This patch adds support for [keystone_authtoken] interface parameter,
so that operators can define which endpoint should be used by authtoken
middleware.
Change-Id: I5325bdfbcec13b53b83ac669fb2b91885c370e60
The default of 100 is barely useable. Let's add a new parameter
max_stacks_per_tenant to allow increasing this.
Change-Id: I2bd9ce729b5e2b5ff6577951989b93390cb3a6bf
... and migrate it to openstacklib so that all logics about database
configuration are implemented in one common place.
Depends-on: https://review.opendev.org/#/c/728595/
Change-Id: I1e0061aea6782bd61e745bb39683589794231a5f
... so that correct packages are required according without re-defining
them in resource implementations.
Change-Id: Ia8e6256af44b29b9f3e5aa2ff3c7eeb6e7835a15
... because its actual parameter in heat was already deprecated[1].
[1] 9723b0dab707bcedc846415b932b2ade5b7c1317
Change-Id: I782d6b3833f450178ccd34736de4c9f861937399
In CentOS, we expect to have python3 client package in 8.x while we
expect to have python2 in 7.x .
Fix unit tests to expect the correct version according to os major
version.
Change-Id: I7cbb56f310187234e753792e684ebcf7792a3b89
This patch introduces several parameters in heat::cache class, so that
we can configure caching parameters for specific module.
Change-Id: I752c31825ec3f3f23df01a4d24a633b2453bff19
This adds a new parameter to configure client_retry_limit config
to a value higher than the default.
Change-Id: Ibd3999a394c8827efa7a6034e69e55858d2e44ed
oslo.messaging RabbitMQ driver have now a new option that allow user to
run the RabbitMQ heartbeat over a native python thread.
These change allow user to use this new option.
Change-Id: Ifa7b63cf0e0f276c4bdfc1b840506303355647b1
Closes-Bug: #1840868
So that we can increase it from the default 114688
Useful in case for example the OS-Federation mapping is too large.
If this limit is breached heat will return a 413 Entity Too Large
and not log anything to heat.log.
Change-Id: I90f15091088db67e6d33ef6272e59de69c4fe601
Closes-Bug: #1835161
Service_token_roles_required missing in the server config file which
allows backwards compatibility to ensure that the service tokens are
compared against a list of possible roles for validity.
Change-Id: Ia22d5b59adea42c4f3d0792bf83b92fa0e11b0c5
Closes-Bug: 1778198
Remove code that is redundantly tested.
This should not be tested here but in puppet-oslo
where this logic resides.
If we keep this and we do changes in puppet-oslo we
will break these unit tests, this is something we need
to sort out for all modules.
Change-Id: I96eeeeec72ac565f2917e94359c449bab85577db
check_revocations_for_cached and hash_algorithms are deprecated for
removel because of PKI token format is no longer supported.
Update warning message and add a release note.
Change-Id: I6ed03f77f4a13bab4593b7669b331fc35a68854c
Closes-Bug: #1804562
Closes-Bug: #1804720
Adds the manage_backend_package parameter that is sent to the
oslo::cache class that determines if we should install the backend
python library for caching.
The default value is not changed and defaults to true same as the
oslo::cache class does.
Change-Id: I44a475711f18b3175ab6e54fa1a83bcd6718a139
Closes-Bug: #1800774
When support for heat-api-cloudwatch was removed in
I155c92edd5d6959ac23d99804fd95dfb99c7042e the parameter,
heat_watch_server_url, was forgotten. This change marks the
forgotten parameter as deprecated and removes it from the
spec tests and heat config.
Change-Id: Icb9fa01cb37dd15b66fc6f1de183149ff884363d
Depends-On: https://review.openstack.org/581629
Remove the deprecated rabbit params which has been deprecated for
two years. The default_transport_url has been present for a while
now and should be used.
Change-Id: I9c95be8843e51ac69c95d141507d767aa017afbf
Now that the v2.0 API has been removed, we don't have a reason to
include deployment instructions for two separate applications on
different ports.
Change-Id: Ia81c354ea593954e79a0779f222208c027fcdede
By default, the ::heat class configures clients_keystone/auth_uri to the
value of ::heat::keystone::authtoken::auth_url, which is generally the
admin endpoint on port 35357.
However, since this URI can be used by non-admin clients running inside
instances, such as os-collect-config, a better default value would be to
use either the public or internal Keystone endpoint, depending on the
deployment. This commit changes the default to the public Keystone
endpoint defined in ::heat::keystone::authtoken::www_authenticate_uri.
It is still possible to provide a custom value using the
heat_clients_keystone_uri parameter.
Change-Id: Idb0f408776ef27f16a522e4443531fd97276669b
Closes-Bug: #1763700
Previously the default value for the heat-engine workers setting was set
to $::os_service_default. We usually use our specific facts for the
worker settings so this change switches it to use the
$::os_worker_heat_engine fact.
Change-Id: I6a8d745b76afca1b1958816fa10a3f1dd30face6
Related-Bug: #1763671