/
keystone.pp
89 lines (81 loc) · 3.45 KB
/
keystone.pp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
class contrail::profile::openstack::keystone(
$internal_vip = $::contrail::params::internal_vip,
$host_control_ip = $::contrail::params::host_ip,
$sync_db = $::contrail::params::sync_db,
$package_sku = $::contrail::params::package_sku,
$openstack_verbose = $::contrail::params::os_verbose,
$openstack_debug = $::contrail::params::os_debug,
$service_password = $::contrail::params::os_mysql_service_password,
$keystone_mysql_service_password = $::contrail::params::keystone_mysql_service_password,
$allowed_hosts = $::contrail::params::os_mysql_allowed_hosts,
$admin_token = $::contrail::params::os_keystone_admin_token,
$openstack_rabbit_servers = $::contrail::params::openstack_rabbit_ip_list,
$keystone_ip_to_use = $::contrail::params::keystone_ip_to_use,
) {
notify { "SYNC_DB = $sync_db":; }
notify { "rabbit-servers => $openstack_rabbit_servers":;}
if ($keystone_mysql_service_password != "") {
$service_password_to_use = $keystone_mysql_service_password
} else {
$service_password_to_use = $service_password
}
$database_credentials = join([$service_password_to_use, "@", $keystone_ip_to_use],'')
notify {"VALUES => ${admin_token}, ${keystone_db_conn}, ${admin_bind_host}, ${sync_db}, ${openstack_rabbit_servers}":;}
class {'::keystone::db::mysql':
password => $service_password,
allowed_hosts => $allowed_hosts,
}
if ( $package_sku =~ /^*:13\.0.*$/) {
$default_domain = 'default'
} else {
$default_domain = undef
}
if ($internal_vip != "" and $internal_vip != undef) {
$keystone_db_conn = join(["mysql://keystone:",$database_credentials,":3306/keystone"],'')
notify {"KEYSTONE DB CONN => ${keystone_db_conn}":;}
class { '::keystone':
admin_token => $admin_token,
database_connection => $keystone_db_conn,
enabled => true,
admin_bind_host => $admin_bind_host,
sync_db => true,
public_port => '6000',
admin_port => '35358',
default_domain => $default_domain,
database_idle_timeout => '180',
rabbit_hosts => $openstack_rabbit_servers,
verbose => $openstack_verbose,
debug => $openstack_debug,
}
keystone_config {
'database/min_pool_size': value => "100";
'database/max_pool_size': value => "700";
'database/max_overflow': value => "100";
'database/retry_interval': value => "5";
'database/max_retries': value => "-1";
'database/db_max_retries': value => "-1";
'database/db_retry_interval': value => "1";
'database/connection_debug': value => "10";
'database/pool_timeout': value => "120";
}
} else {
$keystone_db_conn = join(["mysql://keystone:",$database_credentials,"/keystone"],'')
notify {"KEYSTONE DB CONN => ${keystone_db_conn}":;}
class { '::keystone':
admin_token => $admin_token,
database_connection => $keystone_db_conn,
default_domain => $default_domain,
enabled => true,
admin_bind_host => $admin_bind_host,
sync_db => true,
rabbit_hosts => $openstack_rabbit_servers,
verbose => $openstack_verbose,
debug => $openstack_debug,
}
keystone_config {
'identity/driver': value => "keystone.identity.backends.sql.Identity";
'ec2/driver': value => "keystone.contrib.ec2.backends.sql.Ec2";
'DEFAULT/onready': value => "keystone.common.systemd";
}
}
}