1 heat_template_version: pike
4 MySQL service deployment using puppet
7 #Parameters not used EndpointMap
10 description: Dictionary packing service data
14 description: Mapping of service_name -> network name. Typically set
15 via parameter_defaults in the resource registry. This
16 mapping overrides those in ServiceNetMapDefaults.
23 description: Role name on which the service is applied
27 description: Parameters specific to the role
31 description: Mapping of service endpoint -> protocol. Typically set
32 via parameter_defaults in the resource registry.
35 description: Configures MySQL max_connections config setting
38 MysqlIncreaseFileLimit:
39 description: Flag to increase MySQL open-files-limit to 16384
46 MysqlClustercheckPassword:
51 description: Whether to use Galera instead of regular MariaDB.
54 description: The password for the nova db account
63 internal_tls_enabled: {equals: [{get_param: EnableInternalTLS}, true]}
67 description: Service MySQL using composable services.
73 # The Galera package should work in cluster and
74 # non-cluster modes based on the config file.
75 # We set the package name here explicitly so
76 # that it matches what we pre-install
77 # in tripleo-puppet-elements.
78 mysql::server::package_name: 'mariadb-galera-server'
79 mysql::server::manage_config_file: true
80 tripleo.mysql.firewall_rules:
89 mysql_max_connections: {get_param: MysqlMaxConnections}
90 mysql::server::root_password:
92 expression: $.data.passwords.where($ != '').first()
95 - {get_param: MysqlRootPassword}
96 - {get_param: [DefaultPasswords, mysql_root_password]}
97 mysql_clustercheck_password: {get_param: MysqlClustercheckPassword}
98 enable_galera: {get_param: EnableGalera}
99 # NOTE: bind IP is found in Heat replacing the network name with the
100 # local node IP for the given network; replacement examples
101 # (eg. for internal_api):
103 # internal_api_uri -> [IP]
104 # internal_api_subnet - > IP/CIDR
105 mysql_bind_host: {get_param: [ServiceNetMap, MysqlNetwork]}
106 tripleo::profile::base::database::mysql::bind_address:
109 "%{hiera('fqdn_$NETWORK')}"
111 $NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]}
112 tripleo::profile::base::database::mysql::client_bind_address:
113 {get_param: [ServiceNetMap, MysqlNetwork]}
114 tripleo::profile::base::database::mysql::generate_dropin_file_limit:
115 {get_param: MysqlIncreaseFileLimit}
116 - generate_service_certificates: true
117 tripleo::profile::base::database::mysql::certificate_specs:
118 service_certificate: '/etc/pki/tls/certs/mysql.crt'
119 service_key: '/etc/pki/tls/private/mysql.key'
122 template: "%{hiera('cloud_name_NETWORK')}"
124 NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]}
127 template: "%{hiera('cloud_name_NETWORK')}"
129 NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]}
132 "%{hiera('fqdn_$NETWORK')}"
134 $NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]}
137 template: "mysql/%{hiera('cloud_name_NETWORK')}"
139 NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]}
141 include ::tripleo::profile::base::database::mysql
144 - internal_tls_enabled
147 network: {get_param: [ServiceNetMap, MysqlNetwork]}
150 network: {get_param: [ServiceNetMap, MysqlNetwork]}
154 - name: Check for galera root password
156 file: path=/root/.my.cnf state=file
159 service: name=mariadb state=stopped
160 - name: Start service
162 service: name=mariadb state=started
163 - name: Setup cell_v2 (create cell0 database)
168 - name: Setup cell_v2 (grant access to the nova DB user)
172 template: "name=nova password=PASSWORD host=\"%\" priv=\"nova.*:ALL/nova_cell0.*:ALL,GRANT\" state=present"
174 PASSWORD: {get_param: NovaPassword}