Puppet Class: identity
- Defined in:
- manifests/identity.pp
Overview
Copyright (C) 2014 eNovance SAS <licensing@enovance.com>
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Class: cloud::identity
Install Identity Server (Keystone)
Parameters:
- identity_roles_addons
-
(optional) Extra keystone roles to create Defaults to ['SwiftOperator', 'ResellerAdmin']
- keystone_db_host
-
(optional) Hostname or IP address to connect to keystone database Defaults to '127.0.0.1'
- keystone_db_user
-
(optional) Username to connect to keystone database Defaults to 'keystone'
- keystone_db_password
-
(optional) Password to connect to keystone database Defaults to 'keystonepassword'
- keystone_db_idle_timeout
-
(optional) Timeout before idle SQL connections are reaped. Defaults to 5000
- memcache_servers
-
(optionnal) Memcached servers used by Keystone. Should be an array. Defaults to ['127.0.0.1:11211']
- ks_admin_email
-
(optional) Email address of admin user in Keystone Defaults to 'no-reply@keystone.openstack'
- ks_admin_password
-
(optional) Password of admin user in Keystone Defaults to 'adminpassword'
- ks_admin_tenant
-
(optional) Admin tenant name in Keystone Defaults to 'admin'
- ks_admin_token
-
(required) Admin token used by Keystone.
- ks_glance_internal_host
-
(optional) Internal Hostname or IP to connect to Glance API Defaults to '127.0.0.1'
- ks_glance_admin_host
-
(optional) Admin Hostname or IP to connect to Glance API Defaults to '127.0.0.1'
- ks_glance_public_host
-
(optional) Public Hostname or IP to connect to Glance API Defaults to '127.0.0.1'
- ks_ceilometer_internal_host
-
(optional) Internal Hostname or IP to connect to Ceilometer API Defaults to '127.0.0.1'
- ks_ceilometer_admin_host
-
(optional) Admin Hostname or IP to connect to Ceilometer API Defaults to '127.0.0.1'
- ks_ceilometer_public_host
-
(optional) Public Hostname or IP to connect to Ceilometer API Defaults to '127.0.0.1'
- ks_keystone_internal_host
-
(optional) Internal Hostname or IP to connect to Keystone API Defaults to '127.0.0.1'
- ks_keystone_admin_host
-
(optional) Admin Hostname or IP to connect to Keystone API Defaults to '127.0.0.1'
- ks_keystone_public_host
-
(optional) Public Hostname or IP to connect to Keystone API Defaults to '127.0.0.1'
- ks_nova_internal_host
-
(optional) Internal Hostname or IP to connect to Nova API Defaults to '127.0.0.1'
- ks_nova_admin_host
-
(optional) Admin Hostname or IP to connect to Nova API Defaults to '127.0.0.1'
- ks_nova_public_host
-
(optional) Public Hostname or IP to connect to Nova API Defaults to '127.0.0.1'
- ks_cinder_internal_host
-
(optional) Internal Hostname or IP to connect to Cinder API Defaults to '127.0.0.1'
- ks_cinder_admin_host
-
(optional) Admin Hostname or IP to connect to Cinder API Defaults to '127.0.0.1'
- ks_cinder_public_host
-
(optional) Public Hostname or IP to connect to Cinder API Defaults to '127.0.0.1'
- ks_trove_internal_host
-
(optional) Internal Hostname or IP to connect to Trove API Defaults to '127.0.0.1'
- ks_trove_admin_host
-
(optional) Admin Hostname or IP to connect to Trove API Defaults to '127.0.0.1'
- ks_trove_public_host
-
(optional) Public Hostname or IP to connect to Trove API Defaults to '127.0.0.1'
- ks_neutron_internal_host
-
(optional) Internal Hostname or IP to connect to Neutron API Defaults to '127.0.0.1'
- ks_neutron_admin_host
-
(optional) Admin Hostname or IP to connect to Neutron API Defaults to '127.0.0.1'
- ks_neutron_public_host
-
(optional) Public Hostname or IP to connect to Neutron API Defaults to '127.0.0.1'
- ks_heat_internal_host
-
(optional) Internal Hostname or IP to connect to Heat API Defaults to '127.0.0.1'
- ks_heat_admin_host
-
(optional) Admin Hostname or IP to connect to Heat API Defaults to '127.0.0.1'
- ks_heat_public_host
-
(optional) Public Hostname or IP to connect to Heat API Defaults to '127.0.0.1'
- ks_swift_internal_host
-
(optional) Internal Hostname or IP to connect to Swift API Defaults to '127.0.0.1'
- ks_swift_admin_host
-
(optional) Admin Hostname or IP to connect to Swift API Defaults to '127.0.0.1'
- ks_swift_public_host
-
(optional) Public Hostname or IP to connect to Swift API Defaults to '127.0.0.1'
- ks_trove_password
-
(optional) Password used by Trove to connect to Keystone API Defaults to 'trovepassword'
- ks_ceilometer_password
-
(optional) Password used by Ceilometer to connect to Keystone API Defaults to 'ceilometerpassword'
- ks_swift_password
-
(optional) Password used by Swift to connect to Keystone API Defaults to 'swiftpassword'
- ks_nova_password
-
(optional) Password used by Nova to connect to Keystone API Defaults to 'novapassword'
- ks_neutron_password
-
(optional) Password used by Neutron to connect to Keystone API Defaults to 'neutronpassword'
- ks_heat_password
-
(optional) Password used by Heat to connect to Keystone API Defaults to 'heatpassword'
- ks_glance_password
-
(optional) Password used by Glance to connect to Keystone API Defaults to 'glancepassword'
- ks_cinder_password
-
(optional) Password used by Cinder to connect to Keystone API Defaults to 'cinderpassword'
- ks_swift_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_swift_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_swift_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_ceilometer_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_ceilometer_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_ceilometer_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_heat_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_heat_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_heat_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_keystone_public_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_keystone_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_keystone_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_nova_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_nova_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_nova_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_neutron_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_neutron_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_neutron_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_trove_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_trove_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_trove_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_glance_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_glance_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_glance_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_cinder_public_proto
-
(optional) Protocol used to connect to API. Could be 'http' or 'https'. Defaults to 'http'
- ks_cinder_admin_proto
-
(optional) Protocol for admin endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_cinder_internal_proto
-
(optional) Protocol for public endpoint. Could be 'http' or 'https'. Defaults to 'http'
- ks_ceilometer_public_port
-
(optional) TCP port to connect to Ceilometer API from public network Defaults to '8777'
- ks_keystone_internal_port
-
(optional) TCP port to connect to Keystone API from internal network Defaults to '5000'
- ks_keystone_public_port
-
(optional) TCP port to connect to Keystone API from public network Defaults to '5000'
- ks_keystone_admin_port
-
(optional) TCP port to connect to Keystone API from admin network Defaults to '35357'
- ks_swift_public_port
-
(optional) TCP port to connect to Swift API from public network Defaults to '8080'
- ks_trove_public_port
-
(optional) TCP port to connect to Trove API from public network Defaults to '8779'
- ks_nova_public_port
-
(optional) TCP port to connect to Nova API from public network Defaults to '8774'
- ks_ec2_public_port
-
(optional) TCP port to connect to EC2 API from public network Defaults to '8773'
- ks_swift_dispersion_password
-
(optional) Password of the dispersion tenant, used for swift-dispersion-report and swift-dispersion-populate tools. Defaults to 'dispersion'
- ks_cinder_public_port
-
(optional) TCP port to connect to Cinder API from public network Defaults to '8776'
- ks_neutron_public_port
-
(optional) TCP port to connect to Neutron API from public network Defaults to '9696'
- ks_heat_public_port
-
(optional) TCP port to connect to Heat API from public network Defaults to '8004'
- ks_heat_cfn_public_port
-
(optional) TCP port to connect to Heat API from public network Defaults to '8000'
- ks_glance_api_public_port
-
(optional) TCP port to connect to Glance API from public network Defaults to '9292'
- api_eth
-
(optional) Which interface we bind the Keystone server. Defaults to '127.0.0.1'
- region
-
(optional) OpenStack Region Name Defaults to 'RegionOne'
- verbose
-
(optional) Set log output to verbose output Defaults to true
- debug
-
(optional) Set log output to debug output Defaults to true
- use_syslog
-
(optional) Use syslog for logging Defaults to true
- log_facility
-
(optional) Syslog facility to receive log lines Defaults to 'LOG_LOCAL0'
- token_driver
-
(optional) Driver to store tokens Defaults to 'keystone.token.persistence.backends.sql.Token'
- token_expiration
-
(optional) Amount of time a token should remain valid (in seconds) Defaults to '3600' (1 hour)
- cinder_enabled
-
(optional) Enable or not Cinder (Block Storage Service) Defaults to true
- trove_enabled
-
(optional) Enable or not Trove (Database as a Service) Experimental feature. Defaults to false
- swift_enabled
-
(optional) Enable or not OpenStack Swift (Stockage as a Service) Defaults to true
- ks_token_expiration
-
(optional) Amount of time a token should remain valid (seconds). Defaults to 3600 (1 hour).
- firewall_settings
-
(optional) Allow to add custom parameters to firewall rules Should be an hash. Default to {}