Rabi Mishra 87bc72a37c Use net=none for *_init_log(s) containers
It seems we're using the default docker0(docker)/cni0(podman) bridges
for these containers. It would be good to remove dependencies on these
default bridges.

Some other containers changed that have the same issue:
- ironic_inspector_init_dnsmasq_dhcp_hostsdir
- nova_statedir_owner
- swift_setup_srv
- swift_copy_rings
- horizon_fix_perms

Change-Id: Id3e60de7bb5a13e32544bed76e4970d53a9257d4
2019-01-21 13:43:07 +05:30

52 lines
1.7 KiB
YAML

heat_template_version: rocky
description: >
OpenStack containerized Glance API service
parameters:
DockerHeatEngineImage:
description: image
type: string
outputs:
cmd_extra_args:
description: Extra command line arguments for running the service in the container.
value: ''
config_settings:
description: Extra hieradata needed to log to files in the host.
value: null
docker_config:
description: Extra containers needed for logging to files in the host.
value:
# Kolla_bootstrap/db_sync runs before permissions set by kolla_config
step_2:
heat_init_log:
image: {get_param: DockerHeatEngineImage}
net: none
user: root
volumes:
- /var/log/containers/heat:/var/log/heat:z
command: ['/bin/bash', '-c', 'chown -R heat:heat /var/log/heat']
volumes:
description: The volumes needed to log to files in the host.
value:
- /var/log/containers/heat:/var/log/heat:z
host_prep_tasks:
description: Extra ansible tasks needed for logging to files in the host.
value:
- name: create persistent directories
file:
path: "{{ item.path }}"
state: directory
setype: "{{ item.setype }}"
with_items:
- { 'path': /var/log/containers/heat, 'setype': svirt_sandbox_file_t }
- { 'path': /var/log/heat, 'setype': svirt_sandbox_file_t }
- name: heat logs readme
copy:
dest: /var/log/heat/readme.txt
content: |
Log files from heat containers can be found under
/var/log/containers/heat and /var/log/containers/httpd/heat-api*.
ignore_errors: true