4bc410c6ca
Use case: exposing single external https frontend and load balancing services using FQDNs. Support different ports for internal and external endpoints. Introduced kolla_url filter to normalize urls like: - https://magnum.external:443/v1 - http://magnum.external:80/v1 Change-Id: I9fb03fe1cebce5c7198d523e015280c69f139cd0 Co-Authored-By: Jakub Darmach <jakub@stackhpc.com>
188 lines
7.7 KiB
YAML
188 lines
7.7 KiB
YAML
---
|
|
magnum_services:
|
|
magnum-api:
|
|
container_name: magnum_api
|
|
group: magnum-api
|
|
enabled: true
|
|
image: "{{ magnum_api_image_full }}"
|
|
environment:
|
|
DUMMY_ENVIRONMENT: kolla_useless_env
|
|
volumes: "{{ magnum_api_default_volumes + magnum_api_extra_volumes }}"
|
|
dimensions: "{{ magnum_api_dimensions }}"
|
|
healthcheck: "{{ magnum_api_healthcheck }}"
|
|
haproxy:
|
|
magnum_api:
|
|
enabled: "{{ enable_magnum }}"
|
|
mode: "http"
|
|
external: false
|
|
port: "{{ magnum_api_port }}"
|
|
listen_port: "{{ magnum_api_listen_port }}"
|
|
magnum_api_external:
|
|
enabled: "{{ enable_magnum }}"
|
|
mode: "http"
|
|
external: true
|
|
external_fqdn: "{{ magnum_external_fqdn }}"
|
|
port: "{{ magnum_api_public_port }}"
|
|
listen_port: "{{ magnum_api_listen_port }}"
|
|
magnum-conductor:
|
|
container_name: magnum_conductor
|
|
group: magnum-conductor
|
|
enabled: true
|
|
image: "{{ magnum_conductor_image_full }}"
|
|
environment: "{{ magnum_conductor_container_proxy }}"
|
|
volumes: "{{ magnum_conductor_default_volumes + magnum_conductor_extra_volumes }}"
|
|
dimensions: "{{ magnum_conductor_dimensions }}"
|
|
healthcheck: "{{ magnum_conductor_healthcheck }}"
|
|
|
|
####################
|
|
# Config Validate
|
|
####################
|
|
magnum_config_validation:
|
|
- generator: "/magnum/etc/magnum/magnum-config-generator.conf"
|
|
config: "/etc/magnum/magnum.conf"
|
|
|
|
####################
|
|
# Database
|
|
####################
|
|
magnum_database_name: "magnum"
|
|
magnum_database_user: "{% if use_preconfigured_databases | bool and use_common_mariadb_user | bool %}{{ database_user }}{% else %}magnum{% endif %}"
|
|
magnum_database_address: "{{ database_address | put_address_in_context('url') }}:{{ database_port }}"
|
|
|
|
####################
|
|
# Database sharding
|
|
####################
|
|
magnum_database_shard_root_user: "{% if enable_proxysql | bool %}root_shard_{{ magnum_database_shard_id }}{% else %}{{ database_user }}{% endif %}"
|
|
magnum_database_shard_id: "{{ mariadb_default_database_shard_id | int }}"
|
|
magnum_database_shard:
|
|
users:
|
|
- user: "{{ magnum_database_user }}"
|
|
password: "{{ magnum_database_password }}"
|
|
rules:
|
|
- schema: "{{ magnum_database_name }}"
|
|
shard_id: "{{ magnum_database_shard_id }}"
|
|
|
|
|
|
####################
|
|
# Magnum
|
|
####################
|
|
enable_cluster_user_trust: False
|
|
# The default cinder volume type to be used for container storage volume in clusters
|
|
# that specify the docker-volume-size option. For example gp1, io1 etc
|
|
default_docker_volume_type: ""
|
|
|
|
|
|
####################
|
|
# Docker
|
|
####################
|
|
magnum_tag: "{{ openstack_tag }}"
|
|
|
|
magnum_api_image: "{{ docker_registry ~ '/' if docker_registry else '' }}{{ docker_namespace }}/magnum-api"
|
|
magnum_api_tag: "{{ magnum_tag }}"
|
|
magnum_api_image_full: "{{ magnum_api_image }}:{{ magnum_api_tag }}"
|
|
|
|
magnum_conductor_image: "{{ docker_registry ~ '/' if docker_registry else '' }}{{ docker_namespace }}/magnum-conductor"
|
|
magnum_conductor_tag: "{{ magnum_tag }}"
|
|
magnum_conductor_image_full: "{{ magnum_conductor_image }}:{{ magnum_conductor_tag }}"
|
|
|
|
magnum_api_dimensions: "{{ default_container_dimensions }}"
|
|
magnum_conductor_dimensions: "{{ default_container_dimensions }}"
|
|
|
|
magnum_api_enable_healthchecks: "{{ enable_container_healthchecks }}"
|
|
magnum_api_healthcheck_interval: "{{ default_container_healthcheck_interval }}"
|
|
magnum_api_healthcheck_retries: "{{ default_container_healthcheck_retries }}"
|
|
magnum_api_healthcheck_start_period: "{{ default_container_healthcheck_start_period }}"
|
|
magnum_api_healthcheck_test: ["CMD-SHELL", "healthcheck_curl http://{{ api_interface_address | put_address_in_context('url') }}:{{ magnum_api_port }}"]
|
|
magnum_api_healthcheck_timeout: "{{ default_container_healthcheck_timeout }}"
|
|
magnum_api_healthcheck:
|
|
interval: "{{ magnum_api_healthcheck_interval }}"
|
|
retries: "{{ magnum_api_healthcheck_retries }}"
|
|
start_period: "{{ magnum_api_healthcheck_start_period }}"
|
|
test: "{% if magnum_api_enable_healthchecks | bool %}{{ magnum_api_healthcheck_test }}{% else %}NONE{% endif %}"
|
|
timeout: "{{ magnum_api_healthcheck_timeout }}"
|
|
|
|
magnum_conductor_enable_healthchecks: "{{ enable_container_healthchecks }}"
|
|
magnum_conductor_healthcheck_interval: "{{ default_container_healthcheck_interval }}"
|
|
magnum_conductor_healthcheck_retries: "{{ default_container_healthcheck_retries }}"
|
|
magnum_conductor_healthcheck_start_period: "{{ default_container_healthcheck_start_period }}"
|
|
magnum_conductor_healthcheck_test: ["CMD-SHELL", "healthcheck_port magnum-conductor {{ om_rpc_port }}"]
|
|
magnum_conductor_healthcheck_timeout: "{{ default_container_healthcheck_timeout }}"
|
|
magnum_conductor_healthcheck:
|
|
interval: "{{ magnum_conductor_healthcheck_interval }}"
|
|
retries: "{{ magnum_conductor_healthcheck_retries }}"
|
|
start_period: "{{ magnum_conductor_healthcheck_start_period }}"
|
|
test: "{% if magnum_conductor_enable_healthchecks | bool %}{{ magnum_conductor_healthcheck_test }}{% else %}NONE{% endif %}"
|
|
timeout: "{{ magnum_conductor_healthcheck_timeout }}"
|
|
|
|
magnum_api_default_volumes:
|
|
- "{{ node_config_directory }}/magnum-api/:{{ container_config_directory }}/:ro"
|
|
- "/etc/localtime:/etc/localtime:ro"
|
|
- "{{ '/etc/timezone:/etc/timezone:ro' if ansible_facts.os_family == 'Debian' else '' }}"
|
|
- "{{ kolla_dev_repos_directory ~ '/magnum/magnum:/var/lib/kolla/venv/lib/python' ~ distro_python_version ~ '/site-packages/magnum' if magnum_dev_mode | bool else '' }}"
|
|
- "kolla_logs:/var/log/kolla/"
|
|
magnum_conductor_default_volumes:
|
|
- "{{ node_config_directory }}/magnum-conductor/:{{ container_config_directory }}/:ro"
|
|
- "/etc/localtime:/etc/localtime:ro"
|
|
- "{{ '/etc/timezone:/etc/timezone:ro' if ansible_facts.os_family == 'Debian' else '' }}"
|
|
- "magnum:/var/lib/magnum/"
|
|
- "{{ kolla_dev_repos_directory ~ '/magnum/magnum:/var/lib/kolla/venv/lib/python' ~ distro_python_version ~ '/site-packages/magnum' if magnum_dev_mode | bool else '' }}"
|
|
- "kolla_logs:/var/log/kolla/"
|
|
|
|
magnum_extra_volumes: "{{ default_extra_volumes }}"
|
|
magnum_api_extra_volumes: "{{ magnum_extra_volumes }}"
|
|
magnum_conductor_extra_volumes: "{{ magnum_extra_volumes }}"
|
|
|
|
magnum_conductor_container_proxy: "{{ container_proxy }}"
|
|
|
|
####################
|
|
# OpenStack
|
|
####################
|
|
magnum_internal_endpoint: "{{ magnum_internal_fqdn | kolla_url(internal_protocol, magnum_api_port, '/v1') }}"
|
|
magnum_public_endpoint: "{{ magnum_external_fqdn | kolla_url(public_protocol, magnum_api_public_port, '/v1') }}"
|
|
|
|
magnum_logging_debug: "{{ openstack_logging_debug }}"
|
|
|
|
magnum_keystone_user: "magnum"
|
|
magnum_trustee_domain_admin: "magnum_trustee_domain_admin"
|
|
magnum_trustee_domain: "magnum"
|
|
|
|
openstack_magnum_auth: "{{ openstack_auth }}"
|
|
|
|
magnum_api_workers: "{{ openstack_service_workers }}"
|
|
magnum_conductor_workers: "{{ openstack_service_workers }}"
|
|
|
|
####################
|
|
# Kolla
|
|
####################
|
|
magnum_git_repository: "{{ kolla_dev_repos_git }}/{{ project_name }}"
|
|
magnum_dev_repos_pull: "{{ kolla_dev_repos_pull }}"
|
|
magnum_dev_mode: "{{ kolla_dev_mode }}"
|
|
magnum_source_version: "{{ kolla_source_version }}"
|
|
|
|
|
|
####################
|
|
# Notifications
|
|
####################
|
|
magnum_notification_topics:
|
|
- name: notifications
|
|
enabled: "{{ enable_ceilometer | bool }}"
|
|
|
|
magnum_enabled_notification_topics: "{{ magnum_notification_topics | selectattr('enabled', 'equalto', true) | list }}"
|
|
|
|
|
|
####################
|
|
# Keystone
|
|
####################
|
|
magnum_ks_services:
|
|
- name: "magnum"
|
|
type: "container-infra"
|
|
description: "Container Infrastructure Management Service"
|
|
endpoints:
|
|
- {'interface': 'internal', 'url': '{{ magnum_internal_endpoint }}'}
|
|
- {'interface': 'public', 'url': '{{ magnum_public_endpoint }}'}
|
|
|
|
magnum_ks_users:
|
|
- project: "service"
|
|
user: "{{ magnum_keystone_user }}"
|
|
password: "{{ magnum_keystone_password }}"
|
|
role: "admin"
|