openstack/sunbeam-charms
Code Issues Proposed changes
Files
adc6c57496a0a04445e64d3aaac74a540e76b7a5
sunbeam-charms/charms/magnum-k8s
History
Lucian Petrut 58a4c980bb Enable audit middleware 
We're enabling the audit middleware for the following API services:

* cinder
* nova
* neutron
* glance
* heat
* barbican
* octavia
* gnocchi
  * config.verbose was deprecated a long time ago and Gnocchi doesn't
    support a separate "logging.conf" file
     * as such, Gnocchi can't be configured to use "info" level logging
     * the audit logs will only be emitted in debug mode
  * cf001e8428/gnocchi/service.py (L72-L79)
* newly defined audit map (the other services had already existing
  definitions, which were updated):
  * aodh
  * designate
  * magnum
  * masakari
    * updated wsgi log configuration

The following services do not support the audit middleware,
the support for api paste was dropped:
* placement
* watcher
* keystone (has its own pycadf audit implementation)
  * emits notifications using oslo.notifications
  * configurable driver, possible options include "messagingv2" and "log"
  * we can't just use the log driver since the user may request amqp
    notifications using:
      "juju config keystone enable-telemetry-notifications=True"
  * we'll listen for amqp notifications using a separate service

Reference:
* audit middleware configuration: https://docs.openstack.org/keystonemiddleware/latest/audit.html
* api map samples: https://opendev.org/openstack/pycadf/src/tag/3.1.1/etc/pycadf

Change-Id: I28a261b85067704221d6ab3d949c5d2a27a4a9d7
2025-06-10 13:52:25 +00:00
..
src
Enable audit middleware
2025-06-10 13:52:25 +00:00
tests/unit
Migrate to unified charmcraft.yaml
2024-10-08 09:38:10 +02:00
.sunbeam-build.yaml
Implement tracing
2024-07-31 11:57:32 +02:00
charmcraft.yaml
Build using rust-1.80
2025-05-19 20:32:08 +02:00
CONTRIBUTING.md
Initial commit
2023-08-24 11:15:01 +02:00
LICENSE
Initial commit
2023-08-24 11:15:01 +02:00
pyproject.toml
Add lock file for charms
2025-05-05 15:49:14 +05:30
README.md
Update to epoxy
2025-04-30 08:44:20 +02:00
rebuild
Allow rebuild charms on modifying a rebuild file
2023-12-06 18:58:50 +01:00
uv.lock
Update dependencies
2025-06-10 13:52:25 +00:00

README.md

magnum-k8s

Description

magnum-k8s is an operator to manage the Magnul API and conductor services on a Kubernetes based environment.

Usage

Deployment

magnum-k8s is deployed using below command:

juju deploy magnum-k8s magnum --trust

Now connect the magnum operator to existing database, messaging and keystone identity operators:

juju relate mysql:database magnum:database
juju relate rabbitmq:amqp magnum:amqp
juju relate keystone:identity-service magnum:identity-service
juju relate keystone:identity-ops magnum:identity-ops

Configuration

This section covers common and/or important configuration options. See file config.yaml for the full list of options, along with their descriptions and default values. See the Juju documentation for details on configuring applications.

Actions

This section covers Juju actions supported by the charm. Actions allow specific operations to be performed on a per-unit basis. To display action descriptions run juju actions magnum. If the charm is not deployed then see file actions.yaml.

Relations

magnum-k8s requires the following relations:

database: To connect to MySQL amqp: To connect to RabbitMQ identity-service: To register endpoints in Keystone ingress-internal: To expose service on underlying internal network ingress-public: To expose service on public network identity-ops: To create trustee user

OCI Images

The charm by default uses following images:

`ghcr.io/canonical/magnum-consolidated:2025.1`

Contributing

Please see the Juju SDK docs for guidelines on enhancements to this charm following best practice guidelines, and CONTRIBUTING.md for developer guidance.

Bugs

Please report bugs on Launchpad.