openstack/bifrost
Code Issues Proposed changes
bifrost/playbooks/inventory/group_vars/target
Dmitry Tantsur 2a6fc72559 Use random passwords by default 
It's easy to forget to override them, and you'll end up with a well known
password used in your keystone and database. Use the password module
to generate secure random passwords instead. Operators of production
environments are still expected to provide their own passwords.

The generated passwords are stored in /etc/bifrost and reused on the next
installation. A new task is provided for upgrading the bootstrap (admin)
user in keystone to the new password.

Change-Id: I6771015f2b062233eeff85704655c8e2ab64364d
2020-07-25 21:59:02 +02:00

74 lines
3.1 KiB
Plaintext
Raw Blame History

---
# The ironic API URL for bifrost operations. Defaults to localhost.
# ironic_url: "http://localhost:6385/"
# The network interface that bifrost will be operating on. Defaults
# to virbr0 in roles, can be overridden here.
# network_interface: "virbr0"
# password to use between services
#service_password: aSecretPassword473z
# mysql_username: Default mysql admin username
mysql_username: root
# mysql_password: Default mysql admin user password
mysql_password:
# The path to the SSH key to be utilized for testing and burn-in
# to configuration drives. When set, it should be set in both baremetal
# and localhost groups, however this is only an override to the default.
# ssh_public_key_path: "{{ lookup('env', 'HOME') }}/.ssh/id_rsa.pub"
# If testing is true, then the environment is setup for using libvirt
# virtual machines for the hardware instead of real hardware.
# testing: true
# The default port to download files via. Required for IPA URL generation.
# Presently the defaults are located in the roles, however if changed both
# the localhost and baremetal group files must be updated.
# file_url_port: 8080
# IPA Image parameters. If these are changed, they must be changed in
# Both localhost and baremetal groups. Presently the defaults
# in each role should be sufficient for proper operation.
# ipa_kernel: "{{http_boot_folder}}/ipa.kernel"
# ipa_ramdisk: "{{http_boot_folder}}/ipa.initramfs"
# ipa_kernel_url: "http://{{ hostvars[inventory_hostname]['ansible_' + network_interface]['ipv4']['address'] }}:{{file_url_port}}/ipa.kernel"
# ipa_ramdisk_url: "http://{{ hostvars[inventory_hostname]['ansible_' + network_interface]['ipv4']['address'] }}:{{file_url_port}}/ipa.initramfs"
# The http_boot_folder defines the root folder for the webserver.
# If this setting is changed, it must be applied to both the baremetal
# and localhost groups. Presently the role defaults are set to the value
# below.
# http_boot_folder: /httpboot
# The settings for the name of the image to be deployed along with the
# on disk location are below. If changed, these settings must be applied
# to both the baremetal and localhost groups. If the file is already on
# disk, then the image generation will not take place, otherwise an image
# will be generated using diskimage-builder.
# deploy_image_filename: "deployment_image.qcow2"
# deploy_image: "{{http_boot_folder}}/{{deploy_image_filename}}"
# Setting to utilize diskimage-builder to create a bootable image.
create_image_via_dib: true
dib_image_type: vm
# Transform boot image is intended for use with the Ubuntu trusty image.
# It makes the image bootable by installing Grub.
# Setting to prepend a partition image with a boot sector and partition table.
transform_boot_image: false
# Create IPA image instead of downloading an pre-made IPA image.
create_ipa_image: false
# Dnsmasq default route for clients. If not defined, dnsmasq will push to
# clients as default route the same IP of the dnsmasq server.
# Default: undefined
# dnsmasq_router: "{{ ipv4_gateway }}"
# Dnsmasq default nameserver for clients. If not defined, this setting
# will be ignored.
# Default: undefined
# dnsmasq_dns_servers: 8.8.8.8,8.8.4.4
View Git Blame Copy Permalink