1 description: All-in-one baremetal OpenStack and all dependencies.
2 heat_template_version: 2013-05-23
6 description: The password for the keystone admin account, used for monitoring, querying neutron etc.
11 description: The keystone auth secret.
16 description: The architecture to use in Nova-BM - i386 or amd64.
18 CeilometerMeteringSecret:
20 description: Secret shared by the ceilometer services.
25 description: The password for the ceilometer service account.
30 description: Set to True to enable debugging on all services.
32 DefaultSignalTransport:
34 description: Transport to use for software-config signals.
37 - allowed_values: [ CFN_SIGNAL, HEAT_SIGNAL, NO_SIGNAL ]
41 Additional configuration to inject into the cluster. The JSON should have
42 the following structure:
45 [{"section": "SECTIONNAME",
47 [{"option": "OPTIONNAME",
58 [{"section": "default",
60 [{"option": "compute_manager",
61 "value": "ironic.nova.compute.manager.ClusterComputeManager"
68 "value": "nova.cells.rpc_driver.CellsRPCDriver"
78 description: Flavor to request when deploying.
81 description: The filepath of the file to use for logging messages from Glance.
86 description: The password for the glance service account, used by the glance services.
91 description: Glance port.
95 description: Protocol to use when connecting to glance, set to https for SSL.
97 GlanceNotifierStrategy:
98 description: Strategy to use for Glance notification queue
103 description: Name of an existing EC2 KeyPair to enable SSH access to the instances
105 KeystoneCACertificate:
107 description: Keystone self-signed certificate authority certificate.
109 KeystoneSigningCertificate:
111 description: Keystone certificate for verifying token validity.
115 description: Keystone key for signing tokens.
120 description: The password for the Heat service account, used by the Heat services.
123 HeatStackDomainAdminPassword:
124 description: Password for heat_domain_admin user.
129 default: REBUILD_PRESERVE_EPHEMERAL
130 description: What policy to use when reconstructing instances. REBUILD for rebuilds,
131 REBUILD_PRESERVE_EPHEMERAL to preserve /mnt.
133 MysqlInnodbBufferPoolSize:
135 Specifies the size of the buffer pool in megabytes. Setting to
136 zero should be interpreted as "no value" and will defer to the
142 description: The password for the neutron service account, used by neutron agents.
145 NeutronPublicInterfaceDefaultRoute:
147 description: A custom default route for the NeutronPublicInterface.
149 NeutronPublicInterfaceIP:
152 A custom IP address to put onto the NeutronPublicInterface bridge.
153 See also NeutronPublicInterfaceTagIP for adding a VLAN tagging IP.
154 NeutronPublicInterfaceIP is deprecated in the context of deploying
155 underclouds - its only needed for the seed bootstrap process.
157 NeutronPublicInterfaceRawDevice:
159 description: If set, the public interface is a vlan with this device as the raw device.
161 NeutronPublicInterfaceTag:
164 VLAN tag for creating a public VLAN. The tag will be used to
165 create an access port on the exterior bridge, and that port will be
166 given the IP address returned by neutron from the public network.
170 description: The password for the nova service account, used by nova-api.
179 description: Salt for the rabbit cookie, change this to force the randomly generated rabbit cookie to change.
182 description: The username for RabbitMQ
186 description: The password for RabbitMQ
189 SnmpdReadonlyUserName:
190 default: ro_snmp_user
191 description: The user name for SNMPd with readonly rights running on all Overcloud nodes
193 SnmpdReadonlyUserPassword:
195 description: The user password for SNMPd with readonly rights running on all Overcloud nodes
203 type: OS::Heat::RandomString
207 get_param: RabbitCookieSalt
209 type: OS::Heat::RandomString
213 type: OS::Heat::StructuredConfig
216 completion-signal: {get_input: deploy_signal_id}
218 get_param: AdminPassword
220 get_param: AdminToken
232 nodeid: {get_input: bootstack_nodeid}
235 get_param: NeutronPublicInterfaceIP
237 get_input: controller_host
239 bindnetaddr: {get_input: controller_host}
244 ip: {get_attr: [undercloud, networks, ctlplane, 0]}
246 stonith_enabled : false
248 quorum_policy : ignore
250 db: mysql://ceilometer:unset@localhost/ceilometer
251 debug: {get_param: Debug}
252 metering_secret: {get_param: CeilometerMeteringSecret}
253 snmpd_readonly_user_name:
254 get_param: SnmpdReadonlyUserName
255 snmpd_readonly_user_password:
256 get_param: SnmpdReadonlyUserPassword
258 get_param: CeilometerPassword
262 db: mysql://glance:unset@localhost/glance
263 debug: {get_param: Debug}
266 get_param: GlancePort
268 get_param: GlanceProtocol
270 get_param: GlancePassword
272 get_param: GlanceNotifierStrategy
274 get_param: GlanceLogFile
277 get_param: HeatPassword
278 admin_tenant_name: service
280 auth_encryption_key: unset___________
281 db: mysql://heat:unset@localhost/heat
282 debug: {get_param: Debug}
283 stack_domain_admin_password: {get_param: HeatStackDomainAdminPassword}
284 watch_server_url: {get_input: heat.watch_server_url}
285 metadata_server_url: {get_input: heat.metadata_server_url}
286 waitcondition_server_url: {get_input: heat.waitcondition_server_url}
288 db: mysql://keystone:unset@localhost/keystone
289 debug: {get_param: Debug}
291 ca_certificate: {get_param: KeystoneCACertificate}
292 signing_key: {get_param: KeystoneSigningKey}
293 signing_certificate: {get_param: KeystoneSigningCertificate}
295 innodb_buffer_pool_size: {get_param: MysqlInnodbBufferPoolSize}
296 root-password: {get_resource: MysqlRootPassword}
297 bind_address: 127.0.0.1
299 debug: {get_param: Debug}
301 ovs_db: mysql://neutron:unset@localhost/ovs_neutron?charset=utf8
304 get_param: NeutronPublicInterface
305 public_interface_raw_device:
306 get_param: NeutronPublicInterfaceRawDevice
307 public_interface_route:
308 get_param: NeutronPublicInterfaceDefaultRoute
309 public_interface_tag:
310 get_param: NeutronPublicInterfaceTag
311 physical_bridge: br-ctlplane
312 physical_network: ctlplane
313 network_vlan_ranges: ctlplane
314 bridge_mappings: ctlplane:br-ctlplane
315 tenant_network_type: vlan
316 enable_tunneling: 'False'
318 get_param: NeutronPassword
322 get_param: RabbitUserName
324 get_param: RabbitPassword
331 - {server: {get_param: NtpServer}, fudge: "stratum 0"}
332 undercloudPassthroughConfig:
333 type: OS::Heat::StructuredConfig
335 config: {get_input: passthrough_config}
337 type: OS::Nova::Server
340 get_param: undercloudImage
346 get_param: ImageUpdatePolicy
349 user_data_format: SOFTWARE_CONFIG
350 undercloudDeployment:
351 depends_on: [undercloudPassthroughDeployment]
352 type: OS::Heat::StructuredDeployment
354 config: {get_resource: undercloudConfig}
355 server: {get_resource: undercloud}
356 signal_transport: {get_param: DefaultSignalTransport}
368 heat.watch_server_url:
372 - get_attr: [undercloud, networks, ctlplane, 0]
374 heat.metadata_server_url:
378 - {get_attr: [undercloud, networks, ctlplane, 0]}
380 heat.waitcondition_server_url:
384 - {get_attr: [undercloud, networks, ctlplane, 0]}
385 - ':8000/v1/waitcondition'
386 undercloudPassthroughDeployment:
387 depends_on: [undercloudNovaDeployment]
388 type: OS::Heat::StructuredDeployment
390 config: {get_resource: undercloudPassthroughConfig}
391 server: {get_resource: undercloud}
392 signal_transport: NO_SIGNAL
394 passthrough_config: {get_param: ExtraConfig}