDeviceSize}
914 cinder_password: {get_param: CinderPassword}
915 cinder_enable_iscsi_backend: {get_param: CinderEnableIscsiBackend}
916 cinder_iscsi_helper: {get_param: CinderISCSIHelper}
917 cinder_backend_config: {get_param: CinderBackendConfig}
921 - - 'mysql+pymysql://cinder:'
922 - {get_param: CinderPassword}
924 - {get_param: MysqlVirtualIPUri}
926 cinder_public_url: {get_param: [EndpointMap, CinderPublic, uri]}
927 cinder_internal_url: {get_param: [EndpointMap, CinderInternal, uri]}
928 cinder_admin_url: {get_param: [EndpointMap, CinderAdmin, uri]}
929 cinder_public_url_v2: {get_param: [EndpointMap, CinderV2Public, uri]}
930 cinder_internal_url_v2: {get_param: [EndpointMap, CinderV2Internal, uri]}
931 cinder_admin_url_v2: {get_param: [EndpointMap, CinderV2Admin, uri]}
932 heat_password: {get_param: HeatPassword}
933 heat_stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
937 - - 'mysql+pymysql://heat:'
938 - {get_param: HeatPassword}
940 - {get_param: MysqlVirtualIPUri}
942 keystone_identity_uri: { get_param: [EndpointMap, KeystoneAdmin, uri_no_suffix] }
943 keystone_auth_uri: {get_param: [EndpointMap, KeystoneInternal, uri] }
944 keystone_ec2_uri: { get_param: [EndpointMap, KeystoneEC2, uri] }
945 enable_fencing: {get_param: EnableFencing}
946 enable_galera: {get_param: EnableGalera}
947 enable_load_balancer: {get_param: EnableLoadBalancer}
948 enable_ceph_storage: {get_param: EnableCephStorage}
949 enable_swift_storage: {get_param: EnableSwiftStorage}
950 manage_firewall: {get_param: ManageFirewall}
951 purge_firewall_rules: {get_param: PurgeFirewallRules}
952 mysql_innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
953 mysql_max_connections: {get_param: MysqlMaxConnections}
954 mysql_root_password: {get_param: MysqlRootPassword}
957 template: tripleo-CLUSTER
959 CLUSTER: {get_param: MysqlClusterUniquePart}
960 neutron_flat_networks:
964 NETWORKS: {get_param: NeutronFlatNetworks}
965 neutron_metadata_proxy_shared_secret: {get_param: NeutronMetadataProxySharedSecret}
966 neutron_agent_mode: {get_param: NeutronAgentMode}
967 neutron_router_distributed: {get_param: NeutronDVR}
968 neutron_core_plugin: {get_param: NeutronCorePlugin}
969 neutron_service_plugins:
973 PLUGINS: {get_param: NeutronServicePlugins}
974 neutron_type_drivers:
978 DRIVERS: {get_param: NeutronTypeDrivers}
979 neutron_enable_l3_agent: {get_param: NeutronEnableL3Agent}
980 neutron_enable_metadata_agent: {get_param: NeutronEnableMetadataAgent}
981 neutron_enable_ovs_agent: {get_param: NeutronEnableOVSAgent}
982 neutron_mechanism_drivers:
986 MECHANISMS: {get_param: NeutronMechanismDrivers}
987 neutron_allow_l3agent_failover: {get_param: NeutronAllowL3AgentFailover}
988 neutron_l3_ha: {get_param: NeutronL3HA}
989 neutron_network_vlan_ranges:
993 RANGES: {get_param: NeutronNetworkVLANRanges}
994 neutron_bridge_mappings:
998 MAPPINGS: {get_param: NeutronBridgeMappings}
999 neutron_external_network_bridge: {get_param: NeutronExternalNetworkBridge}
1000 neutron_public_interface: {get_param: NeutronPublicInterface}
1001 neutron_public_interface_raw_device: {get_param: NeutronPublicInterfaceRawDevice}
1002 neutron_public_interface_default_route: {get_param: NeutronPublicInterfaceDefaultRoute}
1003 neutron_public_interface_tag: {get_param: NeutronPublicInterfaceTag}
1004 neutron_tunnel_id_ranges:
1008 RANGES: {get_param: NeutronTunnelIdRanges}
1013 RANGES: {get_param: NeutronVniRanges}
1014 neutron_tenant_network_types:
1018 TYPES: {get_param: NeutronNetworkType}
1019 neutron_tunnel_types:
1023 TYPES: {get_param: NeutronTunnelTypes}
1024 neutron_plugin_extensions:
1026 template: PLUGIN_EXTENSIONS
1028 PLUGIN_EXTENSIONS: {get_param: NeutronPluginExtensions}
1029 neutron_agent_extensions:
1031 template: AGENT_EXTENSIONS
1033 AGENT_EXTENSIONS: {get_param: NeutronAgentExtensions}
1034 neutron_password: {get_param: NeutronPassword}
1035 neutron_tenant_mtu: {get_param: NeutronTenantMtu}
1039 - - 'mysql+pymysql://neutron:'
1040 - {get_param: NeutronPassword}
1042 - {get_param: MysqlVirtualIPUri}
1043 - '/ovs_neutron?charset=utf8'
1044 neutron_internal_url: { get_param: [ EndpointMap, NeutronInternal, uri ] }
1045 neutron_public_url: { get_param: [ EndpointMap, NeutronPublic, uri ] }
1046 neutron_admin_url: { get_param: [ EndpointMap, NeutronAdmin, uri ] }
1047 neutron_auth_url: { get_param: [ EndpointMap, KeystoneV3Admin, uri ] }
1048 nova_internal_url: { get_param: [ EndpointMap, NovaInternal, uri ] }
1049 ceilometer_backend: {get_param: CeilometerBackend}
1050 ceilometer_metering_secret: {get_param: CeilometerMeteringSecret}
1051 ceilometer_password: {get_param: CeilometerPassword}
1052 ceilometer_store_events: {get_param: CeilometerStoreEvents}
1053 aodh_password: {get_param: AodhPassword}
1054 aodh_internal_url: { get_param: [ EndpointMap, AodhInternal, uri ] }
1055 aodh_public_url: { get_param: [ EndpointMap, AodhPublic, uri ] }
1056 aodh_admin_url: { get_param: [ EndpointMap, AodhAdmin, uri ] }
1057 ceilometer_meter_dispatcher: {get_param: CeilometerMeterDispatcher}
1058 gnocchi_password: {get_param: GnocchiPassword}
1059 gnocchi_backend: {get_param: GnocchiBackend}
1060 gnocchi_indexer_backend: {get_param: GnocchiIndexerBackend}
1061 ceilometer_coordination_url:
1065 - {get_param: RedisPassword}
1067 - {get_param: RedisVirtualIPUri}
1072 - - 'mysql+pymysql://ceilometer:'
1073 - {get_param: CeilometerPassword}
1075 - {get_param: MysqlVirtualIPUri}
1080 - - 'mysql+pymysql://gnocchi:'
1081 - {get_param: GnocchiPassword}
1083 - {get_param: MysqlVirtualIPUri}
1085 gnocchi_internal_url: {get_param: [EndpointMap, GnocchiInternal, uri]}
1086 gnocchi_public_url: { get_param: [ EndpointMap, GnocchiPublic, uri ] }
1087 gnocchi_admin_url: { get_param: [ EndpointMap, GnocchiAdmin, uri ] }
1088 ceilometer_public_url: {get_param: [EndpointMap, CeilometerPublic, uri]}
1089 ceilometer_internal_url: {get_param: [EndpointMap, CeilometerInternal, uri]}
1090 ceilometer_admin_url: {get_param: [EndpointMap, CeilometerAdmin, uri]}
1091 snmpd_readonly_user_name: {get_param: SnmpdReadonlyUserName}
1092 snmpd_readonly_user_password: {get_param: SnmpdReadonlyUserPassword}
1093 nova_enable_db_purge: {get_param: NovaEnableDBPurge}
1094 nova_ipv6: {get_param: NovaIPv6}
1095 corosync_ipv6: {get_param: CorosyncIPv6}
1096 memcached_ipv6: {get_param: MemcachedIPv6}
1097 nova_password: {get_param: NovaPassword}
1101 - - 'mysql+pymysql://nova:'
1102 - {get_param: NovaPassword}
1104 - {get_param: MysqlVirtualIPUri}
1109 - - 'mysql+pymysql://nova_api:'
1110 - {get_param: NovaPassword}
1112 - {get_param: MysqlVirtualIPUri}
1114 upgrade_level_nova_compute: {get_param: UpgradeLevelNovaCompute}
1115 instance_name_template: {get_param: InstanceNameTemplate}
1116 nova_public_url: {get_param: [EndpointMap, NovaPublic, uri]}
1117 nova_internal_url: {get_param: [EndpointMap, NovaInternal, uri]}
1118 nova_admin_url: {get_param: [EndpointMap, NovaAdmin, uri]}
1119 fencing_config: {get_param: FencingConfig}
1120 pcsd_password: {get_param: PcsdPassword}
1121 rabbit_username: {get_param: RabbitUserName}
1122 rabbit_password: {get_param: RabbitPassword}
1123 rabbit_cookie: {get_param: RabbitCookie}
1124 rabbit_client_use_ssl: {get_param: RabbitClientUseSSL}
1125 rabbit_client_port: {get_param: RabbitClientPort}
1126 rabbit_ipv6: {get_param: RabbitIPv6}
1127 rabbit_fd_limit: {get_param: RabbitFDLimit}
1128 mongodb_no_journal: {get_param: MongoDbNoJournal}
1129 mongodb_ipv6: {get_param: MongoDbIPv6}
1130 ntp_servers: {get_param: NtpServer}
1131 timezone: {get_param: TimeZone}
1132 control_virtual_interface: {get_param: ControlVirtualInterface}
1133 public_virtual_interface: {get_param: PublicVirtualInterface}
1134 swift_hash_suffix: {get_param: SwiftHashSuffix}
1135 swift_password: {get_param: SwiftPassword}
1136 swift_part_power: {get_param: SwiftPartPower}
1137 swift_ring_build: {get_param: SwiftRingBuild}
1138 swift_replicas: {get_param: SwiftReplicas}
1139 swift_min_part_hours: {get_param: SwiftMinPartHours}
1140 swift_mount_check: {get_param: SwiftMountCheck}
1141 swift_public_url: {get_param: [EndpointMap, SwiftPublic, uri]}
1142 swift_internal_url: {get_param: [EndpointMap, SwiftInternal, uri]}
1143 swift_admin_url: {get_param: [EndpointMap, SwiftAdmin, uri]}
1144 swift_public_url_s3: {get_param: [EndpointMap, SwiftS3Public, uri]}
1145 swift_internal_url_s3: {get_param: [EndpointMap, SwiftS3Internal, uri]}
1146 swift_admin_url_s3: {get_param: [EndpointMap, SwiftS3Admin, uri]}
1147 enable_package_install: {get_param: EnablePackageInstall}
1148 enable_package_upgrade: {get_attr: [UpdateDeployment, update_managed_packages]}
1149 sahara_password: {get_param: SaharaPassword}
1150 sahara_public_url: {get_param: [EndpointMap, SaharaPublic, uri]}
1151 sahara_internal_url: {get_param: [EndpointMap, SaharaInternal, uri]}
1152 sahara_admin_url: {get_param: [EndpointMap, SaharaAdmin, uri]}
1156 - - 'mysql://sahara:'
1157 - {get_param: SaharaPassword}
1159 - {get_param: MysqlVirtualIPUri}
1161 swift_proxy_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftProxyNetwork]}]}
1162 swift_management_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SwiftMgmtNetwork]}]}
1163 cinder_iscsi_network:
1167 IP: {get_attr: [NetIpMap, net_ip_uri_map, {get_param: [ServiceNetMap, CinderIscsiNetwork]}]}
1168 cinder_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CinderApiNetwork]}]}
1169 glance_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceApiNetwork]}]}
1170 glance_registry_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GlanceRegistryNetwork]}]}
1171 glance_api_servers: { get_param: [EndpointMap, GlanceInternal, uri]}
1172 heat_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, HeatApiNetwork]}]}
1173 keystone_public_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, KeystonePublicApiNetwork]}]}
1174 keystone_admin_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, KeystoneAdminApiNetwork]}]}
1175 keystone_region: {get_param: KeystoneRegion}
1176 mongo_db_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MongoDbNetwork]}]}
1177 neutron_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NeutronApiNetwork]}]}
1178 neutron_local_ip: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NeutronTenantNetwork]}]}
1179 ceilometer_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CeilometerApiNetwork]}]}
1180 aodh_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, AodhApiNetwork]}]}
1181 gnocchi_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, GnocchiApiNetwork]}]}
1182 nova_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NovaApiNetwork]}]}
1183 nova_metadata_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, NovaMetadataNetwork]}]}
1184 horizon_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, HorizonNetwork]}]}
1187 template: "['SUBNET']"
1189 SUBNET: {get_attr: [NetIpSubnetMap, net_ip_subnet_map, {get_param: [ServiceNetMap, HorizonNetwork]}]}
1190 rabbitmq_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, RabbitMqNetwork]}]}
1191 redis_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, RedisNetwork]}]}
1192 redis_password: {get_param: RedisPassword}
1193 redis_vip: {get_param: RedisVirtualIP}
1194 sahara_api_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, SaharaApiNetwork]}]}
1195 memcached_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MemcachedNetwork]}]}
1196 mysql_network: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, MysqlNetwork]}]}
1197 mysql_virtual_ip: {get_param: MysqlVirtualIP}
1198 ceph_cluster_network: {get_attr: [NetIpSubnetMap, net_ip_subnet_map, {get_param: [ServiceNetMap, CephClusterNetwork]}]}
1199 ceph_public_network: {get_attr: [NetIpSubnetMap, net_ip_subnet_map, {get_param: [ServiceNetMap, CephPublicNetwork]}]}
1200 ceph_public_ip: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, CephPublicNetwork]}]}
1202 # Map heat metadata into hiera datafiles
1204 type: OS::Heat::StructuredConfig
1206 group: os-apply-config
1211 - heat_config_%{::deploy_config_name}
1212 - controller_extraconfig
1218 - swift_devices_and_proxy # provided by SwiftDevicesAndProxyConfig
1219 - ceph_cluster # provided by CephClusterConfig
1221 - bootstrap_node # provided by BootstrapNodeConfig
1222 - all_nodes # provided by allNodesConfig
1223 - vip_data # provided by vip-config
1226 - cinder_dellsc_data # Optionally provided by ControllerExtraConfigPre
1227 - cinder_netapp_data # Optionally provided by ControllerExtraConfigPre
1228 - cinder_eqlx_data # Optionally provided by ControllerExtraConfigPre
1229 - neutron_bigswitch_data # Optionally provided by ControllerExtraConfigPre
1230 - neutron_cisco_data # Optionally provided by ControllerExtraConfigPre
1231 - cisco_n1kv_data # Optionally provided by ControllerExtraConfigPre
1232 - neutron_nuage_data # Optionally provided by ControllerExtraConfigPre
1233 - midonet_data #Optionally provided by AllNodesExtraConfig
1234 - neutron_opencontrail_data # Optionally provided by ControllerExtraConfigPre
1235 - neutron_plumgrid_data # Optionally provided by ControllerExtraConfigPre
1236 merge_behavior: deeper
1239 mapped_data: {get_param: ServiceConfigSettings}
1240 controller_extraconfig:
1243 - {get_param: controllerExtraConfig}
1244 - {get_param: ControllerExtraConfig}
1246 mapped_data: {get_param: ExtraConfig}
1248 raw_data: {get_file: hieradata/common.yaml}
1250 raw_data: {get_file: hieradata/ceph.yaml}
1252 ceph::profile::params::cluster_network: {get_input: ceph_cluster_network}
1253 ceph::profile::params::public_network: {get_input: ceph_public_network}
1254 ceph::profile::params::public_addr: {get_input: ceph_public_ip}
1256 raw_data: {get_file: hieradata/database.yaml}
1258 raw_data: {get_file: hieradata/object.yaml}
1260 raw_data: {get_file: hieradata/controller.yaml}
1261 mapped_data: # data supplied directly to this deployment configuration, etc
1262 bootstack_nodeid: {get_input: bootstack_nodeid}
1265 enable_fencing: {get_input: enable_fencing}
1266 enable_load_balancer: {get_input: enable_load_balancer}
1267 hacluster_pwd: {get_input: pcsd_password}
1268 corosync_ipv6: {get_input: corosync_ipv6}
1269 tripleo::fencing::config: {get_input: fencing_config}
1272 swift::proxy::proxy_local_net_ip: {get_input: swift_proxy_network}
1273 swift::proxy::authtoken::auth_uri: {get_input: keystone_auth_uri}
1274 swift::proxy::authtoken::identity_uri: {get_input: keystone_identity_uri}
1275 swift::storage::all::storage_local_net_ip: {get_input: swift_management_network}
1276 swift::swift_hash_suffix: {get_input: swift_hash_suffix}
1277 swift::proxy::authtoken::admin_password: {get_input: swift_password}
1278 swift::proxy::workers: {get_input: swift_workers}
1279 tripleo::ringbuilder::build_ring: { get_input: swift_ring_build }
1280 tripleo::ringbuilder::part_power: {get_input: swift_part_power}
1281 tripleo::ringbuilder::replicas: {get_input: swift_replicas}
1282 tripleo::ringbuilder::min_part_hours: {get_input: swift_min_part_hours}
1283 swift_mount_check: {get_input: swift_mount_check}
1284 swift::keystone::auth::public_url: {get_input: swift_public_url }
1285 swift::keystone::auth::internal_url: {get_input: swift_internal_url }
1286 swift::keystone::auth::admin_url: {get_input: swift_admin_url }
1287 swift::keystone::auth::public_url_s3: {get_input: swift_public_url_v3 }
1288 swift::keystone::auth::internal_url_s3: {get_input: swift_internal_url_v3 }
1289 swift::keystone::auth::admin_url_s3: {get_input: swift_admin_url_v3 }
1290 swift::keystone::auth::password: {get_input: swift_password }
1291 swift::keystone::auth::region: {get_input: keystone_region}
1294 cinder_enable_db_purge: {get_input: cinder_enable_db_purge}
1295 cinder_enable_nfs_backend: {get_input: cinder_enable_nfs_backend}
1296 cinder_enable_rbd_backend: {get_input: cinder_enable_rbd_backend}
1297 cinder_nfs_mount_options: {get_input: cinder_nfs_mount_options}
1298 cinder_nfs_servers: {get_input: cinder_nfs_servers}
1299 cinder_lvm_loop_device_size: {get_input: cinder_lvm_loop_device_size}
1300 cinder_iscsi_helper: {get_input: cinder_iscsi_helper}
1301 cinder_iscsi_ip_address: {get_input: cinder_iscsi_network}
1302 cinder::database_connection: {get_input: cinder_dsn}
1303 cinder::api::keystone_password: {get_input: cinder_password}
1304 cinder::api::auth_uri: {get_input: keystone_auth_uri}
1305 cinder::api::identity_uri: {get_input: keystone_identity_uri}
1306 cinder::api::bind_host: {get_input: cinder_api_network}
1307 cinder::rabbit_userid: {get_input: rabbit_username}
1308 cinder::rabbit_password: {get_input: rabbit_password}
1309 cinder::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
1310 cinder::rabbit_port: {get_input: rabbit_client_port}
1311 cinder::debug: {get_input: debug}
1312 cinder_enable_iscsi_backend: {get_input: cinder_enable_iscsi_backend}
1313 cinder::glance::glance_api_servers: {get_input: glance_api_servers}
1314 cinder_backend_config: {get_input: CinderBackendConfig}
1315 cinder::db::mysql::password: {get_input: cinder_password}
1316 cinder::keystone::auth::public_url: {get_input: cinder_public_url }
1317 cinder::keystone::auth::internal_url: {get_input: cinder_internal_url }
1318 cinder::keystone::auth::admin_url: {get_input: cinder_admin_url }
1319 cinder::keystone::auth::public_url_v2: {get_input: cinder_public_url_v2 }
1320 cinder::keystone::auth::internal_url_v2: {get_input: cinder_internal_url_v2 }
1321 cinder::keystone::auth::admin_url_v2: {get_input: cinder_admin_url_v2 }
1322 cinder::keystone::auth::password: {get_input: cinder_password }
1323 cinder::keystone::auth::region: {get_input: keystone_region}
1326 glance::api::bind_host: {get_input: glance_api_network}
1327 glance::registry::bind_host: {get_input: glance_registry_network}
1328 glance::keystone::auth::region: {get_input: keystone_region}
1331 heat_stack_domain_admin_password: {get_input: heat_stack_domain_admin_password}
1332 heat::engine::heat_watch_server_url: {get_input: heat.watch_server_url}
1333 heat::engine::heat_metadata_server_url: {get_input: heat.metadata_server_url}
1334 heat::engine::heat_waitcondition_server_url: {get_input: heat.waitcondition_server_url}
1335 heat::engine::auth_encryption_key: {get_input: heat_auth_encryption_key}
1336 heat::rabbit_userid: {get_input: rabbit_username}
1337 heat::rabbit_password: {get_input: rabbit_password}
1338 heat::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
1339 heat::rabbit_port: {get_input: rabbit_client_port}
1340 heat::auth_uri: {get_input: keystone_auth_uri}
1341 heat::keystone_ec2_uri: {get_input: keystone_ec2_uri}
1342 heat::identity_uri: {get_input: keystone_identity_uri}
1343 heat::keystone_password: {get_input: heat_password}
1344 heat::api::bind_host: {get_input: heat_api_network}
1345 heat::api::workers: {get_input: heat_workers}
1346 heat::api_cloudwatch::bind_host: {get_input: heat_api_network}
1347 heat::api_cloudwatch::workers: {get_input: heat_workers}
1348 heat::api_cfn::bind_host: {get_input: heat_api_network}
1349 heat::api_cfn::workers: {get_input: heat_workers}
1350 heat::engine::num_engine_workers: {get_input: heat_workers}
1351 heat::database_connection: {get_input: heat_dsn}
1352 heat::debug: {get_input: debug}
1353 heat::db::mysql::password: {get_input: heat_password}
1354 heat_enable_db_purge: {get_input: heat_enable_db_purge}
1355 heat::keystone::domain::domain_password: {get_input: heat_stack_domain_admin_password}
1356 heat::keystone::auth::public_url: {get_input: heat_public_url }
1357 heat::keystone::auth::internal_url: {get_input: heat_internal_url }
1358 heat::keystone::auth::admin_url: {get_input: heat_admin_url }
1359 heat::keystone::auth::password: {get_input: heat_password }
1360 heat::keystone::auth::region: {get_input: keystone_region}
1363 keystone::admin_bind_host: {get_input: keystone_admin_api_network}
1364 keystone::public_bind_host: {get_input: keystone_public_api_network}
1365 keystone::wsgi::apache::bind_host: {get_input: keystone_public_api_network}
1366 keystone::wsgi::apache::admin_bind_host: {get_input: keystone_admin_api_network}
1368 mongodb::server::bind_ip: {get_input: mongo_db_network}
1369 mongodb::server::nojournal: {get_input: mongodb_no_journal}
1370 mongodb::server::ipv6: {get_input: mongodb_ipv6}
1372 admin_password: {get_input: admin_password}
1373 enable_galera: {get_input: enable_galera}
1374 enable_ceph_storage: {get_input: enable_ceph_storage}
1375 enable_swift_storage: {get_input: enable_swift_storage}
1376 mysql_innodb_buffer_pool_size: {get_input: mysql_innodb_buffer_pool_size}
1377 mysql_max_connections: {get_input: mysql_max_connections}
1378 mysql::server::root_password: {get_input: mysql_root_password}
1379 mysql_cluster_name: {get_input: mysql_cluster_name}
1380 mysql_bind_host: {get_input: mysql_network}
1381 mysql_virtual_ip: {get_input: mysql_virtual_ip}
1384 neutron::bind_host: {get_input: neutron_api_network}
1385 neutron::server::auth_uri: {get_input: keystone_auth_uri}
1386 neutron::server::identity_uri: {get_input: keystone_identity_uri}
1387 neutron::server::database_connection: {get_input: neutron_dsn}
1388 neutron::server::api_workers: {get_input: neutron_workers}
1389 neutron::agents::l3::external_network_bridge: {get_input: neutron_external_network_bridge}
1390 neutron::network_device_mtu: {get_input: neutron_tenant_mtu}
1391 neutron::agents::ml2::ovs::enable_tunneling: {get_input: neutron_enable_tunneling}
1392 neutron::agents::ml2::ovs::l2_population: {get_input: neutron_enable_l2pop}
1393 neutron::agents::ml2::ovs::local_ip: {get_input: neutron_local_ip}
1394 neutron::plugins::ml2::flat_networks: {get_input: neutron_flat_networks}
1395 neutron::agents::metadata::shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
1396 neutron::agents::metadata::metadata_ip: {get_input: neutron_api_network}
1397 neutron::agents::metadata::metadata_workers: {get_input: neutron_workers}
1398 neutron_agent_mode: {get_input: neutron_agent_mode}
1399 neutron_router_distributed: {get_input: neutron_router_distributed}
1400 neutron::core_plugin: {get_input: neutron_core_plugin}
1401 neutron::service_plugins: {get_input: neutron_service_plugins}
1402 neutron::enable_l3_agent: {get_input: neutron_enable_l3_agent}
1403 neutron::enable_metadata_agent: {get_input: neutron_enable_metadata_agent}
1404 neutron::enable_ovs_agent: {get_input: neutron_enable_ovs_agent}
1405 neutron::plugins::ml2::type_drivers: {get_input: neutron_type_drivers}
1406 neutron::plugins::ml2::mechanism_drivers: {get_input: neutron_mechanism_drivers}
1407 neutron::plugins::ml2::extension_drivers: {get_input: neutron_plugin_extensions}
1408 neutron::server::allow_automatic_l3agent_failover: {get_input: neutron_allow_l3agent_failover}
1409 neutron::server::l3_ha: {get_input: neutron_l3_ha}
1410 neutron::plugins::ml2::network_vlan_ranges: {get_input: neutron_network_vlan_ranges}
1411 neutron::plugins::ml2::tunnel_id_ranges: {get_input: neutron_tunnel_id_ranges}
1412 neutron::plugins::ml2::vni_ranges: {get_input: neutron_vni_ranges}
1413 neutron::agents::ml2::ovs::bridge_mappings: {get_input: neutron_bridge_mappings}
1414 neutron_public_interface: {get_input: neutron_public_interface}
1415 neutron_public_interface_raw_device: {get_input: neutron_public_interface_raw_device}
1416 neutron_public_interface_default_route: {get_input: neutron_public_interface_default_route}
1417 neutron_public_interface_tag: {get_input: neutron_public_interface_tag}
1418 neutron::plugins::ml2::tenant_network_types: {get_input: neutron_tenant_network_types}
1419 neutron::agents::ml2::ovs::tunnel_types: {get_input: neutron_tunnel_types}
1420 neutron::agents::ml2::ovs::extensions: {get_input: neutron_agent_extensions}
1421 neutron::server::auth_password: {get_input: neutron_password}
1422 neutron::agents::metadata::auth_password: {get_input: neutron_password}
1423 neutron_dsn: {get_input: neutron_dsn}
1424 neutron::agents::metadata::auth_url: {get_input: keystone_identity_uri}
1425 neutron::db::mysql::password: {get_input: neutron_password}
1426 neutron::keystone::auth::public_url: {get_input: neutron_public_url }
1427 neutron::keystone::auth::internal_url: {get_input: neutron_internal_url }
1428 neutron::keystone::auth::admin_url: {get_input: neutron_admin_url }
1429 neutron::keystone::auth::password: {get_input: neutron_password }
1430 neutron::keystone::auth::region: {get_input: keystone_region}
1431 neutron::server::notifications::nova_url: {get_input: nova_internal_url}
1432 neutron::server::notifications::auth_url: {get_input: neutron_auth_url}
1433 neutron::server::notifications::tenant_name: 'service'
1434 neutron::server::notifications::project_name: 'service'
1435 neutron::server::notifications::password: {get_input: nova_password}
1438 ceilometer_backend: {get_input: ceilometer_backend}
1439 ceilometer_mysql_conn_string: {get_input: ceilometer_dsn}
1440 ceilometer::metering_secret: {get_input: ceilometer_metering_secret}
1441 ceilometer::rabbit_userid: {get_input: rabbit_username}
1442 ceilometer::rabbit_password: {get_input: rabbit_password}
1443 ceilometer::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
1444 ceilometer::rabbit_port: {get_input: rabbit_client_port}
1445 ceilometer::debug: {get_input: debug}
1446 ceilometer::api::host: {get_input: ceilometer_api_network}
1447 ceilometer::api::keystone_password: {get_input: ceilometer_password}
1448 ceilometer::api::keystone_auth_uri: {get_input: keystone_auth_uri}
1449 ceilometer::api::keystone_identity_uri: {get_input: keystone_identity_uri}
1450 ceilometer::agent::auth::auth_password: {get_input: ceilometer_password}
1451 ceilometer::agent::auth::auth_url: {get_input: keystone_auth_uri}
1452 ceilometer::agent::central::coordination_url: {get_input: ceilometer_coordination_url}
1453 ceilometer::agent::notification::store_events: {get_input: ceilometer_store_events}
1454 ceilometer::db::mysql::password: {get_input: ceilometer_password}
1455 ceilometer::collector::meter_dispatcher: {get_input: ceilometer_meter_dispatcher}
1456 ceilometer::dispatcher::gnocchi::url: {get_input: gnocchi_internal_url }
1457 ceilometer::dispatcher::gnocchi::filter_project: 'service'
1458 ceilometer::dispatcher::gnocchi::archive_policy: 'low'
1459 ceilometer::dispatcher::gnocchi::resources_definition_file: 'gnocchi_resources.yaml'
1460 ceilometer::keystone::auth::public_url: {get_input: ceilometer_public_url }
1461 ceilometer::keystone::auth::internal_url: {get_input: ceilometer_internal_url }
1462 ceilometer::keystone::auth::admin_url: {get_input: ceilometer_admin_url }
1463 ceilometer::keystone::auth::password: {get_input: ceilometer_password }
1464 ceilometer::keystone::auth::region: {get_input: keystone_region}
1465 snmpd_readonly_user_name: {get_input: snmpd_readonly_user_name}
1466 snmpd_readonly_user_password: {get_input: snmpd_readonly_user_password}
1469 aodh::rabbit_userid: {get_input: rabbit_username}
1470 aodh::rabbit_password: {get_input: rabbit_password}
1471 aodh::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
1472 aodh::rabbit_port: {get_input: rabbit_client_port}
1473 aodh::debug: {get_input: debug}
1474 aodh::wsgi::apache::ssl: false
1475 aodh::wsgi::apache::bind_host: {get_input: aodh_api_network}
1476 aodh::api::service_name: 'httpd'
1477 aodh::api::host: {get_input: aodh_api_network}
1478 aodh::api::keystone_password: {get_input: aodh_password}
1479 aodh::api::keystone_auth_uri: {get_input: keystone_auth_uri}
1480 aodh::api::keystone_identity_uri: {get_input: keystone_identity_uri}
1481 aodh::auth::auth_password: {get_input: aodh_password}
1482 aodh::db::mysql::password: {get_input: aodh_password}
1483 # for a migration path from ceilometer-alarm to aodh, we use the same database & coordination
1484 aodh::evaluator::coordination_url: {get_input: ceilometer_coordination_url}
1485 aodh::keystone::auth::public_url: {get_input: aodh_public_url }
1486 aodh::keystone::auth::internal_url: {get_input: aodh_internal_url }
1487 aodh::keystone::auth::admin_url: {get_input: aodh_admin_url }
1488 aodh::keystone::auth::password: {get_input: aodh_password }
1489 aodh::keystone::auth::region: {get_input: keystone_region}
1492 gnocchi_backend: {get_input: gnocchi_backend}
1493 gnocchi_indexer_backend: {get_input: gnocchi_indexer_backend}
1494 gnocchi_mysql_conn_string: {get_input: gnocchi_dsn}
1495 gnocchi::debug: {get_input: debug}
1496 gnocchi::wsgi::apache::ssl: false
1497 gnocchi::wsgi::apache::bind_host: {get_input: gnocchi_api_network}
1498 gnocchi::api::service_name: 'httpd'
1499 gnocchi::api::host: {get_input: gnocchi_api_network}
1500 gnocchi::api::keystone_password: {get_input: gnocchi_password}
1501 gnocchi::api::keystone_auth_uri: {get_input: keystone_auth_uri}
1502 gnocchi::api::keystone_identity_uri: {get_input: keystone_identity_uri}
1503 gnocchi::db::mysql::password: {get_input: gnocchi_password}
1504 gnocchi::storage::swift::swift_authurl: {get_input: keystone_auth_uri}
1505 gnocchi::storage::swift::swift_key: {get_input: gnocchi_password}
1506 gnocchi::keystone::auth::public_url: {get_input: gnocchi_public_url }
1507 gnocchi::keystone::auth::internal_url: {get_input: gnocchi_internal_url }
1508 gnocchi::keystone::auth::admin_url: {get_input: gnocchi_admin_url }
1509 gnocchi::keystone::auth::password: {get_input: gnocchi_password }
1510 gnocchi::keystone::auth::region: {get_input: keystone_region}
1513 nova::rabbit_userid: {get_input: rabbit_username}
1514 nova::rabbit_password: {get_input: rabbit_password}
1515 nova::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
1516 nova::rabbit_port: {get_input: rabbit_client_port}
1517 nova::upgrade_level_compute: {get_input: upgrade_level_nova_compute}
1518 nova::debug: {get_input: debug}
1519 nova::use_ipv6: {get_input: nova_ipv6}
1520 nova::api::auth_uri: {get_input: keystone_auth_uri}
1521 nova::api::identity_uri: {get_input: keystone_identity_uri}
1522 nova::api::api_bind_address: {get_input: nova_api_network}
1523 nova::api::metadata_listen: {get_input: nova_metadata_network}
1524 nova::api::admin_password: {get_input: nova_password}
1525 nova::api::osapi_compute_workers: {get_input: nova_workers}
1526 nova::api::metadata_workers: {get_input: nova_workers}
1527 nova::compute::network_device_mtu: {get_input: neutron_tenant_mtu}
1528 nova::database_connection: {get_input: nova_dsn}
1529 nova::api_database_connection: {get_input: nova_api_dsn}
1530 nova::glance_api_servers: {get_input: glance_api_servers}
1531 nova::api::neutron_metadata_proxy_shared_secret: {get_input: neutron_metadata_proxy_shared_secret}
1532 nova::api::instance_name_template: {get_input: instance_name_template}
1533 nova::network::neutron::neutron_password: {get_input: neutron_password}
1534 nova::network::neutron::neutron_url: {get_input: neutron_internal_url}
1535 nova::network::neutron::neutron_auth_url: {get_input: neutron_auth_url}
1536 nova::vncproxy::host: {get_input: nova_api_network}
1537 nova::db::mysql::password: {get_input: nova_password}
1538 nova::db::mysql_api::password: {get_input: nova_password}
1539 nova_enable_db_purge: {get_input: nova_enable_db_purge}
1540 nova::keystone::auth::public_url: {get_input: nova_public_url}
1541 nova::keystone::auth::internal_url: {get_input: nova_internal_url}
1542 nova::keystone::auth::admin_url: {get_input: nova_admin_url}
1543 nova::keystone::auth::password: {get_input: nova_password }
1544 nova::keystone::auth::region: {get_input: keystone_region}
1547 apache::mod::remoteip::proxy_ips: {get_input: horizon_subnet}
1548 apache::ip: {get_input: horizon_network}
1549 horizon::allowed_hosts: {get_input: horizon_allowed_hosts}
1550 horizon::django_debug: {get_input: debug}
1551 horizon::secret_key: {get_input: horizon_secret}
1552 horizon::bind_address: {get_input: horizon_network}
1553 horizon::keystone_url: {get_input: keystone_auth_uri}
1556 sahara::host: {get_input: sahara_api_network}
1564 sahara::admin_password: {get_input: sahara_password}
1565 sahara::auth_uri: {get_input: keystone_auth_uri}
1566 sahara::admin_user: sahara
1567 sahara::identity_uri: {get_input: keystone_identity_uri}
1568 sahara::use_neutron: true
1569 sahara::database_connection: {get_input: sahara_dsn}
1570 sahara::debug: {get_input: debug}
1571 sahara::rpc_backend: rabbit
1572 sahara::rabbit_userid: {get_input: rabbit_username}
1573 sahara::rabbit_password: {get_input: rabbit_password}
1574 sahara::rabbit_use_ssl: {get_input: rabbit_client_use_ssl}
1575 sahara::rabbit_port: {get_input: rabbit_client_port}
1576 sahara::db::mysql::password: {get_input: sahara_password}
1577 sahara::keystone::auth::public_url: {get_input: sahara_public_url }
1578 sahara::keystone::auth::internal_url: {get_input: sahara_internal_url }
1579 sahara::keystone::auth::admin_url: {get_input: sahara_admin_url }
1580 sahara::keystone::auth::password: {get_input: sahara_password }
1581 sahara::keystone::auth::region: {get_input: keystone_region}
1584 rabbitmq::node_ip_address: {get_input: rabbitmq_network}
1585 rabbitmq::erlang_cookie: {get_input: rabbit_cookie}
1586 rabbitmq::file_limit: {get_input: rabbit_fd_limit}
1587 rabbitmq::default_user: {get_input: rabbit_username}
1588 rabbitmq::default_pass: {get_input: rabbit_password}
1589 rabbit_ipv6: {get_input: rabbit_ipv6}
1591 redis::bind: {get_input: redis_network}
1592 redis::requirepass: {get_input: redis_password}
1593 redis::masterauth: {get_input: redis_password}
1594 redis::sentinel_auth_pass: {get_input: redis_password}
1595 redis_vip: {get_input: redis_vip}
1597 tripleo::firewall::manage_firewall: {get_input: manage_firewall}
1598 tripleo::firewall::purge_firewall_rules: {get_input: purge_firewall_rules}
1600 memcached_ipv6: {get_input: memcached_ipv6}
1601 memcached::listen_ip: {get_input: memcached_network}
1602 neutron_public_interface_ip: {get_input: neutron_public_interface_ip}
1603 ntp::servers: {get_input: ntp_servers}
1604 timezone::timezone: {get_input: timezone}
1605 control_virtual_interface: {get_input: control_virtual_interface}
1606 public_virtual_interface: {get_input: public_virtual_interface}
1607 tripleo::loadbalancer::control_virtual_interface: {get_input: control_virtual_interface}
1608 tripleo::loadbalancer::public_virtual_interface: {get_input: public_virtual_interface}
1609 tripleo::loadbalancer::haproxy_log_address: {get_input: haproxy_log_address}
1610 tripleo::loadbalancer::service_certificate: {get_attr: [NodeTLSData, deployed_ssl_certificate_path]}
1611 tripleo::loadbalancer::haproxy_stats_user: {get_input: haproxy_stats_user}
1612 tripleo::loadbalancer::haproxy_stats_password: {get_input: haproxy_stats_password}
1613 tripleo::loadbalancer::redis_password: {get_input: redis_password}
1614 tripleo::packages::enable_install: {get_input: enable_package_install}
1615 tripleo::packages::enable_upgrade: {get_input: enable_package_upgrade}
1617 # Hook for site-specific additional pre-deployment config, e.g extra hieradata
1618 ControllerExtraConfigPre:
1619 depends_on: ControllerDeployment
1620 type: OS::TripleO::ControllerExtraConfigPre
1622 server: {get_resource: Controller}
1624 # Hook for site-specific additional pre-deployment config,
1625 # applying to all nodes, e.g node registration/unregistration
1627 depends_on: [ControllerExtraConfigPre, NodeTLSData]
1628 type: OS::TripleO::NodeExtraConfig
1630 server: {get_resource: Controller}
1633 type: OS::TripleO::Tasks::PackageUpdate
1636 type: OS::Heat::SoftwareDeployment
1638 name: UpdateDeployment
1639 config: {get_resource: UpdateConfig}
1640 server: {get_resource: Controller}
1643 get_param: UpdateIdentifier
1647 description: IP address of the server in the ctlplane network
1648 value: {get_attr: [Controller, networks, ctlplane, 0]}
1649 external_ip_address:
1650 description: IP address of the server in the external network
1651 value: {get_attr: [ExternalPort, ip_address]}
1652 internal_api_ip_address:
1653 description: IP address of the server in the internal_api network
1654 value: {get_attr: [InternalApiPort, ip_address]}
1656 description: IP address of the server in the storage network
1657 value: {get_attr: [StoragePort, ip_address]}
1658 storage_mgmt_ip_address:
1659 description: IP address of the server in the storage_mgmt network
1660 value: {get_attr: [StorageMgmtPort, ip_address]}
1662 description: IP address of the server in the tenant network
1663 value: {get_attr: [TenantPort, ip_address]}
1664 management_ip_address:
1665 description: IP address of the server in the management network
1666 value: {get_attr: [ManagementPort, ip_address]}
1668 description: Hostname of the server
1669 value: {get_attr: [Controller, name]}
1672 Node object in the format {ip: ..., name: ...} format that the corosync
1675 ip: {get_attr: [Controller, networks, ctlplane, 0]}
1676 name: {get_attr: [Controller, name]}
1679 Server's IP address and hostname in the /etc/hosts format
1683 PRIMARYIP PRIMARYHOST.DOMAIN PRIMARYHOST
1684 EXTERNALIP EXTERNALHOST.DOMAIN EXTERNALHOST
1685 INTERNAL_APIIP INTERNAL_APIHOST.DOMAIN INTERNAL_APIHOST
1686 STORAGEIP STORAGEHOST.DOMAIN STORAGEHOST
1687 STORAGE_MGMTIP STORAGE_MGMTHOST.DOMAIN STORAGE_MGMTHOST
1688 TENANTIP TENANTHOST.DOMAIN TENANTHOST
1689 MANAGEMENTIP MANAGEMENTHOST.DOMAIN MANAGEMENTHOST
1691 PRIMARYIP: {get_attr: [NetIpMap, net_ip_map, {get_param: [ServiceNetMap, ControllerHostnameResolveNetwork]}]}
1692 DOMAIN: {get_param: CloudDomain}
1693 PRIMARYHOST: {get_attr: [Controller, name]}
1694 EXTERNALIP: {get_attr: [ExternalPort, ip_address]}
1698 - - {get_attr: [Controller, name]}
1700 INTERNAL_APIIP: {get_attr: [InternalApiPort, ip_address]}
1704 - - {get_attr: [Controller, name]}
1706 STORAGEIP: {get_attr: [StoragePort, ip_address]}
1710 - - {get_attr: [Controller, name]}
1712 STORAGE_MGMTIP: {get_attr: [StorageMgmtPort, ip_address]}
1716 - - {get_attr: [Controller, name]}
1718 TENANTIP: {get_attr: [TenantPort, ip_address]}
1722 - - {get_attr: [Controller, name]}
1724 MANAGEMENTIP: {get_attr: [ManagementPort, ip_address]}
1728 - - {get_attr: [Controller, name]}
1730 nova_server_resource:
1731 description: Heat resource handle for the Nova compute server
1733 {get_resource: Controller}
1735 description: Swift device formatted for swift-ring-builder
1738 template: 'r1z1-IP:%PORT%/d1'
1740 IP: {get_attr: [NetIpMap, net_ip_uri_map, {get_param: [ServiceNetMap, SwiftMgmtNetwork]}]}
1741 swift_proxy_memcache:
1742 description: Swift proxy-memcache value
1745 template: "IP:11211"
1747 IP: {get_attr: [NetIpMap, net_ip_uri_map, {get_param: [ServiceNetMap, MemcachedNetwork]}]}
1749 description: identifier which changes if the controller configuration may need re-applying
1753 - - {get_attr: [ControllerDeployment, deploy_stdout]}
1754 - {get_attr: [NodeTLSCAData, deploy_stdout]}
1755 - {get_attr: [NodeTLSData, deploy_stdout]}
1756 - {get_attr: [ControllerExtraConfigPre, deploy_stdout]}
1757 - {get_param: UpdateIdentifier}
1758 tls_key_modulus_md5:
1759 description: MD5 checksum of the TLS Key Modulus
1760 value: {get_attr: [NodeTLSData, key_modulus_md5]}
1761 tls_cert_modulus_md5:
1762 description: MD5 checksum of the TLS Certificate Modulus
1763 value: {get_attr: [NodeTLSData, cert_modulus_md5]}