248 Commits

Author SHA1 Message Date
Mark Goddard
c3e91725e2 Add support for --skip-tags argument
This allows for skipping tasks which match the provided tags, using
the ansible-playbook argument of the same name.

This can be useful in combination with --tags, to skip reconfiguration
of the common tasks:

kolla-ansible reconfigure --tags nova --skip-tags common

Change-Id: I766552f7ae4099da3d174759f4a609ffe8b4d89f
2017-10-17 09:31:20 +01:00
Jenkins
8e2e437e6c Merge "Move vmware password parameters to passwords.yml" 2017-10-10 09:05:06 +00:00
Christian Berendt
9db257b13f Move vmware password parameters to passwords.yml
Change-Id: Ie26c6b392c5ac86c3ec5effa5241ce5cad10fe40
2017-10-10 07:11:20 +02:00
Jenkins
8808c8a6e0 Merge "Add support for vault passwords" 2017-10-08 11:24:57 +00:00
James McCarthy
9369ad127c Update container_proxy with configurable proxy settings
For a deployment behind a firewall/proxy server some additional
environment settings should be passed along, for containers
such as magnum

This commit adds three new properties;
 container_http_proxy
 container_https_proxy
 container_no_proxy

In particular, the user will want to set container_http_proxy
and container_https_proxy properties with the proxy server
details.

Closes-Bug: #1628335
Change-Id: I0950a0467b4b68c38b13875eaf9cd433e64363cf
2017-10-05 13:13:31 +01:00
Jenkins
109328be3e Merge "Specify 'become' to necessary tasks (general roles)" 2017-10-03 20:01:04 +00:00
Jenkins
9cdbae707b Merge "Simplify Openstack services configuration possibilities" 2017-09-26 15:49:22 +00:00
Jenkins
9840f5c39d Merge "Add dev mode for glance" 2017-09-26 15:43:02 +00:00
Jenkins
9874b1b36c Merge "Horizon multidomain flag" 2017-09-26 10:39:31 +00:00
Jenkins
70bb073bd3 Merge "Allow Cinder to use ZFSSA iSCSI volume service" 2017-09-26 07:16:58 +00:00
Pierre Hanselmann
bd186a2e47 Horizon multidomain flag
Added horizon_keystone_multidomain flag. It can be now overriden
in globals.yml. Default set to False.

Change-Id: I6f8f261cf4b9779e57c2443ac219cdddb1731f52
2017-09-25 15:28:45 +02:00
Duong Ha-Quang
26b2c2d9e9 Specify 'become' to necessary tasks (general roles)
Add config_owner_user and config_owner_group to group_vars/all,
which is user and group of Kolla configuration files in /etc/kolla.

Add become to post-deploy playbook.

Add become to only neccesary tasks in roles:
- certificate
- common
- destroy
- haproxy
- mariadb
- memcached
- rabbitmq

Change-Id: I2aba745a6e3928c52642f64551470fd08cbfd058
Partial-Implements: blueprint ansible-specific-task-become
2017-09-25 06:52:04 +00:00
Vladislav Belogrudov
73225d285c Allow Cinder to use ZFSSA iSCSI volume service
Added configuration to enable Oracle ZFS Storage Appliance:
https://docs.openstack.org/cinder/pike/configuration/block-storage/drivers/zfssa-iscsi-driver.html

Change-Id: Id5807f0d4567e16a68283cace7e126eddc4dea20
Implements: blueprint zfssa-cinder-support
2017-09-21 15:34:26 +00:00
Jenkins
85164c1bcb Merge "Update designate to allow use of external bind9 dns servers." 2017-09-21 13:26:56 +00:00
Jenkins
c61d4e7ef9 Merge "Support configuration of custom fluentd outputs" 2017-09-21 08:07:30 +00:00
Eduardo Gonzalez
684194ff9d Add support for vault passwords
This change adds vault arguments to kolla-ansible
to allow usage of vault encrypted  files.

Change-Id: I1dbae6e949543585d11c21e67e82f559d343b4ad
2017-09-19 17:45:55 +02:00
James McCarthy
d4f8b413a8 Update designate to allow use of external bind9 dns servers.
kolla designate DNSaaS makes use of containerised bind9 servers
as it's default designate_backend. These can be disabled by
setting designate_backend to "no". default: "bind9"

This commit adds two new properties:
1) designate_backend_external
 which can be enabled by setting it to 'bind9'. default: "no"
and
2) designate_backend_external_bind9_nameservers, which can
 accept a csv list of all the external server addresses.
 (default: "")

The following attributes should either be set:
'internal' (the default)
 designate_backend: "bind9"
 designate_backend_external: "no"
 (designate_backend_external_bind9_nameservers is ignored)
or
 'external'
 designate_backend: "no"
 designate_backend_external: "bind9"
 (designate_backend_external_bind9_nameservers must be populated)

Configuration override files to align with external bind9
dns servers must be supplied manually,
 /etc/kolla/config/designate/rndc.key
 /etc/kolla/config/designate/rndc.conf

Change-Id: I8dbe6fd4fe7820b9143604d89e8399b07e07c3fd
2017-09-18 13:51:39 +01:00
Mark Goddard
fb4651461b Support configuration of custom fluentd outputs
In some scenarios it may be useful to configure custom fluentd outputs
to forward logs to a logging service other than elasticsearch.

This change supports configuration of fluentd outputs by placing
output configuration files in /etc/kolla/config/fluentd/output/*.conf.

Change-Id: I3c0b271d88dbb307ba3a23546e29c72e8baeca55
Implements: blueprint fluentd-custom-outputs
2017-09-13 17:25:12 +01:00
Bertrand Lallau
a3dfdfc085 Simplify Openstack services configuration possibilities
Actually Openstack services configuration can be overriden using many
files:
- /etc/kolla/config/<< service name >>/<< config file >>
- /etc/kolla/config/<< service name >>/<<host>>/<< config file >>
- /etc/kolla/config/global.conf
- /etc/kolla/config/database.conf
- /etc/kolla/config/messaging.conf

Only per-service configuration is actually documented here:
https://github.com/openstack/kolla-ansible/blob/master/doc/advanced-configuration.rst#L164

Allowing to globally modify service configuration can be perform too,
but it can be done in 3 different manners, all not documented:
- /etc/kolla/config/global.conf
- /etc/kolla/config/database.conf
- /etc/kolla/config/messaging.conf

database.conf and messaging.conf seems redundant with global.conf.
In order to simplify codebase it seems logical to remove them.

Documentation has been added for overriding configuration globally and
release note has been added too.

Closes-Bug: #1682479
Change-Id: I5d922dfc0d938173bad34ac64e490b78db1b7e31
2017-09-13 17:47:36 +02:00
Christian Berendt
06befa3c3b Add missing document start "---" to yaml files
Change-Id: I366c2124a778c5b0b22a8fe369d603adad75ebbe
2017-09-12 09:44:27 +02:00
6155ea595a Update reno for stable/pike
Change-Id: I92fed4875a5a93c46a3e58c62e5df58180d0f0d1
2017-09-05 13:11:17 +00:00
Eduardo Gonzalez
4e35b0e9b1 Add release note for redis in mistral
Mistral requires redis as of pike release,
notify users about this new feature and make sure
updrades enables redis.

Change-Id: I41e82869d036673181b4dba05ad07089691d0357
2017-08-23 13:07:18 +02:00
Eduardo Gonzalez
ecc022177c Fix missing tacker-conductor service
Tacker has included a new conductor service
to manage mistral workflows for VIM monitoring.

Without conductor, Tacker cannot create VIMs.

This change reworks tacker to include tacker-conductor
service.

Depends-On: I52778e86e4f2c297ead8d4b09983e5e38ca88c70
Closes-Bug: #1710874
Change-Id: I6901e919887551bedc9dba8983ac904e8c48c9ce
2017-08-21 08:12:01 +00:00
Jenkins
9c43de8955 Merge "Add Swift backend support to Glance" 2017-08-17 14:14:08 +00:00
Paul Bourke
dbe7b591d4 Add dev mode for glance
Allows users to develop on Glance using Kolla.

Change-Id: I2c7c97ddf84ca19505cf01adaf982c6a3f70d7d0
Partially-Implements: blueprint mount-sources
2017-08-17 14:41:14 +01:00
guochao
d3e07342a5 Add Swift backend support to Glance
Support setting Swift as Glance storage backend.

Change-Id: Idddbf2ce741e0486d60e1de88c77a7f0332a5a2b
2017-08-17 05:43:05 +00:00
Sean Mooney
781d84658d introduce playbook to ovs with dpdk
- This change creates a new role to
  support deploying ovs with dpdk.
- This change introduces an enable_ovs_dpdk
  variable to enable ovs with dpdk as part of
  the deploy action.
- This change extends the ovs-dpdkctl.sh tool
  to correctly deploy ovs-dpdk on Ubuntu and CentOS
  hosts.
- This change extends the cleanup-host tool
  to correctly uninstall ovs-dpdkctl.sh tool and its
  systemd files if present on the host.
- This change automatically configures userspace
  kernel drivers.

partial-implementes: bp/ovs-dpdk
Change-Id: I55858d81df437e8258705b75426f61ab9b907c7d
2017-08-09 18:43:06 +00:00
Marcus G K Williams
57496c4147 Add OpenDaylight role
Adds role for OpenDaylight deploy.

Change-Id: I1e697ea4d3f33aab4b0f55863a377b39eda8f609
Co-Authored-By: Mauricio Lima <mauriciolimab@gmail.com>
Co-Authored-By: Jiri Prokes <jirix.x.prokes@intel.com>
Co-Authored-By: Eduardo Gonzalez <dabarren@gmail.com>
Partially-Implements: blueprint opendaylight-support
2017-08-03 07:39:38 -07:00
Jenkins
e9c4a5877d Merge "Use a separate user for ceph-rgw rather than keystone admin user" 2017-07-27 14:47:08 +00:00
Jeffrey Zhang
1cf116cd6c Use a separate user for ceph-rgw rather than keystone admin user
If not, change admin user password will break ceph rgw service.

Change-Id: Ia872f6f1aa2d9917d3f5851e0edcffed61e71355
Closes-Bug: #1705929
2017-07-27 16:41:41 +08:00
Jenkins
d44d5d0b48 Merge "Support multi local chrony servers" 2017-07-27 08:25:31 +00:00
Jenkins
815dfe40f6 Merge "Add qdrouterd role for messaging infrastructure component" 2017-07-27 08:23:31 +00:00
Jeffrey Zhang
72ee7dac7c Support multi local chrony servers
In the old implementation, if there is no external ntp server, only one
local chrony server is supported. If multi chrony-server is configured,
chrony client can not sync with them.

In the new implementation
* use VIP to connect chrony-server, which ensure multi local chrony
  servers are supported.
* chrony servers depend on VIP. So chrony-server group should be
  the same with haproxy group.
* prevent chrony client sync from itself.
* Change owner to chrony:kolla for chrony log folder
* fix keysfile path
* use chrony user for centos and ubuntu image
* fix permission issue for /var/lib/chrony folder

Closes-Bug: #1705200
Change-Id: I6e85fda9824b5ddc7a96895425c5932a3566c27e
2017-07-26 03:38:05 +00:00
chenxing
b39da1e4c2 Update the documentation link for doc migration
Change-Id: I8c340cfe33789badb4f8df93f0c13f56fdea5dbf
2017-07-21 09:49:19 +00:00
Jeffrey Zhang
ddad15c07e Remove ceilometer-api and ceilometer-collector services
* remove ceilometer-api and ceilometer-collector service
* use ceilometer-notification to publish message to proper backend
* remove useless ceilometer_database_type and ceilometer_event_type
  variables
* sync event_definitions.yaml, event_pipeline.yaml and pipeline.yaml
  file with upstream

Change-Id: Ib39053cb5f70bd11ee61d3f26d5b28accecd7190
2017-07-17 11:03:44 +08:00
Jenkins
1515164e15 Merge "Migrate cinder-api under apache" 2017-07-13 11:37:49 +00:00
Andrew Smith
eeb535aa2e Add qdrouterd role for messaging infrastructure component
Adding the role needed to run the qdrouterd as an infrastructure
component which provides a messaging backend for the
oslo.messaging AMQP 1.0 driver. The qdrouterd will provide direct
messaging capabilities for the RPC messaging pattern in support
of hybrid messaging deployments.

Implements: blueprint qdrouterd-role
Change-Id: I74c654b3c70f61f81c2c7efa87f076a62a4a2dd8
2017-07-10 11:04:43 -04:00
jimmygc
69d9343fd0 Add ceph rgw object store support into trove
Ceph rgw can be used as object store instead of Swift.
This patch enable trove to use ceph rgw as object store.

Change-Id: I50b878078b7c62c1034a102d064dfa90a1357ee8
2017-07-10 11:30:10 +08:00
Jenkins
7c789a662c Merge "Add VMware NSXV support to neutron" 2017-07-06 22:46:39 +00:00
Eduardo Gonzalez
d708e95658 Migrate cinder-api under apache
Cinder ubuntu binary was already migrated under apache.
This change migrates rest of the distros/install types to
be executed under an apache process.

Change-Id: I8544eec5bfebf771d758f13abf4dfbc802f5d24f
2017-07-06 09:42:28 +00:00
Jenkins
b9ab96ce40 Merge "Switch from oslosphinx to openstackdocstheme" 2017-07-06 08:31:25 +00:00
Jenkins
5dc7920d4a Merge "Move mDNS to network nodes" 2017-07-06 03:34:22 +00:00
Jeffrey Zhang
065b64feaf Fix add cleanup images cli options release note folder
Change-Id: Ie206f0f245648df855ceb6140e60de664dac74fc
2017-07-04 10:44:54 +08:00
ZhongShengping
a643acbf62 Switch from oslosphinx to openstackdocstheme
As part of the docs migration work[0] for Pike we need to switch to use the
openstackdocstheme.

[0]https://review.openstack.org/#/c/472275/

Change-Id: Id63951348211bdcb2b189455968bdfed40857815
2017-07-02 15:54:05 +08:00
Jenkins
99075dab64 Merge "Enable port_security by default" 2017-06-30 09:40:36 +00:00
Jenkins
ee11884e37 Merge "Add possibility to configure tenant network types and type drivers" 2017-06-29 13:11:04 +00:00
Jenkins
b560b64e74 Merge "Add flag to allow provider networks" 2017-06-27 16:40:09 +00:00
Vladislav Belogrudov
f6eefdf388 Add flag to allow provider networks
In case of provider networks we need to configure external bridge
on compute nodes, like it is done in DVR. The only way to tell
if provider networks are to be used is a new flag.

Change-Id: I1aef197ee2b84e28f2131f058e6995551f873fe1
Closes-Bug: #1694726
2017-06-27 08:33:43 +00:00
Jenkins
be8f64492c Merge "Barbican simple_crypto plugin broken - invalid key" 2017-06-26 08:58:03 +00:00
Jenkins
87c860dbf9 Merge "Add upgrade release note for ovs split" 2017-06-22 14:54:49 +00:00