Code Review / apex-tripleo-heat-templates.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
Make Heat service password configurable.
[apex-tripleo-heat-templates.git] / undercloud-vm.yaml
1 Description: All-in-one baremetal OpenStack and all dependencies.
2 HeatTemplateFormatVersion: '2012-12-12'
3 Parameters:
4   AdminPassword:
5     Default: unset
6     Description: The password for the keystone admin account, used for monitoring, querying neutron etc.
7     Type: String
8   AdminToken:
9     Default: unset
10     Description: The keystone auth secret.
11     Type: String
12   Flavor:
13     Default: baremetal
14     Description: Flavor to request when deploying.
15     Type: String
16   GlancePassword:
17     Default: unset
18     Description: The password for the glance service account, used by the glance services.
19     Type: String
20   KeyName:
21     Default: default
22     Description: Name of an existing EC2 KeyPair to enable SSH access to the instances
23     Type: String
24   HeatPassword:
25     Default: unset
26     Description: The password for the Heat service account, used by the Heat services.
27     Type: String
28   Image:
29     Default: undercloud
30     Type: String
31   NeutronPassword:
32     Default: unset
33     Description: The password for the neutron service account, used by neutron agents.
34     Type: String
35   NovaPassword:
36     Default: unset
37     Description: The password for the nova service account, used by nova-api.
38     Type: String
39   PowerUserName:
40     Default: stack
41     Description: What username to ssh to the virtual power host with.
42     Type: String
43 Resources:
44   AccessPolicy:
45     Properties:
46       AllowedResources:
47       - notcomputeConfig
48     Type: OS::Heat::AccessPolicy
49   Key:
50     Properties:
51       UserName:
52         Ref: User
53     Type: AWS::IAM::AccessKey
54   User:
55     Properties:
56       Policies:
57       - Ref: AccessPolicy
58     Type: AWS::IAM::User
59   notcomputeConfig:
60     Type: AWS::AutoScaling::LaunchConfiguration
61     Properties:
62       ImageId: '0'
63       InstanceType: foo
64     Metadata:
65       OpenStack::Heat::Stack: {}
66       Openstack::ImageBuilder::Elements: [ boot-stack, heat-cfntools, neutron-network-node ]
67       admin-password:
68         Ref: AdminPassword
69       admin-token: 
70         Ref: AdminToken
71       controller-address:
72         Fn::GetAtt:
73           - notcompute
74           - PrivateIp
75       cinder:
76         db: mysql://cinder:unset@localhost/cinder
77         volume_size_mb: '5000'
78       db-password: unset
79       glance:
80         db: mysql://glance:unset@localhost/glance
81         host: 127.0.0.1
82         service-password:
83           Ref: GlancePassword
84       heat:
85         admin_password:
86           Ref: HeatPassword
87         admin_tenant_name: service
88         admin_user: heat
89         auth_encryption_key: unset___________
90         db: mysql://heat:unset@localhost/heat
91         heat_watch_server_url:
92           Fn::Join:
93             - ''
94             - - http://
95               - {"Fn::GetAtt": [ notcompute, PrivateIp ]}
96               - ":8003"
97         metadata_server_url:
98           Fn::Join:
99             - ''
100             - - http://
101               - {"Fn::GetAtt": [ notcompute, PrivateIp ]}
102               - ":8000"
103         waitcondition_server_url:
104           Fn::Join:
105             - ''
106             - - http://
107               - {"Fn::GetAtt": [ notcompute, PrivateIp ]}
108               - ":8000/v1/waitcondition"
109       os-collect-config:
110         cfn:
111           access_key_id:
112             Ref: Key
113           path: notcomputeConfig.Metadata
114           secret_access_key:
115             Fn::GetAtt:
116             - Key
117             - SecretAccessKey
118           stack_name:
119             Ref: AWS::StackName
120       interfaces:
121         control: eth2
122       keystone:
123         db: mysql://keystone:unset@localhost/keystone
124         host: 127.0.0.1
125       nova:
126         compute_hostname: ubuntu
127         compute_driver: baremetal.driver.BareMetalDriver
128         db: mysql://nova:unset@localhost/nova
129         host: 127.0.0.1
130         metadata-proxy: false
131         tuning:
132           ram_allocation_ratio: 1.0
133           reserved_host_memory_mb: 0
134         baremetal:
135           arch: i386
136           db: mysql://nova:unset@localhost/nova_bm
137           power_manager: nova.virt.baremetal.virtual_power_driver.VirtualPowerManager
138           pxe_deploy_timeout: 2400
139           virtual_power:
140             user:
141               Ref: PowerUserName
142             key: /opt/stack/boot-stack/virtual-power-key
143             ssh_host: 192.168.122.1
144             type: virsh
145         service-password:
146           Ref: NovaPassword
147       neutron:
148         host: 127.0.0.1
149         ovs_db: mysql://neutron:unset@localhost/ovs_neutron?charset=utf8
150         ovs:
151           dnsmasq_range: [192.0.2.25, 192.0.2.44]
152           public_interface: eth0
153           physical_bridge: br-ctlplane
154           physical_network: ctlplane
155           network_vlan_ranges: ctlplane
156           bridge_mappings: ctlplane:br-ctlplane
157           tenant_network_type: vlan
158           enable_tunneling: 'False'
159         service-password:
160           Ref: NeutronPassword
161       rabbit:
162         host: 127.0.0.1
163         password: guest
164   notcompute:
165     Type: OS::Nova::Server
166     Properties:
167       image:
168         Ref: Image
169       flavor:
170         Ref: Flavor
171       key_name:
172         Ref: KeyName
173     Metadata:
174       os-collect-config:
175         cfn:
176           access_key_id:
177             Ref: Key
178           path: notcomputeConfig.Metadata
179           secret_access_key:
180             Fn::GetAtt:
181             - Key
182             - SecretAccessKey
183           stack_name:
184             Ref: AWS::StackName