haproxy: support single external frontend
Use case: exposing single external https frontend and load balancing services using FQDNs. Support different ports for internal and external endpoints. Introduced kolla_url filter to normalize urls like: - https://magnum.external:443/v1 - http://magnum.external:80/v1 Change-Id: I9fb03fe1cebce5c7198d523e015280c69f139cd0 Co-Authored-By: Jakub Darmach <jakub@stackhpc.com>
This commit is contained in:
parent
a0e614ee10
commit
4bc410c6ca
@ -15,6 +15,7 @@
|
|||||||
# limitations under the License.
|
# limitations under the License.
|
||||||
|
|
||||||
from kolla_ansible.kolla_address import kolla_address
|
from kolla_ansible.kolla_address import kolla_address
|
||||||
|
from kolla_ansible.kolla_url import kolla_url
|
||||||
from kolla_ansible.put_address_in_context import put_address_in_context
|
from kolla_ansible.put_address_in_context import put_address_in_context
|
||||||
|
|
||||||
|
|
||||||
@ -24,5 +25,6 @@ class FilterModule(object):
|
|||||||
def filters(self):
|
def filters(self):
|
||||||
return {
|
return {
|
||||||
'kolla_address': kolla_address,
|
'kolla_address': kolla_address,
|
||||||
|
'kolla_url': kolla_url,
|
||||||
'put_address_in_context': put_address_in_context,
|
'put_address_in_context': put_address_in_context,
|
||||||
}
|
}
|
||||||
|
@ -202,7 +202,8 @@ keepalived_virtual_router_id: "51"
|
|||||||
########################
|
########################
|
||||||
opensearch_datadir_volume: "opensearch"
|
opensearch_datadir_volume: "opensearch"
|
||||||
|
|
||||||
opensearch_internal_endpoint: "{{ internal_protocol }}://{{ opensearch_address | put_address_in_context('url') }}:{{ opensearch_port }}"
|
opensearch_internal_endpoint: "{{ opensearch_address | kolla_url(internal_protocol, opensearch_port) }}"
|
||||||
|
opensearch_dashboards_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
opensearch_dashboards_user: "opensearch"
|
opensearch_dashboards_user: "opensearch"
|
||||||
opensearch_log_index_prefix: "{{ kibana_log_prefix if kibana_log_prefix is defined else 'flog' }}"
|
opensearch_log_index_prefix: "{{ kibana_log_prefix if kibana_log_prefix is defined else 'flog' }}"
|
||||||
|
|
||||||
@ -287,25 +288,37 @@ neutron_ipam_driver: "internal"
|
|||||||
aodh_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
aodh_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
aodh_external_fqdn: "{{ kolla_external_fqdn }}"
|
aodh_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
aodh_api_port: "8042"
|
aodh_api_port: "8042"
|
||||||
|
aodh_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else aodh_api_port }}"
|
||||||
aodh_api_listen_port: "{{ aodh_api_port }}"
|
aodh_api_listen_port: "{{ aodh_api_port }}"
|
||||||
|
|
||||||
barbican_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
barbican_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
barbican_external_fqdn: "{{ kolla_external_fqdn }}"
|
barbican_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
barbican_api_port: "9311"
|
barbican_api_port: "9311"
|
||||||
|
barbican_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else barbican_api_port }}"
|
||||||
barbican_api_listen_port: "{{ barbican_api_port }}"
|
barbican_api_listen_port: "{{ barbican_api_port }}"
|
||||||
|
|
||||||
|
blazar_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
blazar_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
blazar_api_port: "1234"
|
blazar_api_port: "1234"
|
||||||
|
blazar_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else blazar_api_port }}"
|
||||||
|
blazar_api_listen_port: "{{ blazar_api_port }}"
|
||||||
|
|
||||||
ceph_rgw_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
ceph_rgw_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
ceph_rgw_external_fqdn: "{{ kolla_external_fqdn }}"
|
ceph_rgw_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
ceph_rgw_port: "6780"
|
ceph_rgw_port: "6780"
|
||||||
|
ceph_rgw_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else ceph_rgw_port }}"
|
||||||
|
|
||||||
cinder_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
cinder_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
cinder_external_fqdn: "{{ kolla_external_fqdn }}"
|
cinder_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
cinder_api_port: "8776"
|
cinder_api_port: "8776"
|
||||||
|
cinder_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else cinder_api_port }}"
|
||||||
cinder_api_listen_port: "{{ cinder_api_port }}"
|
cinder_api_listen_port: "{{ cinder_api_port }}"
|
||||||
|
|
||||||
|
cloudkitty_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
cloudkitty_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
cloudkitty_api_port: "8889"
|
cloudkitty_api_port: "8889"
|
||||||
|
cloudkitty_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else cloudkitty_api_port }}"
|
||||||
|
cloudkitty_api_listen_port: "{{ cloudkitty_api_port }}"
|
||||||
|
|
||||||
collectd_udp_port: "25826"
|
collectd_udp_port: "25826"
|
||||||
|
|
||||||
@ -315,6 +328,7 @@ designate_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
|||||||
designate_external_fqdn: "{{ kolla_external_fqdn }}"
|
designate_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
designate_api_port: "9001"
|
designate_api_port: "9001"
|
||||||
designate_api_listen_port: "{{ designate_api_port }}"
|
designate_api_listen_port: "{{ designate_api_port }}"
|
||||||
|
designate_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else designate_api_port }}"
|
||||||
designate_bind_port: "53"
|
designate_bind_port: "53"
|
||||||
designate_mdns_port: "{{ '53' if designate_backend == 'infoblox' else '5354' }}"
|
designate_mdns_port: "{{ '53' if designate_backend == 'infoblox' else '5354' }}"
|
||||||
designate_rndc_port: "953"
|
designate_rndc_port: "953"
|
||||||
@ -326,12 +340,17 @@ etcd_protocol: "{{ 'https' if etcd_enable_tls | bool else 'http' }}"
|
|||||||
|
|
||||||
fluentd_syslog_port: "5140"
|
fluentd_syslog_port: "5140"
|
||||||
|
|
||||||
|
freezer_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
freezer_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
freezer_api_port: "9090"
|
freezer_api_port: "9090"
|
||||||
|
freezer_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else freezer_api_port }}"
|
||||||
|
freezer_api_listen_port: "{{ freezer_api_port }}"
|
||||||
|
|
||||||
glance_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
glance_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
glance_external_fqdn: "{{ kolla_external_fqdn }}"
|
glance_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
glance_api_port: "9292"
|
glance_api_port: "9292"
|
||||||
glance_api_listen_port: "{{ glance_api_port }}"
|
glance_api_listen_port: "{{ glance_api_port }}"
|
||||||
|
glance_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else glance_api_port }}"
|
||||||
glance_tls_proxy_stats_port: "9293"
|
glance_tls_proxy_stats_port: "9293"
|
||||||
|
|
||||||
gnocchi_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
gnocchi_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
@ -339,7 +358,11 @@ gnocchi_external_fqdn: "{{ kolla_external_fqdn }}"
|
|||||||
gnocchi_api_port: "8041"
|
gnocchi_api_port: "8041"
|
||||||
gnocchi_api_listen_port: "{{ gnocchi_api_port }}"
|
gnocchi_api_listen_port: "{{ gnocchi_api_port }}"
|
||||||
|
|
||||||
|
grafana_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
grafana_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
grafana_server_port: "3000"
|
grafana_server_port: "3000"
|
||||||
|
grafana_server_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else grafana_server_port }}"
|
||||||
|
grafana_server_listen_port: "{{ grafana_server_port }}"
|
||||||
|
|
||||||
haproxy_stats_port: "1984"
|
haproxy_stats_port: "1984"
|
||||||
haproxy_monitor_port: "61313"
|
haproxy_monitor_port: "61313"
|
||||||
@ -348,11 +371,15 @@ heat_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
|||||||
heat_external_fqdn: "{{ kolla_external_fqdn }}"
|
heat_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
heat_api_port: "8004"
|
heat_api_port: "8004"
|
||||||
heat_api_listen_port: "{{ heat_api_port }}"
|
heat_api_listen_port: "{{ heat_api_port }}"
|
||||||
|
heat_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else heat_api_port }}"
|
||||||
heat_cfn_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
heat_cfn_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
heat_cfn_external_fqdn: "{{ kolla_external_fqdn }}"
|
heat_cfn_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
heat_api_cfn_port: "8000"
|
heat_api_cfn_port: "8000"
|
||||||
heat_api_cfn_listen_port: "{{ heat_api_cfn_port }}"
|
heat_api_cfn_listen_port: "{{ heat_api_cfn_port }}"
|
||||||
|
heat_api_cfn_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else heat_api_cfn_port }}"
|
||||||
|
|
||||||
|
horizon_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
horizon_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
horizon_port: "80"
|
horizon_port: "80"
|
||||||
horizon_tls_port: "443"
|
horizon_tls_port: "443"
|
||||||
horizon_listen_port: "{{ horizon_tls_port if horizon_enable_tls_backend | bool else horizon_port }}"
|
horizon_listen_port: "{{ horizon_tls_port if horizon_enable_tls_backend | bool else horizon_port }}"
|
||||||
@ -363,27 +390,39 @@ ironic_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
|||||||
ironic_external_fqdn: "{{ kolla_external_fqdn }}"
|
ironic_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
ironic_api_port: "6385"
|
ironic_api_port: "6385"
|
||||||
ironic_api_listen_port: "{{ ironic_api_port }}"
|
ironic_api_listen_port: "{{ ironic_api_port }}"
|
||||||
|
ironic_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else ironic_api_port }}"
|
||||||
ironic_inspector_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
ironic_inspector_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
ironic_inspector_external_fqdn: "{{ kolla_external_fqdn }}"
|
ironic_inspector_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
ironic_inspector_port: "5050"
|
ironic_inspector_port: "5050"
|
||||||
|
ironic_inspector_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else ironic_inspector_port }}"
|
||||||
ironic_inspector_listen_port: "{{ ironic_inspector_port }}"
|
ironic_inspector_listen_port: "{{ ironic_inspector_port }}"
|
||||||
ironic_http_port: "8089"
|
ironic_http_port: "8089"
|
||||||
|
|
||||||
iscsi_port: "3260"
|
iscsi_port: "3260"
|
||||||
|
|
||||||
keystone_public_port: "5000"
|
keystone_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else keystone_public_listen_port }}"
|
||||||
keystone_public_listen_port: "{{ keystone_public_port }}"
|
keystone_public_listen_port: "5000"
|
||||||
# NOTE(yoctozepto): Admin port settings are kept only for upgrade compatibility.
|
# NOTE(yoctozepto): Admin port settings are kept only for upgrade compatibility.
|
||||||
# TODO(yoctozepto): Remove after Zed.
|
# TODO(yoctozepto): Remove after Zed.
|
||||||
keystone_admin_port: "35357"
|
keystone_admin_port: "35357"
|
||||||
keystone_admin_listen_port: "{{ keystone_admin_port }}"
|
keystone_admin_listen_port: "{{ keystone_admin_port }}"
|
||||||
|
keystone_internal_port: "5000"
|
||||||
|
keystone_internal_listen_port: "{{ keystone_internal_port }}"
|
||||||
keystone_ssh_port: "8023"
|
keystone_ssh_port: "8023"
|
||||||
|
|
||||||
kuryr_port: "23750"
|
kuryr_port: "23750"
|
||||||
|
|
||||||
|
magnum_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
magnum_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
magnum_api_port: "9511"
|
magnum_api_port: "9511"
|
||||||
|
magnum_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else magnum_api_port }}"
|
||||||
|
magnum_api_listen_port: "{{ magnum_api_port }}"
|
||||||
|
|
||||||
|
manila_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
manila_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
manila_api_port: "8786"
|
manila_api_port: "8786"
|
||||||
|
manila_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else manila_api_port }}"
|
||||||
|
manila_api_listen_port: "{{ manila_api_port }}"
|
||||||
|
|
||||||
mariadb_port: "{{ database_port }}"
|
mariadb_port: "{{ database_port }}"
|
||||||
mariadb_wsrep_port: "4567"
|
mariadb_wsrep_port: "4567"
|
||||||
@ -404,48 +443,62 @@ mariadb_shard_root_user_prefix: "root_shard_"
|
|||||||
mariadb_shard_backup_user_prefix: "backup_shard_"
|
mariadb_shard_backup_user_prefix: "backup_shard_"
|
||||||
mariadb_shards_info: "{{ groups['mariadb'] | database_shards_info() }}"
|
mariadb_shards_info: "{{ groups['mariadb'] | database_shards_info() }}"
|
||||||
|
|
||||||
|
masakari_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
masakari_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
masakari_api_port: "15868"
|
masakari_api_port: "15868"
|
||||||
|
masakari_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else masakari_api_port }}"
|
||||||
|
masakari_api_listen_port: "{{ masakari_api_port }}"
|
||||||
masakari_coordination_backend: "{{ 'redis' if enable_redis | bool else 'etcd' if enable_etcd | bool else '' }}"
|
masakari_coordination_backend: "{{ 'redis' if enable_redis | bool else 'etcd' if enable_etcd | bool else '' }}"
|
||||||
|
|
||||||
memcached_port: "11211"
|
memcached_port: "11211"
|
||||||
|
|
||||||
|
mistral_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
mistral_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
mistral_api_port: "8989"
|
mistral_api_port: "8989"
|
||||||
|
mistral_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else mistral_api_port }}"
|
||||||
|
mistral_api_listen_port: "{{ mistral_api_port }}"
|
||||||
|
|
||||||
# TODO(dougszu): Remove in A cycle
|
murano_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
monasca_api_port: "8070"
|
murano_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
monasca_log_api_port: "{{ monasca_api_port }}"
|
|
||||||
monasca_agent_forwarder_port: "17123"
|
|
||||||
monasca_agent_statsd_port: "8125"
|
|
||||||
|
|
||||||
murano_api_port: "8082"
|
murano_api_port: "8082"
|
||||||
|
murano_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else murano_api_port }}"
|
||||||
|
murano_api_listen_port: "{{ murano_api_listen_port }}"
|
||||||
|
|
||||||
neutron_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
neutron_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
neutron_external_fqdn: "{{ kolla_external_fqdn }}"
|
neutron_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
neutron_server_port: "9696"
|
neutron_server_port: "9696"
|
||||||
neutron_server_listen_port: "{{ neutron_server_port }}"
|
neutron_server_listen_port: "{{ neutron_server_port }}"
|
||||||
|
neutron_server_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else neutron_server_port }}"
|
||||||
neutron_tls_proxy_stats_port: "9697"
|
neutron_tls_proxy_stats_port: "9697"
|
||||||
|
|
||||||
nova_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
nova_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
nova_external_fqdn: "{{ kolla_external_fqdn }}"
|
nova_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
nova_api_port: "8774"
|
nova_api_port: "8774"
|
||||||
nova_api_listen_port: "{{ nova_api_port }}"
|
nova_api_listen_port: "{{ nova_api_port }}"
|
||||||
|
nova_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else nova_api_port }}"
|
||||||
|
nova_metadata_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
nova_metadata_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
nova_metadata_port: "8775"
|
nova_metadata_port: "8775"
|
||||||
nova_metadata_listen_port: "{{ nova_metadata_port }}"
|
nova_metadata_listen_port: "{{ nova_metadata_port }}"
|
||||||
nova_novncproxy_fqdn: "{{ kolla_external_fqdn }}"
|
nova_novncproxy_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
nova_novncproxy_port: "6080"
|
nova_novncproxy_port: "6080"
|
||||||
nova_novncproxy_listen_port: "{{ nova_novncproxy_port }}"
|
nova_novncproxy_listen_port: "{{ nova_novncproxy_port }}"
|
||||||
|
nova_novncproxy_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else nova_novncproxy_port }}"
|
||||||
nova_spicehtml5proxy_fqdn: "{{ kolla_external_fqdn }}"
|
nova_spicehtml5proxy_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
nova_spicehtml5proxy_port: "6082"
|
nova_spicehtml5proxy_port: "6082"
|
||||||
nova_spicehtml5proxy_listen_port: "{{ nova_spicehtml5proxy_port }}"
|
nova_spicehtml5proxy_listen_port: "{{ nova_spicehtml5proxy_port }}"
|
||||||
|
nova_spicehtml5proxy_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else nova_spicehtml5proxy_port }}"
|
||||||
nova_serialproxy_fqdn: "{{ kolla_external_fqdn }}"
|
nova_serialproxy_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
nova_serialproxy_port: "6083"
|
nova_serialproxy_port: "6083"
|
||||||
nova_serialproxy_listen_port: "{{ nova_serialproxy_port }}"
|
nova_serialproxy_listen_port: "{{ nova_serialproxy_port }}"
|
||||||
|
nova_serialproxy_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else nova_serialproxy_port }}"
|
||||||
nova_serialproxy_protocol: "{{ 'wss' if kolla_enable_tls_external | bool else 'ws' }}"
|
nova_serialproxy_protocol: "{{ 'wss' if kolla_enable_tls_external | bool else 'ws' }}"
|
||||||
|
|
||||||
octavia_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
octavia_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
octavia_external_fqdn: "{{ kolla_external_fqdn }}"
|
octavia_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
octavia_api_port: "9876"
|
octavia_api_port: "9876"
|
||||||
octavia_api_listen_port: "{{ octavia_api_port }}"
|
octavia_api_listen_port: "{{ octavia_api_port }}"
|
||||||
|
octavia_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else octavia_api_port }}"
|
||||||
octavia_health_manager_port: "5555"
|
octavia_health_manager_port: "5555"
|
||||||
|
|
||||||
# NOTE: If an external ElasticSearch cluster port is specified,
|
# NOTE: If an external ElasticSearch cluster port is specified,
|
||||||
@ -453,7 +506,8 @@ octavia_health_manager_port: "5555"
|
|||||||
# endpoints. This is for backwards compatibility.
|
# endpoints. This is for backwards compatibility.
|
||||||
opensearch_port: "{{ elasticsearch_port | default('9200') }}"
|
opensearch_port: "{{ elasticsearch_port | default('9200') }}"
|
||||||
opensearch_dashboards_port: "5601"
|
opensearch_dashboards_port: "5601"
|
||||||
opensearch_dashboards_port_external: "{{ opensearch_dashboards_port }}"
|
opensearch_dashboards_port_external: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else opensearch_dashboards_port }}"
|
||||||
|
opensearch_dashboards_listen_port: "{{ opensearch_dashboards_port }}"
|
||||||
|
|
||||||
ovn_nb_db_port: "6641"
|
ovn_nb_db_port: "6641"
|
||||||
ovn_sb_db_port: "6642"
|
ovn_sb_db_port: "6642"
|
||||||
@ -473,6 +527,7 @@ placement_external_fqdn: "{{ kolla_external_fqdn }}"
|
|||||||
# Default Placement API port of 8778 already in use
|
# Default Placement API port of 8778 already in use
|
||||||
placement_api_port: "8780"
|
placement_api_port: "8780"
|
||||||
placement_api_listen_port: "{{ placement_api_port }}"
|
placement_api_listen_port: "{{ placement_api_port }}"
|
||||||
|
placement_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else placement_api_port }}"
|
||||||
|
|
||||||
prometheus_port: "9091"
|
prometheus_port: "9091"
|
||||||
prometheus_node_exporter_port: "9100"
|
prometheus_node_exporter_port: "9100"
|
||||||
@ -487,8 +542,12 @@ prometheus_libvirt_exporter_port: "9177"
|
|||||||
prometheus_etcd_integration_port: "{{ etcd_client_port }}"
|
prometheus_etcd_integration_port: "{{ etcd_client_port }}"
|
||||||
|
|
||||||
# Prometheus alertmanager ports
|
# Prometheus alertmanager ports
|
||||||
|
prometheus_alertmanager_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
prometheus_alertmanager_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
prometheus_alertmanager_port: "9093"
|
prometheus_alertmanager_port: "9093"
|
||||||
prometheus_alertmanager_cluster_port: "9094"
|
prometheus_alertmanager_cluster_port: "9094"
|
||||||
|
prometheus_alertmanager_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else prometheus_alertmanager_port }}"
|
||||||
|
prometheus_alertmanager_listen_port: "{{ prometheus_alertmanager_port }}"
|
||||||
|
|
||||||
# Prometheus MSTeams port
|
# Prometheus MSTeams port
|
||||||
prometheus_msteams_port: "9095"
|
prometheus_msteams_port: "9095"
|
||||||
@ -514,22 +573,39 @@ rabbitmq_prometheus_port: "15692"
|
|||||||
redis_port: "6379"
|
redis_port: "6379"
|
||||||
redis_sentinel_port: "26379"
|
redis_sentinel_port: "26379"
|
||||||
|
|
||||||
|
sahara_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
sahara_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
sahara_api_port: "8386"
|
sahara_api_port: "8386"
|
||||||
|
sahara_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else sahara_api_port }}"
|
||||||
|
sahara_api_listen_port: "{{ sahara_api_port }}"
|
||||||
|
|
||||||
senlin_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
senlin_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
senlin_external_fqdn: "{{ kolla_external_fqdn }}"
|
senlin_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
senlin_api_port: "8778"
|
senlin_api_port: "8778"
|
||||||
senlin_api_listen_port: "{{ senlin_api_port }}"
|
senlin_api_listen_port: "{{ senlin_api_port }}"
|
||||||
|
senlin_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else senlin_api_port }}"
|
||||||
|
|
||||||
skyline_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
skyline_apiserver_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
skyline_external_fqdn: "{{ kolla_external_fqdn }}"
|
skyline_apiserver_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
|
skyline_console_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
skyline_console_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
skyline_apiserver_port: "9998"
|
skyline_apiserver_port: "9998"
|
||||||
skyline_apiserver_listen_port: "{{ skyline_apiserver_port }}"
|
skyline_apiserver_listen_port: "{{ skyline_apiserver_port }}"
|
||||||
|
skyline_apiserver_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else skyline_apiserver_port }}"
|
||||||
skyline_console_port: "9999"
|
skyline_console_port: "9999"
|
||||||
skyline_console_listen_port: "{{ skyline_console_port }}"
|
skyline_console_listen_port: "{{ skyline_console_port }}"
|
||||||
|
skyline_console_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else skyline_console_port }}"
|
||||||
|
|
||||||
|
solum_application_deployment_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
solum_application_deployment_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
solum_application_deployment_port: "9777"
|
solum_application_deployment_port: "9777"
|
||||||
|
solum_application_deployment_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else solum_application_deployment_port }}"
|
||||||
|
solum_application_deployment_listen_port: "{{ solum_application_deployment_port }}"
|
||||||
|
solum_image_builder_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
solum_image_builder_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
solum_image_builder_port: "9778"
|
solum_image_builder_port: "9778"
|
||||||
|
solum_image_builder_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else solum_image_builder_port }}"
|
||||||
|
solum_image_builder_listen_port: "{{ solum_image_builder_port }}"
|
||||||
|
|
||||||
storm_nimbus_thrift_port: 6627
|
storm_nimbus_thrift_port: 6627
|
||||||
storm_supervisor_thrift_port: 6628
|
storm_supervisor_thrift_port: 6628
|
||||||
@ -551,21 +627,46 @@ swift_rsync_port: "10873"
|
|||||||
|
|
||||||
syslog_udp_port: "{{ fluentd_syslog_port }}"
|
syslog_udp_port: "{{ fluentd_syslog_port }}"
|
||||||
|
|
||||||
|
tacker_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
tacker_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
tacker_server_port: "9890"
|
tacker_server_port: "9890"
|
||||||
|
tacker_server_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else tacker_server_port }}"
|
||||||
|
tacker_server_listen_port: "{{ tacker_server_port }}"
|
||||||
|
|
||||||
|
trove_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
trove_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
trove_api_port: "8779"
|
trove_api_port: "8779"
|
||||||
|
trove_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else trove_api_port }}"
|
||||||
trove_api_listen_port: "{{ trove_api_port }}"
|
trove_api_listen_port: "{{ trove_api_port }}"
|
||||||
|
|
||||||
|
venus_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
venus_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
venus_api_port: "10010"
|
venus_api_port: "10010"
|
||||||
|
venus_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else venus_api_port }}"
|
||||||
|
venus_api_listen_port: "{{ venus_api_port }}"
|
||||||
|
|
||||||
|
watcher_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
watcher_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
watcher_api_port: "9322"
|
watcher_api_port: "9322"
|
||||||
|
watcher_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else watcher_api_port }}"
|
||||||
|
watcher_api_listen_port: "{{ watcher_api_port }}"
|
||||||
|
|
||||||
zun_api_port: "9517"
|
zun_api_port: "9517"
|
||||||
|
zun_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else zun_api_port }}"
|
||||||
|
zun_api_listen_port: "{{ zun_api_port }}"
|
||||||
|
zun_wsproxy_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
zun_wsproxy_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
zun_wsproxy_port: "6784"
|
zun_wsproxy_port: "6784"
|
||||||
zun_wsproxy_protocol: "{{ 'wss' if kolla_enable_tls_external | bool else 'ws' }}"
|
zun_wsproxy_protocol: "{{ 'wss' if kolla_enable_tls_external | bool else 'ws' }}"
|
||||||
zun_cni_daemon_port: "9036"
|
zun_cni_daemon_port: "9036"
|
||||||
|
zun_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
zun_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
|
|
||||||
|
vitrage_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
||||||
|
vitrage_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
vitrage_api_port: "8999"
|
vitrage_api_port: "8999"
|
||||||
|
vitrage_api_public_port: "{{ haproxy_single_external_frontend_public_port if haproxy_single_external_frontend | bool else vitrage_api_port }}"
|
||||||
|
vitrage_api_listen_port: "{{ vitrage_api_port }}"
|
||||||
|
|
||||||
public_protocol: "{{ 'https' if kolla_enable_tls_external | bool else 'http' }}"
|
public_protocol: "{{ 'https' if kolla_enable_tls_external | bool else 'http' }}"
|
||||||
internal_protocol: "{{ 'https' if kolla_enable_tls_internal | bool else 'http' }}"
|
internal_protocol: "{{ 'https' if kolla_enable_tls_internal | bool else 'http' }}"
|
||||||
@ -821,6 +922,7 @@ osprofiler_backend_connection_string: "{{ redis_connection_string if osprofiler_
|
|||||||
rabbitmq_user: "openstack"
|
rabbitmq_user: "openstack"
|
||||||
rabbitmq_monitoring_user: ""
|
rabbitmq_monitoring_user: ""
|
||||||
outward_rabbitmq_user: "openstack"
|
outward_rabbitmq_user: "openstack"
|
||||||
|
outward_rabbitmq_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
# Whether to enable TLS encryption for RabbitMQ client-server communication.
|
# Whether to enable TLS encryption for RabbitMQ client-server communication.
|
||||||
rabbitmq_enable_tls: "no"
|
rabbitmq_enable_tls: "no"
|
||||||
# CA certificate bundle in RabbitMQ container.
|
# CA certificate bundle in RabbitMQ container.
|
||||||
@ -840,6 +942,8 @@ kolla_admin_openrc_cacert: ""
|
|||||||
kolla_copy_ca_into_containers: "no"
|
kolla_copy_ca_into_containers: "no"
|
||||||
haproxy_backend_cacert: "{{ 'ca-certificates.crt' if kolla_base_distro in ['debian', 'ubuntu'] else 'ca-bundle.trust.crt' }}"
|
haproxy_backend_cacert: "{{ 'ca-certificates.crt' if kolla_base_distro in ['debian', 'ubuntu'] else 'ca-bundle.trust.crt' }}"
|
||||||
haproxy_backend_cacert_dir: "/etc/ssl/certs"
|
haproxy_backend_cacert_dir: "/etc/ssl/certs"
|
||||||
|
haproxy_single_external_frontend: false
|
||||||
|
haproxy_single_external_frontend_public_port: "{{ '443' if kolla_enable_tls_external | bool else '80' }}"
|
||||||
|
|
||||||
##################
|
##################
|
||||||
# Backend options
|
# Backend options
|
||||||
@ -867,9 +971,9 @@ keystone_internal_fqdn: "{{ kolla_internal_fqdn }}"
|
|||||||
keystone_external_fqdn: "{{ kolla_external_fqdn }}"
|
keystone_external_fqdn: "{{ kolla_external_fqdn }}"
|
||||||
|
|
||||||
# TODO(yoctozepto): Remove after Zed. Kept for compatibility only.
|
# TODO(yoctozepto): Remove after Zed. Kept for compatibility only.
|
||||||
keystone_admin_url: "{{ keystone_internal_url }}"
|
keystone_admin_url: "{{ keystone_internal_fqdn | kolla_url(admin_protocol, keystone_admin_port) }}"
|
||||||
keystone_internal_url: "{{ internal_protocol }}://{{ keystone_internal_fqdn | put_address_in_context('url') }}:{{ keystone_public_port }}"
|
keystone_internal_url: "{{ keystone_internal_fqdn | kolla_url(internal_protocol, keystone_internal_port) }}"
|
||||||
keystone_public_url: "{{ public_protocol }}://{{ keystone_external_fqdn | put_address_in_context('url') }}:{{ keystone_public_port }}"
|
keystone_public_url: "{{ keystone_external_fqdn | kolla_url(public_protocol, keystone_public_port) }}"
|
||||||
|
|
||||||
keystone_admin_user: "admin"
|
keystone_admin_user: "admin"
|
||||||
keystone_admin_project: "admin"
|
keystone_admin_project: "admin"
|
||||||
@ -918,8 +1022,8 @@ glance_api_hosts: "{{ [groups['glance-api'] | first] if glance_backend_file | bo
|
|||||||
# NOTE(mnasiadka): For use in common role
|
# NOTE(mnasiadka): For use in common role
|
||||||
glance_enable_tls_backend: "{{ kolla_enable_tls_backend }}"
|
glance_enable_tls_backend: "{{ kolla_enable_tls_backend }}"
|
||||||
|
|
||||||
glance_internal_endpoint: "{{ internal_protocol }}://{{ glance_internal_fqdn | put_address_in_context('url') }}:{{ glance_api_port }}"
|
glance_internal_endpoint: "{{ glance_internal_fqdn | kolla_url(internal_protocol, glance_api_port) }}"
|
||||||
glance_public_endpoint: "{{ public_protocol }}://{{ glance_external_fqdn | put_address_in_context('url') }}:{{ glance_api_port }}"
|
glance_public_endpoint: "{{ glance_external_fqdn | kolla_url(public_protocol, glance_api_public_port) }}"
|
||||||
|
|
||||||
#######################
|
#######################
|
||||||
# Barbican options
|
# Barbican options
|
||||||
@ -928,8 +1032,8 @@ glance_public_endpoint: "{{ public_protocol }}://{{ glance_external_fqdn | put_a
|
|||||||
barbican_crypto_plugin: "simple_crypto"
|
barbican_crypto_plugin: "simple_crypto"
|
||||||
barbican_library_path: "/usr/lib/libCryptoki2_64.so"
|
barbican_library_path: "/usr/lib/libCryptoki2_64.so"
|
||||||
|
|
||||||
barbican_internal_endpoint: "{{ internal_protocol }}://{{ barbican_internal_fqdn | put_address_in_context('url') }}:{{ barbican_api_port }}"
|
barbican_internal_endpoint: "{{ barbican_internal_fqdn | kolla_url(internal_protocol, barbican_api_port) }}"
|
||||||
barbican_public_endpoint: "{{ public_protocol }}://{{ barbican_external_fqdn | put_address_in_context('url') }}:{{ barbican_api_port }}"
|
barbican_public_endpoint: "{{ barbican_external_fqdn | kolla_url(public_protocol, barbican_api_public_port) }}"
|
||||||
|
|
||||||
#################
|
#################
|
||||||
# Gnocchi options
|
# Gnocchi options
|
||||||
@ -979,8 +1083,8 @@ designate_backend_external_bind9_nameservers: ""
|
|||||||
# Valid options are [ '', redis ]
|
# Valid options are [ '', redis ]
|
||||||
designate_coordination_backend: "{{ 'redis' if enable_redis | bool else '' }}"
|
designate_coordination_backend: "{{ 'redis' if enable_redis | bool else '' }}"
|
||||||
|
|
||||||
designate_internal_endpoint: "{{ internal_protocol }}://{{ designate_internal_fqdn | put_address_in_context('url') }}:{{ designate_api_port }}"
|
designate_internal_endpoint: "{{ designate_internal_fqdn | kolla_url(internal_protocol, designate_api_port) }}"
|
||||||
designate_public_endpoint: "{{ public_protocol }}://{{ designate_external_fqdn | put_address_in_context('url') }}:{{ designate_api_port }}"
|
designate_public_endpoint: "{{ designate_external_fqdn | kolla_url(public_protocol, designate_api_public_port) }}"
|
||||||
|
|
||||||
designate_enable_notifications_sink: "{{ enable_designate | bool }}"
|
designate_enable_notifications_sink: "{{ enable_designate | bool }}"
|
||||||
designate_notifications_topic_name: "notifications_designate"
|
designate_notifications_topic_name: "notifications_designate"
|
||||||
@ -1009,8 +1113,8 @@ neutron_legacy_iptables: "no"
|
|||||||
# Enable distributed floating ip for OVN deployments
|
# Enable distributed floating ip for OVN deployments
|
||||||
neutron_ovn_distributed_fip: "no"
|
neutron_ovn_distributed_fip: "no"
|
||||||
|
|
||||||
neutron_internal_endpoint: "{{ internal_protocol }}://{{ neutron_internal_fqdn | put_address_in_context('url') }}:{{ neutron_server_port }}"
|
neutron_internal_endpoint: "{{ neutron_internal_fqdn | kolla_url(internal_protocol, neutron_server_port) }}"
|
||||||
neutron_public_endpoint: "{{ public_protocol }}://{{ neutron_external_fqdn | put_address_in_context('url') }}:{{ neutron_server_port }}"
|
neutron_public_endpoint: "{{ neutron_external_fqdn | kolla_url(public_protocol, neutron_server_public_port) }}"
|
||||||
|
|
||||||
# SRIOV physnet:interface mappings when SRIOV is enabled
|
# SRIOV physnet:interface mappings when SRIOV is enabled
|
||||||
# "sriovnet1" and tunnel_interface used here as placeholders
|
# "sriovnet1" and tunnel_interface used here as placeholders
|
||||||
@ -1068,8 +1172,8 @@ enable_nova_horizon_policy_file: "{{ enable_nova }}"
|
|||||||
|
|
||||||
horizon_enable_tls_backend: "{{ kolla_enable_tls_backend }}"
|
horizon_enable_tls_backend: "{{ kolla_enable_tls_backend }}"
|
||||||
|
|
||||||
horizon_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ horizon_tls_port if kolla_enable_tls_internal | bool else horizon_port }}"
|
horizon_internal_endpoint: "{{ kolla_internal_fqdn | kolla_url(internal_protocol, horizon_tls_port if kolla_enable_tls_internal | bool else horizon_port) }}"
|
||||||
horizon_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ horizon_tls_port if kolla_enable_tls_external | bool else horizon_port }}"
|
horizon_public_endpoint: "{{ kolla_external_fqdn | kolla_url(public_protocol, horizon_tls_port if kolla_enable_tls_external | bool else horizon_port) }}"
|
||||||
|
|
||||||
###################
|
###################
|
||||||
# External Ceph options
|
# External Ceph options
|
||||||
@ -1165,7 +1269,7 @@ enable_vitrage_prometheus_datasource: "{{ enable_prometheus | bool }}"
|
|||||||
influxdb_address: "{{ kolla_internal_fqdn }}"
|
influxdb_address: "{{ kolla_internal_fqdn }}"
|
||||||
influxdb_datadir_volume: "influxdb"
|
influxdb_datadir_volume: "influxdb"
|
||||||
|
|
||||||
influxdb_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ influxdb_http_port }}"
|
influxdb_internal_endpoint: "{{ kolla_internal_fqdn | kolla_url(internal_protocol, influxdb_http_port) }}"
|
||||||
|
|
||||||
#########################
|
#########################
|
||||||
# Internal Image options
|
# Internal Image options
|
||||||
@ -1195,20 +1299,20 @@ kolla_base_distro_version: "{{ kolla_base_distro_version_default_map[kolla_base_
|
|||||||
# telemetry data.
|
# telemetry data.
|
||||||
telegraf_enable_docker_input: "no"
|
telegraf_enable_docker_input: "no"
|
||||||
|
|
||||||
vitrage_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ vitrage_api_port }}"
|
vitrage_internal_endpoint: "{{ kolla_internal_fqdn | kolla_url(internal_protocol, vitrage_api_port) }}"
|
||||||
vitrage_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ vitrage_api_port }}"
|
vitrage_public_endpoint: "{{ kolla_external_fqdn | kolla_url(public_protocol, vitrage_api_public_port) }}"
|
||||||
|
|
||||||
####################
|
####################
|
||||||
# Grafana
|
# Grafana
|
||||||
####################
|
####################
|
||||||
grafana_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ grafana_server_port }}"
|
grafana_internal_endpoint: "{{ kolla_internal_fqdn | kolla_url(internal_protocol, grafana_server_port) }}"
|
||||||
grafana_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ grafana_server_port }}"
|
grafana_public_endpoint: "{{ kolla_external_fqdn | kolla_url(public_protocol, grafana_server_public_port) }}"
|
||||||
|
|
||||||
#############
|
#############
|
||||||
# Ironic
|
# Ironic
|
||||||
#############
|
#############
|
||||||
ironic_internal_endpoint: "{{ internal_protocol }}://{{ ironic_internal_fqdn | put_address_in_context('url') }}:{{ ironic_api_port }}"
|
ironic_internal_endpoint: "{{ ironic_internal_fqdn | kolla_url(internal_protocol, ironic_api_port) }}"
|
||||||
ironic_public_endpoint: "{{ public_protocol }}://{{ ironic_external_fqdn | put_address_in_context('url') }}:{{ ironic_api_port }}"
|
ironic_public_endpoint: "{{ ironic_external_fqdn | kolla_url(public_protocol, ironic_api_public_port) }}"
|
||||||
|
|
||||||
# Valid options are [ '', redis, etcd ]
|
# Valid options are [ '', redis, etcd ]
|
||||||
ironic_coordination_backend: "{{ 'redis' if enable_redis | bool else 'etcd' if enable_etcd | bool else '' }}"
|
ironic_coordination_backend: "{{ 'redis' if enable_redis | bool else 'etcd' if enable_etcd | bool else '' }}"
|
||||||
@ -1216,10 +1320,10 @@ ironic_coordination_backend: "{{ 'redis' if enable_redis | bool else 'etcd' if e
|
|||||||
########
|
########
|
||||||
# Swift
|
# Swift
|
||||||
########
|
########
|
||||||
swift_internal_base_endpoint: "{{ internal_protocol }}://{{ swift_internal_fqdn | put_address_in_context('url') }}:{{ swift_proxy_server_port }}"
|
swift_internal_base_endpoint: "{{ swift_internal_fqdn | kolla_url(internal_protocol, swift_proxy_server_port) }}"
|
||||||
|
|
||||||
swift_internal_endpoint: "{{ swift_internal_base_endpoint }}/v1/AUTH_%(tenant_id)s"
|
swift_internal_endpoint: "{{ swift_internal_base_endpoint }}/v1/AUTH_%(tenant_id)s"
|
||||||
swift_public_endpoint: "{{ public_protocol }}://{{ swift_external_fqdn | put_address_in_context('url') }}:{{ swift_proxy_server_port }}/v1/AUTH_%(tenant_id)s"
|
swift_public_endpoint: "{{ swift_external_fqdn | kolla_url(public_protocol, swift_proxy_server_port, '/v1/AUTH_%(tenant_id)s') }}"
|
||||||
|
|
||||||
##########
|
##########
|
||||||
# Octavia
|
# Octavia
|
||||||
@ -1237,8 +1341,8 @@ octavia_auto_configure: "{{ 'amphora' in octavia_provider_drivers }}"
|
|||||||
# on the Octavia woker nodes on the same provider network.
|
# on the Octavia woker nodes on the same provider network.
|
||||||
octavia_network_type: "provider"
|
octavia_network_type: "provider"
|
||||||
|
|
||||||
octavia_internal_endpoint: "{{ internal_protocol }}://{{ octavia_internal_fqdn | put_address_in_context('url') }}:{{ octavia_api_port }}"
|
octavia_internal_endpoint: "{{ octavia_internal_fqdn | kolla_url(internal_protocol, octavia_api_port) }}"
|
||||||
octavia_public_endpoint: "{{ public_protocol }}://{{ octavia_external_fqdn | put_address_in_context('url') }}:{{ octavia_api_port }}"
|
octavia_public_endpoint: "{{ octavia_external_fqdn | kolla_url(public_protocol, octavia_api_public_port) }}"
|
||||||
|
|
||||||
###################################
|
###################################
|
||||||
# Identity federation configuration
|
# Identity federation configuration
|
||||||
|
@ -19,7 +19,8 @@ aodh_services:
|
|||||||
enabled: "{{ enable_aodh }}"
|
enabled: "{{ enable_aodh }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ aodh_api_port }}"
|
external_fqdn: "{{ aodh_external_fqdn }}"
|
||||||
|
port: "{{ aodh_api_public_port }}"
|
||||||
listen_port: "{{ aodh_api_listen_port }}"
|
listen_port: "{{ aodh_api_listen_port }}"
|
||||||
aodh-evaluator:
|
aodh-evaluator:
|
||||||
container_name: aodh_evaluator
|
container_name: aodh_evaluator
|
||||||
@ -207,8 +208,8 @@ aodh_notifier_extra_volumes: "{{ aodh_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
aodh_internal_endpoint: "{{ internal_protocol }}://{{ aodh_internal_fqdn | put_address_in_context('url') }}:{{ aodh_api_port }}"
|
aodh_internal_endpoint: "{{ aodh_internal_fqdn | kolla_url(internal_protocol, aodh_api_port) }}"
|
||||||
aodh_public_endpoint: "{{ public_protocol }}://{{ aodh_external_fqdn | put_address_in_context('url') }}:{{ aodh_api_port }}"
|
aodh_public_endpoint: "{{ aodh_external_fqdn | kolla_url(public_protocol, aodh_api_public_port) }}"
|
||||||
|
|
||||||
aodh_logging_debug: "{{ openstack_logging_debug }}"
|
aodh_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -20,7 +20,8 @@ barbican_services:
|
|||||||
enabled: "{{ enable_barbican }}"
|
enabled: "{{ enable_barbican }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ barbican_api_port }}"
|
external_fqdn: "{{ barbican_external_fqdn }}"
|
||||||
|
port: "{{ barbican_api_public_port }}"
|
||||||
listen_port: "{{ barbican_api_listen_port }}"
|
listen_port: "{{ barbican_api_listen_port }}"
|
||||||
tls_backend: "{{ barbican_enable_tls_backend }}"
|
tls_backend: "{{ barbican_enable_tls_backend }}"
|
||||||
barbican-keystone-listener:
|
barbican-keystone-listener:
|
||||||
|
@ -14,11 +14,14 @@ blazar_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ blazar_api_port }}"
|
port: "{{ blazar_api_port }}"
|
||||||
|
listen_port: "{{ blazar_api_listen_port }}"
|
||||||
blazar_api_external:
|
blazar_api_external:
|
||||||
enabled: "{{ enable_blazar }}"
|
enabled: "{{ enable_blazar }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ blazar_api_port }}"
|
external_fqdn: "{{ blazar_external_fqdn }}"
|
||||||
|
port: "{{ blazar_api_public_port }}"
|
||||||
|
listen_port: "{{ blazar_api_listen_port }}"
|
||||||
blazar-manager:
|
blazar-manager:
|
||||||
container_name: blazar_manager
|
container_name: blazar_manager
|
||||||
group: blazar-manager
|
group: blazar-manager
|
||||||
@ -126,8 +129,8 @@ blazar_manager_extra_volumes: "{{ blazar_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
blazar_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ blazar_api_port }}/v1"
|
blazar_internal_endpoint: "{{ blazar_internal_fqdn | kolla_url(internal_protocol, blazar_api_port, '/v1') }}"
|
||||||
blazar_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ blazar_api_port }}/v1"
|
blazar_public_endpoint: "{{ blazar_external_fqdn | kolla_url(public_protocol, blazar_api_public_port, '/v1') }}"
|
||||||
|
|
||||||
blazar_logging_debug: "{{ openstack_logging_debug }}"
|
blazar_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -16,7 +16,8 @@ ceph_rgw_services:
|
|||||||
enabled: "{{ enable_ceph_rgw_loadbalancer | bool }}"
|
enabled: "{{ enable_ceph_rgw_loadbalancer | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ ceph_rgw_port }}"
|
external_fqdn: "{{ ceph_rgw_external_fqdn }}"
|
||||||
|
port: "{{ ceph_rgw_public_port }}"
|
||||||
custom_member_list: "{{ ceph_rgw_haproxy_members }}"
|
custom_member_list: "{{ ceph_rgw_haproxy_members }}"
|
||||||
|
|
||||||
####################
|
####################
|
||||||
@ -59,8 +60,8 @@ ceph_rgw_swift_account_in_url: false
|
|||||||
|
|
||||||
ceph_rgw_endpoint_path: "{{ '/' if ceph_rgw_swift_compatibility | bool else '/swift/' }}v1{% if ceph_rgw_swift_account_in_url | bool %}/AUTH_%(project_id)s{% endif %}"
|
ceph_rgw_endpoint_path: "{{ '/' if ceph_rgw_swift_compatibility | bool else '/swift/' }}v1{% if ceph_rgw_swift_account_in_url | bool %}/AUTH_%(project_id)s{% endif %}"
|
||||||
|
|
||||||
ceph_rgw_internal_endpoint: "{{ internal_protocol }}://{{ ceph_rgw_internal_fqdn | put_address_in_context('url') }}:{{ ceph_rgw_port }}{{ ceph_rgw_endpoint_path }}"
|
ceph_rgw_internal_endpoint: "{{ ceph_rgw_internal_fqdn | kolla_url(internal_protocol, ceph_rgw_port, ceph_rgw_endpoint_path) }}"
|
||||||
ceph_rgw_public_endpoint: "{{ public_protocol }}://{{ ceph_rgw_external_fqdn | put_address_in_context('url') }}:{{ ceph_rgw_port }}{{ ceph_rgw_endpoint_path }}"
|
ceph_rgw_public_endpoint: "{{ ceph_rgw_external_fqdn | kolla_url(public_protocol, ceph_rgw_public_port, ceph_rgw_endpoint_path) }}"
|
||||||
|
|
||||||
ceph_rgw_keystone_user: "ceph_rgw"
|
ceph_rgw_keystone_user: "ceph_rgw"
|
||||||
|
|
||||||
|
@ -20,7 +20,8 @@ cinder_services:
|
|||||||
enabled: "{{ enable_cinder }}"
|
enabled: "{{ enable_cinder }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ cinder_api_port }}"
|
external_fqdn: "{{ cinder_external_fqdn }}"
|
||||||
|
port: "{{ cinder_api_public_port }}"
|
||||||
listen_port: "{{ cinder_api_listen_port }}"
|
listen_port: "{{ cinder_api_listen_port }}"
|
||||||
tls_backend: "{{ cinder_enable_tls_backend }}"
|
tls_backend: "{{ cinder_enable_tls_backend }}"
|
||||||
cinder-scheduler:
|
cinder-scheduler:
|
||||||
@ -209,8 +210,8 @@ cinder_enable_conversion_tmpfs: false
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
cinder_internal_base_endpoint: "{{ internal_protocol }}://{{ cinder_internal_fqdn | put_address_in_context('url') }}:{{ cinder_api_port }}"
|
cinder_internal_base_endpoint: "{{ cinder_internal_fqdn | kolla_url(internal_protocol, cinder_api_port) }}"
|
||||||
cinder_public_base_endpoint: "{{ public_protocol }}://{{ cinder_external_fqdn | put_address_in_context('url') }}:{{ cinder_api_port }}"
|
cinder_public_base_endpoint: "{{ cinder_external_fqdn | kolla_url(public_protocol, cinder_api_public_port) }}"
|
||||||
|
|
||||||
cinder_v3_internal_endpoint: "{{ cinder_internal_base_endpoint }}/v3/%(tenant_id)s"
|
cinder_v3_internal_endpoint: "{{ cinder_internal_base_endpoint }}/v3/%(tenant_id)s"
|
||||||
cinder_v3_public_endpoint: "{{ cinder_public_base_endpoint }}/v3/%(tenant_id)s"
|
cinder_v3_public_endpoint: "{{ cinder_public_base_endpoint }}/v3/%(tenant_id)s"
|
||||||
|
@ -14,11 +14,14 @@ cloudkitty_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ cloudkitty_api_port }}"
|
port: "{{ cloudkitty_api_port }}"
|
||||||
|
listen_port: "{{ cloudkitty_api_listen_port }}"
|
||||||
cloudkitty_api_external:
|
cloudkitty_api_external:
|
||||||
enabled: "{{ enable_cloudkitty }}"
|
enabled: "{{ enable_cloudkitty }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ cloudkitty_api_port }}"
|
external_fqdn: "{{ cloudkitty_external_fqdn }}"
|
||||||
|
port: "{{ cloudkitty_api_public_port }}"
|
||||||
|
listen_port: "{{ cloudkitty_api_listen_port }}"
|
||||||
cloudkitty-processor:
|
cloudkitty-processor:
|
||||||
container_name: "cloudkitty_processor"
|
container_name: "cloudkitty_processor"
|
||||||
group: "cloudkitty-processor"
|
group: "cloudkitty-processor"
|
||||||
@ -118,8 +121,8 @@ cloudkitty_api_extra_volumes: "{{ cloudkitty_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
cloudkitty_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ cloudkitty_api_port }}"
|
cloudkitty_internal_endpoint: "{{ cloudkitty_internal_fqdn | kolla_url(internal_protocol, cloudkitty_api_port) }}"
|
||||||
cloudkitty_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ cloudkitty_api_port }}"
|
cloudkitty_public_endpoint: "{{ cloudkitty_external_fqdn | kolla_url(public_protocol, cloudkitty_api_public_port) }}"
|
||||||
|
|
||||||
cloudkitty_logging_debug: "{{ openstack_logging_debug }}"
|
cloudkitty_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -141,8 +141,8 @@ cyborg_conductor_extra_volumes: "{{ cyborg_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
cyborg_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ cyborg_api_port }}/v2"
|
cyborg_internal_endpoint: "{{ cyborg_internal_fqdn | kolla_url(internal_protocol, cyborg_api_port) }}"
|
||||||
cyborg_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ cyborg_api_port }}/v2"
|
cyborg_public_endpoint: "{{ cyborg_external_fqdn | kolla_url(public_protocol, cyborg_api_port) }}"
|
||||||
|
|
||||||
cyborg_logging_debug: "{{ openstack_logging_debug }}"
|
cyborg_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -19,7 +19,8 @@ designate_services:
|
|||||||
enabled: "{{ enable_designate }}"
|
enabled: "{{ enable_designate }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ designate_api_port }}"
|
external_fqdn: "{{ designate_external_fqdn }}"
|
||||||
|
port: "{{ designate_api_public_port }}"
|
||||||
listen_port: "{{ designate_api_listen_port }}"
|
listen_port: "{{ designate_api_listen_port }}"
|
||||||
designate-backend-bind9:
|
designate-backend-bind9:
|
||||||
container_name: designate_backend_bind9
|
container_name: designate_backend_bind9
|
||||||
|
@ -13,11 +13,14 @@ freezer_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ freezer_api_port }}"
|
port: "{{ freezer_api_port }}"
|
||||||
|
listen_port: "{{ freezer_api_listen_port }}"
|
||||||
freezer_api_external:
|
freezer_api_external:
|
||||||
enabled: "{{ enable_freezer }}"
|
enabled: "{{ enable_freezer }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ freezer_api_port }}"
|
external_fqdn: "{{ freezer_external_fqdn }}"
|
||||||
|
port: "{{ freezer_api_public_port }}"
|
||||||
|
listen_port: "{{ freezer_api_listen_port }}"
|
||||||
freezer-scheduler:
|
freezer-scheduler:
|
||||||
container_name: freezer_scheduler
|
container_name: freezer_scheduler
|
||||||
group: freezer-scheduler
|
group: freezer-scheduler
|
||||||
@ -97,8 +100,8 @@ freezer_scheduler_extra_volumes: "{{ freezer_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
freezer_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ freezer_api_port }}"
|
freezer_internal_endpoint: "{{ freezer_internal_fqdn | kolla_url(internal_protocol, freezer_api_port) }}"
|
||||||
freezer_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ freezer_api_port }}"
|
freezer_public_endpoint: "{{ freezer_external_fqdn | kolla_url(public_protocol, freezer_api_public_port) }}"
|
||||||
|
|
||||||
freezer_logging_debug: "{{ openstack_logging_debug }}"
|
freezer_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -26,7 +26,8 @@ glance_services:
|
|||||||
enabled: "{{ enable_glance | bool and not glance_enable_tls_backend | bool }}"
|
enabled: "{{ enable_glance | bool and not glance_enable_tls_backend | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ glance_api_port }}"
|
external_fqdn: "{{ glance_external_fqdn }}"
|
||||||
|
port: "{{ glance_api_public_port }}"
|
||||||
frontend_http_extra:
|
frontend_http_extra:
|
||||||
- "timeout client {{ haproxy_glance_api_client_timeout }}"
|
- "timeout client {{ haproxy_glance_api_client_timeout }}"
|
||||||
backend_http_extra:
|
backend_http_extra:
|
||||||
@ -57,7 +58,8 @@ glance_services:
|
|||||||
enabled: "{{ enable_glance | bool and glance_enable_tls_backend | bool }}"
|
enabled: "{{ enable_glance | bool and glance_enable_tls_backend | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ glance_api_port }}"
|
external_fqdn: "{{ glance_external_fqdn }}"
|
||||||
|
port: "{{ glance_api_public_port }}"
|
||||||
frontend_http_extra:
|
frontend_http_extra:
|
||||||
- "timeout client {{ haproxy_glance_api_client_timeout }}"
|
- "timeout client {{ haproxy_glance_api_client_timeout }}"
|
||||||
backend_http_extra:
|
backend_http_extra:
|
||||||
|
@ -13,12 +13,15 @@ gnocchi_services:
|
|||||||
enabled: "{{ enable_gnocchi }}"
|
enabled: "{{ enable_gnocchi }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ gnocchi_api_listen_port }}"
|
port: "{{ gnocchi_api_port }}"
|
||||||
|
listen_port: "{{ gnocchi_api_listen_port }}"
|
||||||
gnocchi_api_external:
|
gnocchi_api_external:
|
||||||
enabled: "{{ enable_gnocchi }}"
|
enabled: "{{ enable_gnocchi }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ gnocchi_api_listen_port }}"
|
external_fqdn: "{{ gnocchi_external_fqdn }}"
|
||||||
|
port: "{{ gnocchi_api_public_port }}"
|
||||||
|
listen_port: "{{ gnocchi_api_listen_port }}"
|
||||||
gnocchi-metricd:
|
gnocchi-metricd:
|
||||||
container_name: gnocchi_metricd
|
container_name: gnocchi_metricd
|
||||||
group: gnocchi-metricd
|
group: gnocchi-metricd
|
||||||
@ -160,8 +163,8 @@ gnocchi_statsd_extra_volumes: "{{ gnocchi_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
gnocchi_internal_endpoint: "{{ internal_protocol }}://{{ gnocchi_internal_fqdn | put_address_in_context('url') }}:{{ gnocchi_api_port }}"
|
gnocchi_internal_endpoint: "{{ gnocchi_internal_fqdn | kolla_url(internal_protocol, gnocchi_api_port) }}"
|
||||||
gnocchi_public_endpoint: "{{ public_protocol }}://{{ gnocchi_external_fqdn | put_address_in_context('url') }}:{{ gnocchi_api_port }}"
|
gnocchi_public_endpoint: "{{ gnocchi_external_fqdn | kolla_url(public_protocol, gnocchi_api_public_port) }}"
|
||||||
|
|
||||||
gnocchi_logging_debug: "{{ openstack_logging_debug }}"
|
gnocchi_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -13,11 +13,14 @@ grafana_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ grafana_server_port }}"
|
port: "{{ grafana_server_port }}"
|
||||||
|
listen_port: "{{ grafana_server_listen_port }}"
|
||||||
grafana_server_external:
|
grafana_server_external:
|
||||||
enabled: "{{ enable_grafana_external | bool }}"
|
enabled: "{{ enable_grafana_external | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ grafana_server_port }}"
|
external_fqdn: "{{ grafana_external_fqdn }}"
|
||||||
|
port: "{{ grafana_server_public_port }}"
|
||||||
|
listen_port: "{{ grafana_server_listen_port }}"
|
||||||
|
|
||||||
####################
|
####################
|
||||||
# Database
|
# Database
|
||||||
|
@ -22,6 +22,36 @@
|
|||||||
notify:
|
notify:
|
||||||
- Restart haproxy container
|
- Restart haproxy container
|
||||||
|
|
||||||
|
- name: "Add configuration for {{ project_name }} when using single external frontend"
|
||||||
|
vars:
|
||||||
|
service: "{{ item.value }}"
|
||||||
|
blockinfile:
|
||||||
|
create: yes
|
||||||
|
path: "{{ node_config_directory }}/haproxy/external-frontend-map"
|
||||||
|
insertafter: EOF
|
||||||
|
marker: "# {mark} {{ item.key }}"
|
||||||
|
mode: "0660"
|
||||||
|
block: |
|
||||||
|
{%- set haproxy = service.haproxy | default({}) %}
|
||||||
|
{%- for haproxy_name, haproxy_service in haproxy.items() %}
|
||||||
|
{% set external = haproxy_service.external | default(false) | bool %}
|
||||||
|
{% set enabled = haproxy_service.enabled | default(false) | bool %}
|
||||||
|
{% set with_frontend = haproxy_service.with_frontend | default(true) | bool %}
|
||||||
|
{% set mode = haproxy_service.mode | default('http') %}
|
||||||
|
{%- if external and with_frontend and enabled and mode == 'http' %}
|
||||||
|
{{ haproxy_service.external_fqdn }} {{ haproxy_name }}_back
|
||||||
|
{% endif -%}
|
||||||
|
{%- endfor -%}
|
||||||
|
become: true
|
||||||
|
with_dict: "{{ project_services }}"
|
||||||
|
when:
|
||||||
|
- haproxy_single_external_frontend | bool
|
||||||
|
- service.enabled | bool
|
||||||
|
- service.haproxy is defined
|
||||||
|
- enable_haproxy | bool
|
||||||
|
notify:
|
||||||
|
- Restart haproxy container
|
||||||
|
|
||||||
- name: "Configuring firewall for {{ project_name }}"
|
- name: "Configuring firewall for {{ project_name }}"
|
||||||
firewalld:
|
firewalld:
|
||||||
offline: "yes"
|
offline: "yes"
|
||||||
|
@ -137,9 +137,11 @@ backend {{ service_name }}_back
|
|||||||
{{ userlist_macro(haproxy_name, auth_user, auth_pass) }}
|
{{ userlist_macro(haproxy_name, auth_user, auth_pass) }}
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% if with_frontend %}
|
{% if with_frontend %}
|
||||||
|
{% if not (external|bool and haproxy_single_external_frontend|bool and mode == 'http') %}
|
||||||
{{ frontend_macro(haproxy_name, haproxy_service.port, mode, external,
|
{{ frontend_macro(haproxy_name, haproxy_service.port, mode, external,
|
||||||
frontend_http_extra, frontend_tcp_extra) }}
|
frontend_http_extra, frontend_tcp_extra) }}
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
{% endif %}
|
||||||
{# Redirect (to https) is a special case, as it does not include a backend #}
|
{# Redirect (to https) is a special case, as it does not include a backend #}
|
||||||
{% if with_backend and mode != 'redirect' %}
|
{% if with_backend and mode != 'redirect' %}
|
||||||
{{ backend_macro(haproxy_name, listen_port, mode, host_group, active_passive,
|
{{ backend_macro(haproxy_name, listen_port, mode, host_group, active_passive,
|
||||||
|
@ -20,7 +20,8 @@ heat_services:
|
|||||||
enabled: "{{ enable_heat }}"
|
enabled: "{{ enable_heat }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ heat_api_port }}"
|
external_fqdn: "{{ heat_external_fqdn }}"
|
||||||
|
port: "{{ heat_api_public_port }}"
|
||||||
listen_port: "{{ heat_api_listen_port }}"
|
listen_port: "{{ heat_api_listen_port }}"
|
||||||
tls_backend: "{{ heat_enable_tls_backend }}"
|
tls_backend: "{{ heat_enable_tls_backend }}"
|
||||||
heat-api-cfn:
|
heat-api-cfn:
|
||||||
@ -43,7 +44,8 @@ heat_services:
|
|||||||
enabled: "{{ enable_heat }}"
|
enabled: "{{ enable_heat }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ heat_api_cfn_port }}"
|
external_fqdn: "{{ heat_cfn_external_fqdn }}"
|
||||||
|
port: "{{ heat_api_cfn_public_port }}"
|
||||||
listen_port: "{{ heat_api_cfn_listen_port }}"
|
listen_port: "{{ heat_api_cfn_listen_port }}"
|
||||||
tls_backend: "{{ heat_enable_tls_backend }}"
|
tls_backend: "{{ heat_enable_tls_backend }}"
|
||||||
heat-engine:
|
heat-engine:
|
||||||
@ -170,12 +172,12 @@ heat_engine_extra_volumes: "{{ heat_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
heat_internal_endpoint: "{{ internal_protocol }}://{{ heat_internal_fqdn | put_address_in_context('url') }}:{{ heat_api_port }}/v1/%(tenant_id)s"
|
heat_internal_endpoint: "{{ heat_internal_fqdn | kolla_url(internal_protocol, heat_api_port, '/v1/%(tenant_id)s') }}"
|
||||||
heat_public_endpoint: "{{ public_protocol }}://{{ heat_external_fqdn | put_address_in_context('url') }}:{{ heat_api_port }}/v1/%(tenant_id)s"
|
heat_public_endpoint: "{{ heat_external_fqdn | kolla_url(public_protocol, heat_api_public_port, '/v1/%(tenant_id)s') }}"
|
||||||
|
|
||||||
heat_cfn_public_base_endpoint: "{{ public_protocol }}://{{ heat_cfn_external_fqdn | put_address_in_context('url') }}:{{ heat_api_cfn_port }}"
|
heat_cfn_public_base_endpoint: "{{ heat_cfn_external_fqdn | kolla_url(public_protocol, heat_api_cfn_public_port) }}"
|
||||||
|
|
||||||
heat_cfn_internal_endpoint: "{{ internal_protocol }}://{{ heat_cfn_internal_fqdn | put_address_in_context('url') }}:{{ heat_api_cfn_port }}/v1"
|
heat_cfn_internal_endpoint: "{{ heat_cfn_internal_fqdn | kolla_url(internal_protocol, heat_api_cfn_port, '/v1') }}"
|
||||||
heat_cfn_public_endpoint: "{{ heat_cfn_public_base_endpoint }}/v1"
|
heat_cfn_public_endpoint: "{{ heat_cfn_public_base_endpoint }}/v1"
|
||||||
|
|
||||||
heat_logging_debug: "{{ openstack_logging_debug }}"
|
heat_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
@ -53,6 +53,7 @@ horizon_services:
|
|||||||
enabled: "{{ enable_horizon }}"
|
enabled: "{{ enable_horizon }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ horizon_external_fqdn }}"
|
||||||
port: "{% if kolla_enable_tls_external | bool %}{{ horizon_tls_port }}{% else %}{{ horizon_port }}{% endif %}"
|
port: "{% if kolla_enable_tls_external | bool %}{{ horizon_tls_port }}{% else %}{{ horizon_port }}{% endif %}"
|
||||||
listen_port: "{{ horizon_listen_port }}"
|
listen_port: "{{ horizon_listen_port }}"
|
||||||
frontend_http_extra:
|
frontend_http_extra:
|
||||||
@ -64,6 +65,7 @@ horizon_services:
|
|||||||
enabled: "{{ enable_horizon | bool and kolla_enable_tls_external | bool }}"
|
enabled: "{{ enable_horizon | bool and kolla_enable_tls_external | bool }}"
|
||||||
mode: "redirect"
|
mode: "redirect"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ horizon_external_fqdn }}"
|
||||||
port: "{{ horizon_port }}"
|
port: "{{ horizon_port }}"
|
||||||
listen_port: "{{ horizon_listen_port }}"
|
listen_port: "{{ horizon_listen_port }}"
|
||||||
acme_client:
|
acme_client:
|
||||||
|
@ -20,7 +20,8 @@ ironic_services:
|
|||||||
enabled: "{{ enable_ironic }}"
|
enabled: "{{ enable_ironic }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ ironic_api_port }}"
|
external_fqdn: "{{ ironic_external_fqdn }}"
|
||||||
|
port: "{{ ironic_api_public_port }}"
|
||||||
listen_port: "{{ ironic_api_listen_port }}"
|
listen_port: "{{ ironic_api_listen_port }}"
|
||||||
tls_backend: "{{ ironic_enable_tls_backend }}"
|
tls_backend: "{{ ironic_enable_tls_backend }}"
|
||||||
ironic-conductor:
|
ironic-conductor:
|
||||||
@ -52,7 +53,8 @@ ironic_services:
|
|||||||
enabled: "{{ enable_ironic }}"
|
enabled: "{{ enable_ironic }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ ironic_inspector_port }}"
|
external_fqdn: "{{ ironic_inspector_external_fqdn }}"
|
||||||
|
port: "{{ ironic_inspector_public_port }}"
|
||||||
listen_port: "{{ ironic_inspector_listen_port }}"
|
listen_port: "{{ ironic_inspector_listen_port }}"
|
||||||
ironic-tftp:
|
ironic-tftp:
|
||||||
container_name: ironic_tftp
|
container_name: ironic_tftp
|
||||||
@ -259,8 +261,8 @@ ironic_dnsmasq_extra_volumes: "{{ ironic_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
ironic_inspector_keystone_user: "ironic-inspector"
|
ironic_inspector_keystone_user: "ironic-inspector"
|
||||||
|
|
||||||
ironic_inspector_internal_endpoint: "{{ internal_protocol }}://{{ ironic_inspector_internal_fqdn | put_address_in_context('url') }}:{{ ironic_inspector_port }}"
|
ironic_inspector_internal_endpoint: "{{ ironic_inspector_internal_fqdn | kolla_url(internal_protocol, ironic_inspector_port) }}"
|
||||||
ironic_inspector_public_endpoint: "{{ public_protocol }}://{{ ironic_inspector_external_fqdn | put_address_in_context('url') }}:{{ ironic_inspector_port }}"
|
ironic_inspector_public_endpoint: "{{ ironic_inspector_external_fqdn | kolla_url(public_protocol, ironic_inspector_public_port) }}"
|
||||||
|
|
||||||
ironic_logging_debug: "{{ openstack_logging_debug }}"
|
ironic_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -14,13 +14,14 @@ keystone_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
tls_backend: "{{ keystone_enable_tls_backend }}"
|
tls_backend: "{{ keystone_enable_tls_backend }}"
|
||||||
port: "{{ keystone_public_port }}"
|
port: "{{ keystone_internal_port }}"
|
||||||
listen_port: "{{ keystone_public_listen_port }}"
|
listen_port: "{{ keystone_internal_listen_port }}"
|
||||||
backend_http_extra: "{{ ['balance source'] if enable_keystone_federation | bool else [] }}"
|
backend_http_extra: "{{ ['balance source'] if enable_keystone_federation | bool else [] }}"
|
||||||
keystone_external:
|
keystone_external:
|
||||||
enabled: "{{ enable_keystone }}"
|
enabled: "{{ enable_keystone }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ keystone_external_fqdn }}"
|
||||||
tls_backend: "{{ keystone_enable_tls_backend }}"
|
tls_backend: "{{ keystone_enable_tls_backend }}"
|
||||||
port: "{{ keystone_public_port }}"
|
port: "{{ keystone_public_port }}"
|
||||||
listen_port: "{{ keystone_public_listen_port }}"
|
listen_port: "{{ keystone_public_listen_port }}"
|
||||||
|
@ -150,3 +150,15 @@ kolla_externally_managed_cert: False
|
|||||||
# Allow to disable keepalived tracking script (e.g. for single node environments
|
# Allow to disable keepalived tracking script (e.g. for single node environments
|
||||||
# where this proves problematic in some cases)
|
# where this proves problematic in some cases)
|
||||||
keepalived_track_script_enabled: True
|
keepalived_track_script_enabled: True
|
||||||
|
|
||||||
|
# Default backend for single external frontend (for missing mappings)
|
||||||
|
haproxy_external_single_frontend_default_backend: "horizon_external_back"
|
||||||
|
|
||||||
|
haproxy_external_single_frontend_public_port: "443"
|
||||||
|
|
||||||
|
haproxy_external_single_frontend_options:
|
||||||
|
- option httplog
|
||||||
|
- option forwardfor
|
||||||
|
- "timeout client {{ haproxy_glance_api_client_timeout }}"
|
||||||
|
|
||||||
|
haproxy_glance_api_client_timeout: "6h"
|
||||||
|
@ -156,6 +156,21 @@
|
|||||||
notify:
|
notify:
|
||||||
- Restart proxysql container
|
- Restart proxysql container
|
||||||
|
|
||||||
|
- name: Copying over haproxy single external frontend config
|
||||||
|
vars:
|
||||||
|
service: "{{ loadbalancer_services['haproxy'] }}"
|
||||||
|
template:
|
||||||
|
src: "haproxy/haproxy_external_frontend.cfg.j2"
|
||||||
|
dest: "{{ node_config_directory }}/haproxy/services.d/external-frontend.cfg"
|
||||||
|
mode: "0660"
|
||||||
|
become: true
|
||||||
|
when:
|
||||||
|
- inventory_hostname in groups[service.group]
|
||||||
|
- service.enabled | bool
|
||||||
|
- haproxy_single_external_frontend | bool
|
||||||
|
notify:
|
||||||
|
- Restart haproxy container
|
||||||
|
|
||||||
- name: Copying over custom haproxy services configuration
|
- name: Copying over custom haproxy services configuration
|
||||||
vars:
|
vars:
|
||||||
service: "{{ loadbalancer_services['haproxy'] }}"
|
service: "{{ loadbalancer_services['haproxy'] }}"
|
||||||
|
@ -19,6 +19,13 @@
|
|||||||
"owner": "root",
|
"owner": "root",
|
||||||
"perm": "0700"
|
"perm": "0700"
|
||||||
},
|
},
|
||||||
|
{
|
||||||
|
"source": "{{ container_config_directory }}/external-frontend-map",
|
||||||
|
"dest": "/etc/haproxy/external-frontend-map",
|
||||||
|
"owner": "root",
|
||||||
|
"perm": "0600",
|
||||||
|
"optional": {{ (not haproxy_single_external_frontend | bool) | string | lower }}
|
||||||
|
},
|
||||||
{
|
{
|
||||||
"source": "{{ container_config_directory }}/haproxy.pem",
|
"source": "{{ container_config_directory }}/haproxy.pem",
|
||||||
"dest": "/etc/haproxy/haproxy.pem",
|
"dest": "/etc/haproxy/haproxy.pem",
|
||||||
|
@ -0,0 +1,11 @@
|
|||||||
|
{%- set external_tls_bind_info = 'ssl crt /etc/haproxy/haproxy.pem' if kolla_enable_tls_external|bool else '' %}
|
||||||
|
|
||||||
|
frontend external_frontend
|
||||||
|
mode http
|
||||||
|
http-request del-header X-Forwarded-Proto
|
||||||
|
{% for http_option in haproxy_external_single_frontend_options %}
|
||||||
|
{{ http_option }}
|
||||||
|
{% endfor %}
|
||||||
|
http-request set-header X-Forwarded-Proto https if { ssl_fc }
|
||||||
|
bind {{ kolla_external_vip_address }}:{{ haproxy_external_single_frontend_public_port }} {{ external_tls_bind_info }}
|
||||||
|
use_backend %[req.hdr(host),lower,map_dom(/etc/haproxy/external-frontend-map,{{ haproxy_external_single_frontend_default_backend }})]
|
@ -16,11 +16,14 @@ magnum_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ magnum_api_port }}"
|
port: "{{ magnum_api_port }}"
|
||||||
|
listen_port: "{{ magnum_api_listen_port }}"
|
||||||
magnum_api_external:
|
magnum_api_external:
|
||||||
enabled: "{{ enable_magnum }}"
|
enabled: "{{ enable_magnum }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ magnum_api_port }}"
|
external_fqdn: "{{ magnum_external_fqdn }}"
|
||||||
|
port: "{{ magnum_api_public_port }}"
|
||||||
|
listen_port: "{{ magnum_api_listen_port }}"
|
||||||
magnum-conductor:
|
magnum-conductor:
|
||||||
container_name: magnum_conductor
|
container_name: magnum_conductor
|
||||||
group: magnum-conductor
|
group: magnum-conductor
|
||||||
@ -133,8 +136,8 @@ magnum_conductor_container_proxy: "{{ container_proxy }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
magnum_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ magnum_api_port }}/v1"
|
magnum_internal_endpoint: "{{ magnum_internal_fqdn | kolla_url(internal_protocol, magnum_api_port, '/v1') }}"
|
||||||
magnum_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ magnum_api_port }}/v1"
|
magnum_public_endpoint: "{{ magnum_external_fqdn | kolla_url(public_protocol, magnum_api_public_port, '/v1') }}"
|
||||||
|
|
||||||
magnum_logging_debug: "{{ openstack_logging_debug }}"
|
magnum_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -14,11 +14,14 @@ manila_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ manila_api_port }}"
|
port: "{{ manila_api_port }}"
|
||||||
|
listen_port: "{{ manila_api_listen_port }}"
|
||||||
manila_api_external:
|
manila_api_external:
|
||||||
enabled: "{{ enable_manila }}"
|
enabled: "{{ enable_manila }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ manila_api_port }}"
|
external_fqdn: "{{ manila_external_fqdn }}"
|
||||||
|
port: "{{ manila_api_public_port }}"
|
||||||
|
listen_port: "{{ manila_api_listen_port }}"
|
||||||
manila-scheduler:
|
manila-scheduler:
|
||||||
container_name: "manila_scheduler"
|
container_name: "manila_scheduler"
|
||||||
group: "manila-scheduler"
|
group: "manila-scheduler"
|
||||||
@ -190,8 +193,8 @@ manila_data_extra_volumes: "{{ manila_extra_volumes }}"
|
|||||||
#####################
|
#####################
|
||||||
## OpenStack
|
## OpenStack
|
||||||
#####################
|
#####################
|
||||||
manila_internal_base_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ manila_api_port }}"
|
manila_internal_base_endpoint: "{{ manila_internal_fqdn | kolla_url(internal_protocol, manila_api_port) }}"
|
||||||
manila_public_base_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ manila_api_port }}"
|
manila_public_base_endpoint: "{{ manila_external_fqdn | kolla_url(public_protocol, manila_api_public_port) }}"
|
||||||
|
|
||||||
manila_internal_endpoint: "{{ manila_internal_base_endpoint }}/v1/%(tenant_id)s"
|
manila_internal_endpoint: "{{ manila_internal_base_endpoint }}/v1/%(tenant_id)s"
|
||||||
manila_public_endpoint: "{{ manila_public_base_endpoint }}/v1/%(tenant_id)s"
|
manila_public_endpoint: "{{ manila_public_base_endpoint }}/v1/%(tenant_id)s"
|
||||||
|
@ -13,11 +13,14 @@ masakari_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ masakari_api_port }}"
|
port: "{{ masakari_api_port }}"
|
||||||
|
listen_port: "{{ masakari_api_listen_port }}"
|
||||||
masakari_api_external:
|
masakari_api_external:
|
||||||
enabled: "{{ enable_masakari }}"
|
enabled: "{{ enable_masakari }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ masakari_api_port }}"
|
external_fqdn: "{{ masakari_external_fqdn }}"
|
||||||
|
port: "{{ masakari_api_public_port }}"
|
||||||
|
listen_port: "{{ masakari_api_listen_port }}"
|
||||||
masakari-engine:
|
masakari-engine:
|
||||||
container_name: masakari_engine
|
container_name: masakari_engine
|
||||||
group: masakari-engine
|
group: masakari-engine
|
||||||
@ -130,8 +133,8 @@ masakari_hostmonitor_default_volumes:
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
masakari_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ masakari_api_port }}"
|
masakari_internal_endpoint: "{{ masakari_internal_fqdn | kolla_url(internal_protocol, masakari_api_port) }}"
|
||||||
masakari_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ masakari_api_port }}"
|
masakari_public_endpoint: "{{ masakari_external_fqdn | kolla_url(public_protocol, masakari_api_public_port) }}"
|
||||||
|
|
||||||
masakari_logging_debug: "{{ openstack_logging_debug }}"
|
masakari_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -14,11 +14,14 @@ mistral_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ mistral_api_port }}"
|
port: "{{ mistral_api_port }}"
|
||||||
|
listen_port: "{{ mistral_api_listen_port }}"
|
||||||
mistral_api_external:
|
mistral_api_external:
|
||||||
enabled: "{{ enable_mistral }}"
|
enabled: "{{ enable_mistral }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ mistral_api_port }}"
|
external_fqdn: "{{ mistral_external_fqdn }}"
|
||||||
|
port: "{{ mistral_api_public_port }}"
|
||||||
|
listen_port: "{{ mistral_api_listen_port }}"
|
||||||
mistral-engine:
|
mistral-engine:
|
||||||
container_name: mistral_engine
|
container_name: mistral_engine
|
||||||
group: mistral-engine
|
group: mistral-engine
|
||||||
@ -184,10 +187,10 @@ mistral_api_extra_volumes: "{{ mistral_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
mistral_internal_base_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ mistral_api_port }}"
|
mistral_internal_base_endpoint: "{{ mistral_internal_fqdn | kolla_url(internal_protocol, mistral_api_port) }}"
|
||||||
|
|
||||||
mistral_internal_endpoint: "{{ mistral_internal_base_endpoint }}/v2"
|
mistral_internal_endpoint: "{{ mistral_internal_base_endpoint }}/v2"
|
||||||
mistral_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ mistral_api_port }}/v2"
|
mistral_public_endpoint: "{{ mistral_external_fqdn | kolla_url(public_protocol, mistral_api_public_port, '/v2') }}"
|
||||||
|
|
||||||
mistral_logging_debug: "{{ openstack_logging_debug }}"
|
mistral_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -13,11 +13,14 @@ monasca_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ monasca_api_port }}"
|
port: "{{ monasca_api_port }}"
|
||||||
|
listen_port: "{{ monasca_api_listen_port }}"
|
||||||
monasca_api_external:
|
monasca_api_external:
|
||||||
enabled: false
|
enabled: false
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ monasca_api_port }}"
|
external_fqdn: "{{ monasca_external_fqdn }}"
|
||||||
|
port: "{{ monasca_api_public_port }}"
|
||||||
|
listen_port: "{{ monasca_api_listen_port }}"
|
||||||
monasca-log-persister:
|
monasca-log-persister:
|
||||||
container_name: monasca_log_persister
|
container_name: monasca_log_persister
|
||||||
group: monasca-log-persister
|
group: monasca-log-persister
|
||||||
|
@ -13,11 +13,14 @@ murano_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ murano_api_port }}"
|
port: "{{ murano_api_port }}"
|
||||||
|
listen_port: "{{ murano_api_listen_port }}"
|
||||||
murano_api_external:
|
murano_api_external:
|
||||||
enabled: "{{ enable_murano }}"
|
enabled: "{{ enable_murano }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ murano_api_port }}"
|
external_fqdn: "{{ murano_external_fqdn }}"
|
||||||
|
port: "{{ murano_api_public_port }}"
|
||||||
|
listen_port: "{{ murano_api_listen_port }}"
|
||||||
murano-engine:
|
murano-engine:
|
||||||
container_name: murano_engine
|
container_name: murano_engine
|
||||||
group: murano-engine
|
group: murano-engine
|
||||||
@ -90,8 +93,8 @@ murano_engine_extra_volumes: "{{ murano_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
murano_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ murano_api_port }}"
|
murano_internal_endpoint: "{{ murano_internal_fqdn | kolla_url(internal_protocol, murano_api_port) }}"
|
||||||
murano_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ murano_api_port }}"
|
murano_public_endpoint: "{{ murano_external_fqdn | kolla_url(public_protocol, murano_api_public_port) }}"
|
||||||
|
|
||||||
murano_logging_debug: "{{ openstack_logging_debug }}"
|
murano_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -81,7 +81,7 @@ policy_file = {{ murano_policy_file }}
|
|||||||
|
|
||||||
{% if service_name == 'murano-engine' %}
|
{% if service_name == 'murano-engine' %}
|
||||||
[rabbitmq]
|
[rabbitmq]
|
||||||
host = {{ kolla_external_fqdn }}
|
host = {{ rabbitmq_external_fqdn }}
|
||||||
port = {{ outward_rabbitmq_port }}
|
port = {{ outward_rabbitmq_port }}
|
||||||
login = {{ murano_agent_rabbitmq_user }}
|
login = {{ murano_agent_rabbitmq_user }}
|
||||||
password = {{ murano_agent_rabbitmq_password }}
|
password = {{ murano_agent_rabbitmq_password }}
|
||||||
|
@ -20,7 +20,8 @@ neutron_services:
|
|||||||
enabled: "{{ enable_neutron | bool and not neutron_enable_tls_backend | bool }}"
|
enabled: "{{ enable_neutron | bool and not neutron_enable_tls_backend | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ neutron_server_port }}"
|
external_fqdn: "{{ neutron_external_fqdn }}"
|
||||||
|
port: "{{ neutron_server_public_port }}"
|
||||||
listen_port: "{{ neutron_server_listen_port }}"
|
listen_port: "{{ neutron_server_listen_port }}"
|
||||||
neutron-openvswitch-agent:
|
neutron-openvswitch-agent:
|
||||||
container_name: "neutron_openvswitch_agent"
|
container_name: "neutron_openvswitch_agent"
|
||||||
@ -194,6 +195,7 @@ neutron_services:
|
|||||||
enabled: "{{ enable_neutron | bool and neutron_enable_tls_backend | bool }}"
|
enabled: "{{ enable_neutron | bool and neutron_enable_tls_backend | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ neutron_external_fqdn }}"
|
||||||
port: "{{ neutron_server_port }}"
|
port: "{{ neutron_server_port }}"
|
||||||
listen_port: "{{ neutron_server_listen_port }}"
|
listen_port: "{{ neutron_server_listen_port }}"
|
||||||
tls_backend: "yes"
|
tls_backend: "yes"
|
||||||
|
@ -48,7 +48,8 @@
|
|||||||
enabled: "{{ hostvars[groups[cell_proxy_group][0]]['nova_console'] == 'novnc' }}"
|
enabled: "{{ hostvars[groups[cell_proxy_group][0]]['nova_console'] == 'novnc' }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_novncproxy_port'] }}"
|
external_fqdn: "{{ hostvars[groups[cell_proxy_group][0]]['nova_novncproxy_fqdn'] }}"
|
||||||
|
port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_novncproxy_public_port'] }}"
|
||||||
listen_port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_novncproxy_listen_port'] }}"
|
listen_port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_novncproxy_listen_port'] }}"
|
||||||
backend_http_extra:
|
backend_http_extra:
|
||||||
- "timeout tunnel 1h"
|
- "timeout tunnel 1h"
|
||||||
@ -84,7 +85,8 @@
|
|||||||
enabled: "{{ hostvars[groups[cell_proxy_group][0]]['nova_console'] == 'spice' }}"
|
enabled: "{{ hostvars[groups[cell_proxy_group][0]]['nova_console'] == 'spice' }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_spicehtml5proxy_port'] }}"
|
external_fqdn: "{{ hostvars[groups[cell_proxy_group][0]]['nova_spicehtml5proxy_fqdn'] }}"
|
||||||
|
port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_spicehtml5proxy_public_port'] }}"
|
||||||
listen_port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_spicehtml5proxy_listen_port'] }}"
|
listen_port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_spicehtml5proxy_listen_port'] }}"
|
||||||
backend_http_extra:
|
backend_http_extra:
|
||||||
- "timeout tunnel {{ haproxy_nova_spicehtml5_proxy_tunnel_timeout }}"
|
- "timeout tunnel {{ haproxy_nova_spicehtml5_proxy_tunnel_timeout }}"
|
||||||
@ -120,7 +122,8 @@
|
|||||||
enabled: "{{ hostvars[groups[cell_proxy_group][0]]['enable_nova_serialconsole_proxy'] | bool }}"
|
enabled: "{{ hostvars[groups[cell_proxy_group][0]]['enable_nova_serialconsole_proxy'] | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_serialproxy_port'] }}"
|
external_fqdn: "{{ hostvars[groups[cell_proxy_group][0]]['nova_serialproxy_fqdn'] }}"
|
||||||
|
port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_serialproxy_public_port'] }}"
|
||||||
listen_port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_serialproxy_listen_port'] }}"
|
listen_port: "{{ hostvars[groups[cell_proxy_group][0]]['nova_serialproxy_listen_port'] }}"
|
||||||
backend_http_extra:
|
backend_http_extra:
|
||||||
- "timeout tunnel {{ haproxy_nova_serialconsole_proxy_tunnel_timeout }}"
|
- "timeout tunnel {{ haproxy_nova_serialconsole_proxy_tunnel_timeout }}"
|
||||||
|
@ -49,7 +49,7 @@ novncproxy_port = {{ nova_novncproxy_listen_port }}
|
|||||||
server_listen = {{ api_interface_address }}
|
server_listen = {{ api_interface_address }}
|
||||||
server_proxyclient_address = {{ api_interface_address }}
|
server_proxyclient_address = {{ api_interface_address }}
|
||||||
{% if inventory_hostname in groups[nova_cell_compute_group] %}
|
{% if inventory_hostname in groups[nova_cell_compute_group] %}
|
||||||
novncproxy_base_url = {{ public_protocol }}://{{ nova_novncproxy_fqdn | put_address_in_context('url') }}:{{ nova_novncproxy_port }}/vnc_lite.html
|
novncproxy_base_url = {{ nova_novncproxy_fqdn | kolla_url(public_protocol, nova_novncproxy_public_port, '/vnc_lite.html') }}
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% elif nova_console == 'spice' %}
|
{% elif nova_console == 'spice' %}
|
||||||
@ -61,7 +61,7 @@ enabled = true
|
|||||||
server_listen = {{ api_interface_address }}
|
server_listen = {{ api_interface_address }}
|
||||||
server_proxyclient_address = {{ api_interface_address }}
|
server_proxyclient_address = {{ api_interface_address }}
|
||||||
{% if inventory_hostname in groups[nova_cell_compute_group] %}
|
{% if inventory_hostname in groups[nova_cell_compute_group] %}
|
||||||
html5proxy_base_url = {{ public_protocol }}://{{ nova_spicehtml5proxy_fqdn | put_address_in_context('url') }}:{{ nova_spicehtml5proxy_port }}/spice_auto.html
|
html5proxy_base_url = {{ nova_spicehtml5proxy_fqdn | kolla_url(public_protocol, nova_spicehtml5proxy_public_port, '/spice_auto.html') }}
|
||||||
{% endif %}
|
{% endif %}
|
||||||
html5proxy_host = {{ api_interface_address }}
|
html5proxy_host = {{ api_interface_address }}
|
||||||
html5proxy_port = {{ nova_spicehtml5proxy_listen_port }}
|
html5proxy_port = {{ nova_spicehtml5proxy_listen_port }}
|
||||||
@ -74,7 +74,7 @@ enabled = false
|
|||||||
{% if enable_nova_serialconsole_proxy | bool %}
|
{% if enable_nova_serialconsole_proxy | bool %}
|
||||||
[serial_console]
|
[serial_console]
|
||||||
enabled = true
|
enabled = true
|
||||||
base_url = {{ nova_serialproxy_protocol }}://{{ nova_serialproxy_fqdn | put_address_in_context('url') }}:{{ nova_serialproxy_port }}/
|
base_url = {{ nova_serialproxy_fqdn | kolla_url(nova_serialproxy_protocol, nova_serialproxy_public_port) }}/
|
||||||
serialproxy_host = {{ api_interface_address }}
|
serialproxy_host = {{ api_interface_address }}
|
||||||
serialproxy_port = {{ nova_serialproxy_listen_port }}
|
serialproxy_port = {{ nova_serialproxy_listen_port }}
|
||||||
proxyclient_address = {{ api_interface_address }}
|
proxyclient_address = {{ api_interface_address }}
|
||||||
|
@ -21,7 +21,8 @@ nova_services:
|
|||||||
enabled: "{{ enable_nova }}"
|
enabled: "{{ enable_nova }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ nova_api_port }}"
|
external_fqdn: "{{ nova_external_fqdn }}"
|
||||||
|
port: "{{ nova_api_public_port }}"
|
||||||
listen_port: "{{ nova_api_listen_port }}"
|
listen_port: "{{ nova_api_listen_port }}"
|
||||||
tls_backend: "{{ nova_enable_tls_backend }}"
|
tls_backend: "{{ nova_enable_tls_backend }}"
|
||||||
nova_metadata:
|
nova_metadata:
|
||||||
@ -35,6 +36,7 @@ nova_services:
|
|||||||
enabled: "{{ nova_enable_external_metadata }}"
|
enabled: "{{ nova_enable_external_metadata }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ nova_metadata_external_fqdn }}"
|
||||||
port: "{{ nova_metadata_port }}"
|
port: "{{ nova_metadata_port }}"
|
||||||
listen_port: "{{ nova_metadata_listen_port }}"
|
listen_port: "{{ nova_metadata_listen_port }}"
|
||||||
tls_backend: "{{ nova_enable_tls_backend }}"
|
tls_backend: "{{ nova_enable_tls_backend }}"
|
||||||
@ -196,8 +198,8 @@ nova_api_bootstrap_extra_volumes: "{{ nova_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
nova_internal_base_endpoint: "{{ internal_protocol }}://{{ nova_internal_fqdn | put_address_in_context('url') }}:{{ nova_api_port }}"
|
nova_internal_base_endpoint: "{{ nova_internal_fqdn | kolla_url(internal_protocol, nova_api_port) }}"
|
||||||
nova_public_base_endpoint: "{{ public_protocol }}://{{ nova_external_fqdn | put_address_in_context('url') }}:{{ nova_api_port }}"
|
nova_public_base_endpoint: "{{ nova_external_fqdn | kolla_url(public_protocol, nova_api_public_port) }}"
|
||||||
|
|
||||||
nova_legacy_internal_endpoint: "{{ nova_internal_base_endpoint }}/v2/%(tenant_id)s"
|
nova_legacy_internal_endpoint: "{{ nova_internal_base_endpoint }}/v2/%(tenant_id)s"
|
||||||
nova_legacy_public_endpoint: "{{ nova_public_base_endpoint }}/v2/%(tenant_id)s"
|
nova_legacy_public_endpoint: "{{ nova_public_base_endpoint }}/v2/%(tenant_id)s"
|
||||||
|
@ -20,7 +20,8 @@ octavia_services:
|
|||||||
enabled: "{{ enable_octavia }}"
|
enabled: "{{ enable_octavia }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ octavia_api_port }}"
|
external_fqdn: "{{ octavia_external_fqdn }}"
|
||||||
|
port: "{{ octavia_api_public_port }}"
|
||||||
listen_port: "{{ octavia_api_listen_port }}"
|
listen_port: "{{ octavia_api_listen_port }}"
|
||||||
tls_backend: "{{ octavia_enable_tls_backend }}"
|
tls_backend: "{{ octavia_enable_tls_backend }}"
|
||||||
octavia-driver-agent:
|
octavia-driver-agent:
|
||||||
|
@ -40,7 +40,9 @@ opensearch_services:
|
|||||||
enabled: "{{ enable_opensearch_dashboards_external | bool }}"
|
enabled: "{{ enable_opensearch_dashboards_external | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ opensearch_dashboards_external_fqdn }}"
|
||||||
port: "{{ opensearch_dashboards_port_external }}"
|
port: "{{ opensearch_dashboards_port_external }}"
|
||||||
|
listen_port: "{{ opensearch_dashboards_listen_port }}"
|
||||||
auth_user: "{{ opensearch_dashboards_user }}"
|
auth_user: "{{ opensearch_dashboards_user }}"
|
||||||
auth_pass: "{{ opensearch_dashboards_password }}"
|
auth_pass: "{{ opensearch_dashboards_password }}"
|
||||||
|
|
||||||
|
@ -20,7 +20,8 @@ placement_services:
|
|||||||
enabled: "{{ enable_placement }}"
|
enabled: "{{ enable_placement }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ placement_api_port }}"
|
external_fqdn: "{{ placement_external_fqdn }}"
|
||||||
|
port: "{{ placement_api_public_port }}"
|
||||||
listen_port: "{{ placement_api_listen_port }}"
|
listen_port: "{{ placement_api_listen_port }}"
|
||||||
tls_backend: "{{ placement_enable_tls_backend }}"
|
tls_backend: "{{ placement_enable_tls_backend }}"
|
||||||
|
|
||||||
@ -88,8 +89,8 @@ placement_api_extra_volumes: "{{ default_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
placement_internal_endpoint: "{{ internal_protocol }}://{{ placement_internal_fqdn | put_address_in_context('url') }}:{{ placement_api_port }}"
|
placement_internal_endpoint: "{{ placement_internal_fqdn | kolla_url(internal_protocol, placement_api_port) }}"
|
||||||
placement_public_endpoint: "{{ public_protocol }}://{{ placement_external_fqdn | put_address_in_context('url') }}:{{ placement_api_port }}"
|
placement_public_endpoint: "{{ placement_external_fqdn | kolla_url(public_protocol, placement_api_public_port) }}"
|
||||||
|
|
||||||
placement_logging_debug: "{{ openstack_logging_debug }}"
|
placement_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -70,7 +70,9 @@ prometheus_services:
|
|||||||
enabled: "{{ enable_prometheus_alertmanager_external | bool }}"
|
enabled: "{{ enable_prometheus_alertmanager_external | bool }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ prometheus_alertmanager_port }}"
|
external_fqdn: "{{ prometheus_alertmanager_external_fqdn }}"
|
||||||
|
port: "{{ prometheus_alertmanager_public_port }}"
|
||||||
|
listen_port: "{{ prometheus_alertmanager_listen_port }}"
|
||||||
auth_user: "{{ prometheus_alertmanager_user }}"
|
auth_user: "{{ prometheus_alertmanager_user }}"
|
||||||
auth_pass: "{{ prometheus_alertmanager_password }}"
|
auth_pass: "{{ prometheus_alertmanager_password }}"
|
||||||
active_passive: "{{ prometheus_alertmanager_active_passive | bool }}"
|
active_passive: "{{ prometheus_alertmanager_active_passive | bool }}"
|
||||||
@ -149,7 +151,7 @@ prometheus_alertmanager_active_passive: true
|
|||||||
# 'service_name:blackbox_exporter_module:endpoint' for example:
|
# 'service_name:blackbox_exporter_module:endpoint' for example:
|
||||||
#
|
#
|
||||||
# prometheus_blackbox_exporter_targets:
|
# prometheus_blackbox_exporter_targets:
|
||||||
# - 'glance:os_endpoint:{{ external_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ glance_api_port}}'
|
# - 'glance:os_endpoint:{{ external_protocol }}://{{ glance_external_fqdn | put_address_in_context('url') }}:{{ glance_api_port}}'
|
||||||
#
|
#
|
||||||
# For a list of modules see the alertmanager config.
|
# For a list of modules see the alertmanager config.
|
||||||
prometheus_blackbox_exporter_endpoints: []
|
prometheus_blackbox_exporter_endpoints: []
|
||||||
|
@ -32,6 +32,7 @@ rabbitmq_services:
|
|||||||
enabled: "{{ enable_outward_rabbitmq }}"
|
enabled: "{{ enable_outward_rabbitmq }}"
|
||||||
mode: "tcp"
|
mode: "tcp"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ outward_rabbitmq_external_fqdn }}"
|
||||||
port: "{{ outward_rabbitmq_port }}"
|
port: "{{ outward_rabbitmq_port }}"
|
||||||
host_group: "outward-rabbitmq"
|
host_group: "outward-rabbitmq"
|
||||||
frontend_tcp_extra:
|
frontend_tcp_extra:
|
||||||
|
@ -14,11 +14,14 @@ sahara_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ sahara_api_port }}"
|
port: "{{ sahara_api_port }}"
|
||||||
|
listen_port: "{{ sahara_api_listen_port }}"
|
||||||
sahara_api_external:
|
sahara_api_external:
|
||||||
enabled: "{{ enable_sahara }}"
|
enabled: "{{ enable_sahara }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ sahara_api_port }}"
|
external_fqdn: "{{ sahara_external_fqdn }}"
|
||||||
|
port: "{{ sahara_api_public_port }}"
|
||||||
|
listen_port: "{{ sahara_api_listen_port }}"
|
||||||
sahara-engine:
|
sahara-engine:
|
||||||
container_name: sahara_engine
|
container_name: sahara_engine
|
||||||
group: sahara-engine
|
group: sahara-engine
|
||||||
@ -122,8 +125,8 @@ sahara_engine_extra_volumes: "{{ sahara_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
sahara_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ sahara_api_port }}"
|
sahara_internal_endpoint: "{{ sahara_internal_fqdn | kolla_url(internal_protocol, sahara_api_port) }}"
|
||||||
sahara_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ sahara_api_port }}"
|
sahara_public_endpoint: "{{ sahara_external_fqdn | kolla_url(public_protocol, sahara_api_public_port) }}"
|
||||||
|
|
||||||
sahara_logging_debug: "{{ openstack_logging_debug }}"
|
sahara_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -19,7 +19,8 @@ senlin_services:
|
|||||||
enabled: "{{ enable_senlin }}"
|
enabled: "{{ enable_senlin }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ senlin_api_port }}"
|
external_fqdn: "{{ senlin_external_fqdn }}"
|
||||||
|
port: "{{ senlin_api_public_port }}"
|
||||||
listen_port: "{{ senlin_api_listen_port }}"
|
listen_port: "{{ senlin_api_listen_port }}"
|
||||||
senlin-conductor:
|
senlin-conductor:
|
||||||
container_name: senlin_conductor
|
container_name: senlin_conductor
|
||||||
@ -186,8 +187,8 @@ senlin_health_manager_extra_volumes: "{{ senlin_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
senlin_internal_endpoint: "{{ internal_protocol }}://{{ senlin_internal_fqdn | put_address_in_context('url') }}:{{ senlin_api_port }}"
|
senlin_internal_endpoint: "{{ senlin_internal_fqdn | kolla_url(internal_protocol, senlin_api_port) }}"
|
||||||
senlin_public_endpoint: "{{ public_protocol }}://{{ senlin_external_fqdn | put_address_in_context('url') }}:{{ senlin_api_port }}"
|
senlin_public_endpoint: "{{ senlin_external_fqdn | kolla_url(public_protocol, senlin_api_public_port) }}"
|
||||||
|
|
||||||
senlin_logging_debug: "{{ openstack_logging_debug }}"
|
senlin_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -20,6 +20,7 @@ skyline_services:
|
|||||||
enabled: "{{ enable_skyline }}"
|
enabled: "{{ enable_skyline }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ skyline_apiserver_external_fqdn }}"
|
||||||
port: "{{ skyline_apiserver_port }}"
|
port: "{{ skyline_apiserver_port }}"
|
||||||
listen_port: "{{ skyline_apiserver_listen_port }}"
|
listen_port: "{{ skyline_apiserver_listen_port }}"
|
||||||
tls_backend: "{{ skyline_enable_tls_backend }}"
|
tls_backend: "{{ skyline_enable_tls_backend }}"
|
||||||
@ -43,6 +44,7 @@ skyline_services:
|
|||||||
enabled: "{{ enable_skyline }}"
|
enabled: "{{ enable_skyline }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ skyline_console_external_fqdn }}"
|
||||||
port: "{{ skyline_console_port }}"
|
port: "{{ skyline_console_port }}"
|
||||||
listen_port: "{{ skyline_console_listen_port }}"
|
listen_port: "{{ skyline_console_listen_port }}"
|
||||||
tls_backend: "{{ skyline_enable_tls_backend }}"
|
tls_backend: "{{ skyline_enable_tls_backend }}"
|
||||||
@ -128,8 +130,8 @@ skyline_console_extra_volumes: "{{ skyline_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
skyline_internal_endpoint: "{{ internal_protocol }}://{{ skyline_internal_fqdn | put_address_in_context('url') }}:{{ skyline_apiserver_port }}"
|
skyline_apiserver_internal_base_endpoint: "{{ skyline_apiserver_internal_fqdn | kolla_url(internal_protocol, skyline_apiserver_port) }}"
|
||||||
skyline_public_endpoint: "{{ public_protocol }}://{{ skyline_external_fqdn | put_address_in_context('url') }}:{{ skyline_apiserver_port }}"
|
skyline_apiserver_public_base_endpoint: "{{ skyline_apiserver_external_fqdn | kolla_url(public_protocol, skyline_apiserver_public_port) }}"
|
||||||
|
|
||||||
skyline_logging_debug: "{{ openstack_logging_debug }}"
|
skyline_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
@ -171,8 +173,8 @@ skyline_ks_services:
|
|||||||
type: "panel"
|
type: "panel"
|
||||||
description: "OpenStack Dashboard Service"
|
description: "OpenStack Dashboard Service"
|
||||||
endpoints:
|
endpoints:
|
||||||
- {'interface': 'internal', 'url': '{{ skyline_internal_endpoint }}'}
|
- {'interface': 'internal', 'url': '{{ skyline_apiserver_internal_base_endpoint }}'}
|
||||||
- {'interface': 'public', 'url': '{{ skyline_public_endpoint }}'}
|
- {'interface': 'public', 'url': '{{ skyline_apiserver_public_base_endpoint }}'}
|
||||||
|
|
||||||
skyline_ks_users:
|
skyline_ks_users:
|
||||||
- project: "service"
|
- project: "service"
|
||||||
|
@ -87,8 +87,8 @@ http {
|
|||||||
|
|
||||||
# Service: skyline
|
# Service: skyline
|
||||||
location {{ skyline_nginx_prefix }}/skyline/ {
|
location {{ skyline_nginx_prefix }}/skyline/ {
|
||||||
proxy_pass {{ internal_protocol }}://{{ skyline_internal_fqdn | put_address_in_context('url') }}:{{ skyline_apiserver_port }}/;
|
proxy_pass {{ internal_protocol }}://{{ skyline_apiserver_internal_fqdn | put_address_in_context('url') }}:{{ skyline_apiserver_port }}/;
|
||||||
proxy_redirect {{ internal_protocol }}://{{ skyline_internal_fqdn | put_address_in_context('url') }}:{{ skyline_apiserver_port }}/ {{ skyline_nginx_prefix }}/skyline/;
|
proxy_redirect {{ internal_protocol }}://{{ skyline_apiserver_internal_fqdn | put_address_in_context('url') }}:{{ skyline_apiserver_port }}/ {{ skyline_nginx_prefix }}/skyline/;
|
||||||
proxy_buffering off;
|
proxy_buffering off;
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
proxy_set_header X-Forwarded-Proto $scheme;
|
||||||
|
@ -30,24 +30,30 @@ solum_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ solum_application_deployment_port }}"
|
port: "{{ solum_application_deployment_port }}"
|
||||||
|
listen_port: "{{ solum_application_deployment_listen_port }}"
|
||||||
host_group: "solum-application-deployment"
|
host_group: "solum-application-deployment"
|
||||||
solum_application_deployment_external:
|
solum_application_deployment_external:
|
||||||
enabled: "{{ enable_solum }}"
|
enabled: "{{ enable_solum }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ solum_application_deployment_port }}"
|
external_fqdn: "{{ solum_application_deployment_external_fqdn }}"
|
||||||
|
port: "{{ solum_application_deployment_public_port }}"
|
||||||
|
listen_port: "{{ solum_application_deployment_listen_port }}"
|
||||||
host_group: "solum-application-deployment"
|
host_group: "solum-application-deployment"
|
||||||
solum_image_builder:
|
solum_image_builder:
|
||||||
enabled: "{{ enable_solum }}"
|
enabled: "{{ enable_solum }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ solum_image_builder_port }}"
|
port: "{{ solum_image_builder_port }}"
|
||||||
|
listen_port: "{{ solum_image_builder_listen_port }}"
|
||||||
host_group: "solum-image-builder"
|
host_group: "solum-image-builder"
|
||||||
solum_image_builder_external:
|
solum_image_builder_external:
|
||||||
enabled: "{{ enable_solum }}"
|
enabled: "{{ enable_solum }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ solum_image_builder_port }}"
|
external_fqdn: "{{ solum_image_builder_external_fqdn }}"
|
||||||
|
port: "{{ solum_image_builder_public_port }}"
|
||||||
|
listen_port: "{{ solum_image_builder_listen_port }}"
|
||||||
host_group: "solum-image-builder"
|
host_group: "solum-image-builder"
|
||||||
solum-conductor:
|
solum-conductor:
|
||||||
container_name: solum_conductor
|
container_name: solum_conductor
|
||||||
@ -198,11 +204,11 @@ solum_conductor_extra_volumes: "{{ solum_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
solum_image_builder_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ solum_image_builder_port }}"
|
solum_image_builder_internal_endpoint: "{{ solum_image_builder_internal_fqdn | kolla_url(internal_protocol, solum_image_builder_port) }}"
|
||||||
solum_image_builder_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ solum_image_builder_port }}"
|
solum_image_builder_public_endpoint: "{{ solum_image_builder_external_fqdn | kolla_url(public_protocol, solum_image_builder_public_port) }}"
|
||||||
|
|
||||||
solum_application_deployment_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ solum_application_deployment_port }}"
|
solum_application_deployment_internal_endpoint: "{{ solum_application_deployment_internal_fqdn | kolla_url(internal_protocol, solum_application_deployment_port) }}"
|
||||||
solum_application_deployment_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ solum_application_deployment_port }}"
|
solum_application_deployment_public_endpoint: "{{ solum_application_deployment_external_fqdn | kolla_url(public_protocol, solum_application_deployment_public_port) }}"
|
||||||
|
|
||||||
solum_logging_debug: "{{ openstack_logging_debug }}"
|
solum_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -13,6 +13,7 @@ swift_services:
|
|||||||
enabled: "{{ enable_swift }}"
|
enabled: "{{ enable_swift }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ swift_external_fqdn }}"
|
||||||
port: "{{ swift_proxy_server_listen_port }}"
|
port: "{{ swift_proxy_server_listen_port }}"
|
||||||
|
|
||||||
####################
|
####################
|
||||||
|
@ -15,12 +15,15 @@ tacker_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ tacker_server_port }}"
|
port: "{{ tacker_server_port }}"
|
||||||
|
listen_port: "{{ tacker_server_listen_port }}"
|
||||||
custom_member_list: "{{ tacker_haproxy_members.split(';') }}"
|
custom_member_list: "{{ tacker_haproxy_members.split(';') }}"
|
||||||
tacker_server_external:
|
tacker_server_external:
|
||||||
enabled: "{{ enable_tacker }}"
|
enabled: "{{ enable_tacker }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ tacker_server_port }}"
|
external_fqdn: "{{ tacker_external_fqdn }}"
|
||||||
|
port: "{{ tacker_server_public_port }}"
|
||||||
|
listen_port: "{{ tacker_server_listen_port }}"
|
||||||
custom_member_list: "{{ tacker_haproxy_members.split(';') }}"
|
custom_member_list: "{{ tacker_haproxy_members.split(';') }}"
|
||||||
tacker-conductor:
|
tacker-conductor:
|
||||||
container_name: "tacker_conductor"
|
container_name: "tacker_conductor"
|
||||||
@ -134,8 +137,8 @@ tacker_hosts: "{{ [groups['tacker'] | first] }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
tacker_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ tacker_server_port }}"
|
tacker_internal_endpoint: "{{ tacker_internal_fqdn | kolla_url(internal_protocol, tacker_server_port) }}"
|
||||||
tacker_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ tacker_server_port }}"
|
tacker_public_endpoint: "{{ tacker_external_fqdn | kolla_url(public_protocol, tacker_server_public_port) }}"
|
||||||
|
|
||||||
tacker_logging_debug: "{{ openstack_logging_debug }}"
|
tacker_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -20,9 +20,10 @@ trove_services:
|
|||||||
enabled: "{{ enable_trove }}"
|
enabled: "{{ enable_trove }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ trove_api_port }}"
|
|
||||||
listen_port: "{{ trove_api_listen_port }}"
|
listen_port: "{{ trove_api_listen_port }}"
|
||||||
tls_backend: "{{ trove_enable_tls_backend }}"
|
tls_backend: "{{ trove_enable_tls_backend }}"
|
||||||
|
external_fqdn: "{{ trove_external_fqdn }}"
|
||||||
|
port: "{{ trove_api_public_port }}"
|
||||||
trove-conductor:
|
trove-conductor:
|
||||||
container_name: trove_conductor
|
container_name: trove_conductor
|
||||||
group: trove-conductor
|
group: trove-conductor
|
||||||
@ -158,8 +159,8 @@ trove_taskmanager_extra_volumes: "{{ trove_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
trove_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ trove_api_port }}/v1.0/%(tenant_id)s"
|
trove_internal_endpoint: "{{ trove_internal_fqdn | kolla_url(internal_protocol, trove_api_port, '/v1.0/%(tenant_id)s') }}"
|
||||||
trove_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ trove_api_port }}/v1.0/%(tenant_id)s"
|
trove_public_endpoint: "{{ trove_external_fqdn | kolla_url(public_protocol, trove_api_public_port, '/v1.0/%(tenant_id)s') }}"
|
||||||
|
|
||||||
trove_logging_debug: "{{ openstack_logging_debug }}"
|
trove_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -18,6 +18,7 @@ venus_services:
|
|||||||
enabled: "{{ enable_venus }}"
|
enabled: "{{ enable_venus }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ venus_external_fqdn }}"
|
||||||
port: "{{ venus_api_port }}"
|
port: "{{ venus_api_port }}"
|
||||||
venus-manager:
|
venus-manager:
|
||||||
container_name: venus_manager
|
container_name: venus_manager
|
||||||
@ -93,8 +94,8 @@ venus_manager_extra_volumes: "{{ venus_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
venus_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ venus_api_port }}/v1.0/%(tenant_id)s"
|
venus_internal_endpoint: "{{ venus_internal_fqdn | kolla_url(internal_protocol, venus_api_port) }}"
|
||||||
venus_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ venus_api_port }}/v1.0/%(tenant_id)s"
|
venus_public_endpoint: "{{ venus_external_fqdn | kolla_url(external_protocol, venus_api_port) }}"
|
||||||
|
|
||||||
venus_logging_debug: "{{ openstack_logging_debug }}"
|
venus_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -18,6 +18,7 @@ vitrage_services:
|
|||||||
enabled: "{{ enable_vitrage }}"
|
enabled: "{{ enable_vitrage }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
|
external_fqdn: "{{ vitrage_external_fqdn }}"
|
||||||
port: "{{ vitrage_api_port }}"
|
port: "{{ vitrage_api_port }}"
|
||||||
vitrage-notifier:
|
vitrage-notifier:
|
||||||
container_name: vitrage_notifier
|
container_name: vitrage_notifier
|
||||||
|
@ -14,11 +14,14 @@ watcher_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ watcher_api_port }}"
|
port: "{{ watcher_api_port }}"
|
||||||
|
listen_port: "{{ watcher_api_listen_port }}"
|
||||||
watcher_api_external:
|
watcher_api_external:
|
||||||
enabled: "{{ enable_watcher }}"
|
enabled: "{{ enable_watcher }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ watcher_api_port }}"
|
external_fqdn: "{{ watcher_external_fqdn }}"
|
||||||
|
port: "{{ watcher_api_public_port }}"
|
||||||
|
listen_port: "{{ watcher_api_listen_port }}"
|
||||||
watcher-applier:
|
watcher-applier:
|
||||||
container_name: watcher_applier
|
container_name: watcher_applier
|
||||||
group: watcher-applier
|
group: watcher-applier
|
||||||
@ -151,8 +154,8 @@ watcher_engine_extra_volumes: "{{ watcher_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
# OpenStack
|
# OpenStack
|
||||||
####################
|
####################
|
||||||
watcher_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ watcher_api_port }}"
|
watcher_internal_endpoint: "{{ watcher_internal_fqdn | kolla_url(internal_protocol, watcher_api_port) }}"
|
||||||
watcher_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ watcher_api_port }}"
|
watcher_public_endpoint: "{{ watcher_external_fqdn | kolla_url(public_protocol, watcher_api_public_port) }}"
|
||||||
|
|
||||||
watcher_logging_debug: "{{ openstack_logging_debug }}"
|
watcher_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -14,11 +14,14 @@ zun_services:
|
|||||||
mode: "http"
|
mode: "http"
|
||||||
external: false
|
external: false
|
||||||
port: "{{ zun_api_port }}"
|
port: "{{ zun_api_port }}"
|
||||||
|
listen_port: "{{ zun_api_listen_port }}"
|
||||||
zun_api_external:
|
zun_api_external:
|
||||||
enabled: "{{ enable_zun }}"
|
enabled: "{{ enable_zun }}"
|
||||||
mode: "http"
|
mode: "http"
|
||||||
external: true
|
external: true
|
||||||
port: "{{ zun_api_port }}"
|
external_fqdn: "{{ zun_external_fqdn }}"
|
||||||
|
port: "{{ zun_api_public_port }}"
|
||||||
|
listen_port: "{{ zun_api_listen_port }}"
|
||||||
zun-wsproxy:
|
zun-wsproxy:
|
||||||
container_name: zun_wsproxy
|
container_name: zun_wsproxy
|
||||||
group: zun-wsproxy
|
group: zun-wsproxy
|
||||||
@ -206,8 +209,8 @@ zun_cni_daemon_extra_volumes: "{{ zun_extra_volumes }}"
|
|||||||
####################
|
####################
|
||||||
## OpenStack
|
## OpenStack
|
||||||
####################
|
####################
|
||||||
zun_internal_endpoint: "{{ internal_protocol }}://{{ kolla_internal_fqdn | put_address_in_context('url') }}:{{ zun_api_port }}/v1/"
|
zun_internal_endpoint: "{{ zun_internal_fqdn | kolla_url(internal_protocol, zun_api_port, '/v1/') }}"
|
||||||
zun_public_endpoint: "{{ public_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ zun_api_port }}/v1/"
|
zun_public_endpoint: "{{ zun_external_fqdn | kolla_url(public_protocol, zun_api_public_port, '/v1/') }}"
|
||||||
|
|
||||||
zun_logging_debug: "{{ openstack_logging_debug }}"
|
zun_logging_debug: "{{ openstack_logging_debug }}"
|
||||||
|
|
||||||
|
@ -114,7 +114,7 @@ host_shared_with_nova = {{ inventory_hostname in groups['compute'] and enable_no
|
|||||||
[websocket_proxy]
|
[websocket_proxy]
|
||||||
wsproxy_host = {{ api_interface_address }}
|
wsproxy_host = {{ api_interface_address }}
|
||||||
wsproxy_port = {{ zun_wsproxy_port }}
|
wsproxy_port = {{ zun_wsproxy_port }}
|
||||||
base_url = {{ zun_wsproxy_protocol }}://{{ kolla_external_fqdn | put_address_in_context('url') }}:{{ zun_wsproxy_port }}
|
base_url = {{ zun_wsproxy_protocol }}://{{ zun_external_fqdn | put_address_in_context('url') }}:{{ zun_wsproxy_port }}
|
||||||
|
|
||||||
[docker]
|
[docker]
|
||||||
api_url = tcp://{{ api_interface_address | put_address_in_context('url') }}:2375
|
api_url = tcp://{{ api_interface_address | put_address_in_context('url') }}:2375
|
||||||
|
@ -22,6 +22,26 @@ setting the following in ``/etc/kolla/globals.yml``:
|
|||||||
enable_haproxy: "no"
|
enable_haproxy: "no"
|
||||||
enable_keepalived: "no"
|
enable_keepalived: "no"
|
||||||
|
|
||||||
|
Single external frontend for services
|
||||||
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
||||||
|
|
||||||
|
Single external frontend for particular service can be enabled by adding the
|
||||||
|
following in ``/etc/kolla/globals.yml`` (feature and example services):
|
||||||
|
|
||||||
|
.. code-block:: yaml
|
||||||
|
|
||||||
|
haproxy_single_external_frontend: true
|
||||||
|
|
||||||
|
nova_external_fqdn: "nova.example.com"
|
||||||
|
neutron_external_fqdn: "neutron.example.com"
|
||||||
|
horizon_external_fqdn: "horizon.example.com"
|
||||||
|
opensearch_external_fqdn: "opensearch.example.com"
|
||||||
|
grafana_external_fqdn: "grafana.example.com"
|
||||||
|
|
||||||
|
|
||||||
|
The abovementioned functionality allows for exposing of services on separate
|
||||||
|
fqdns on commonly used port i.e. 443 instead of the usual high ports.
|
||||||
|
|
||||||
Configuration
|
Configuration
|
||||||
~~~~~~~~~~~~~
|
~~~~~~~~~~~~~
|
||||||
|
|
||||||
|
40
kolla_ansible/kolla_url.py
Normal file
40
kolla_ansible/kolla_url.py
Normal file
@ -0,0 +1,40 @@
|
|||||||
|
# -*- coding: utf-8 -*-
|
||||||
|
#
|
||||||
|
# Copyright 2022 StackHPC Ltd.
|
||||||
|
#
|
||||||
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
# you may not use this file except in compliance with the License.
|
||||||
|
# You may obtain a copy of the License at
|
||||||
|
#
|
||||||
|
# http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
#
|
||||||
|
# Unless required by applicable law or agreed to in writing, software
|
||||||
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
# See the License for the specific language governing permissions and
|
||||||
|
# limitations under the License.
|
||||||
|
|
||||||
|
from kolla_ansible.put_address_in_context import put_address_in_context
|
||||||
|
|
||||||
|
|
||||||
|
def kolla_url(fqdn, protocol, port, path='', context='url'):
|
||||||
|
"""generates url
|
||||||
|
|
||||||
|
:param fqdn:
|
||||||
|
:param protocol: http, ws, https or wss
|
||||||
|
:param port: port (omits 80 on http and 443 on https in output)
|
||||||
|
:param path: path - optional
|
||||||
|
:returns: string with url
|
||||||
|
"""
|
||||||
|
|
||||||
|
fqdn = put_address_in_context(fqdn, context)
|
||||||
|
|
||||||
|
if ((protocol == 'http' and port == 80) or
|
||||||
|
(protocol == 'https' and port == 443) or
|
||||||
|
(protocol == 'ws' and port == 80) or
|
||||||
|
(protocol == 'wss' and port == 443)):
|
||||||
|
address = f"{protocol}://{fqdn}{path}"
|
||||||
|
else:
|
||||||
|
address = f"{protocol}://{fqdn}:{port}{path}"
|
||||||
|
|
||||||
|
return address
|
@ -20,6 +20,7 @@ import jinja2
|
|||||||
|
|
||||||
from kolla_ansible.exception import FilterError
|
from kolla_ansible.exception import FilterError
|
||||||
from kolla_ansible.kolla_address import kolla_address
|
from kolla_ansible.kolla_address import kolla_address
|
||||||
|
from kolla_ansible.kolla_url import kolla_url
|
||||||
from kolla_ansible.put_address_in_context import put_address_in_context
|
from kolla_ansible.put_address_in_context import put_address_in_context
|
||||||
|
|
||||||
from kolla_ansible.tests.unit.helpers import _to_bool
|
from kolla_ansible.tests.unit.helpers import _to_bool
|
||||||
@ -323,3 +324,66 @@ class TestKollaAddressFilter(unittest.TestCase):
|
|||||||
},
|
},
|
||||||
})
|
})
|
||||||
self.assertEqual(addr, kolla_address(context, 'api'))
|
self.assertEqual(addr, kolla_address(context, 'api'))
|
||||||
|
|
||||||
|
|
||||||
|
class TestKollaUrlFilter(unittest.TestCase):
|
||||||
|
|
||||||
|
def test_https_443_path(self):
|
||||||
|
protocol = 'https'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 443
|
||||||
|
path = '/v2'
|
||||||
|
self.assertEqual("https://kolla.external/v2",
|
||||||
|
kolla_url(fqdn, protocol, port, path))
|
||||||
|
|
||||||
|
def test_http_80_path(self):
|
||||||
|
protocol = 'http'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 80
|
||||||
|
path = '/v2'
|
||||||
|
self.assertEqual("http://kolla.external/v2",
|
||||||
|
kolla_url(fqdn, protocol, port, path))
|
||||||
|
|
||||||
|
def test_https_8443_path(self):
|
||||||
|
protocol = 'https'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 8443
|
||||||
|
path = '/v2'
|
||||||
|
self.assertEqual("https://kolla.external:8443/v2",
|
||||||
|
kolla_url(fqdn, protocol, port, path))
|
||||||
|
|
||||||
|
def test_http_8080_path(self):
|
||||||
|
protocol = 'http'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 8080
|
||||||
|
path = '/v2'
|
||||||
|
self.assertEqual("http://kolla.external:8080/v2",
|
||||||
|
kolla_url(fqdn, protocol, port, path))
|
||||||
|
|
||||||
|
def test_https_443_nopath(self):
|
||||||
|
protocol = 'https'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 443
|
||||||
|
self.assertEqual("https://kolla.external",
|
||||||
|
kolla_url(fqdn, protocol, port))
|
||||||
|
|
||||||
|
def test_http_80_nopath(self):
|
||||||
|
protocol = 'http'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 80
|
||||||
|
self.assertEqual("http://kolla.external",
|
||||||
|
kolla_url(fqdn, protocol, port))
|
||||||
|
|
||||||
|
def test_https_8443_nopath(self):
|
||||||
|
protocol = 'https'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 8443
|
||||||
|
self.assertEqual("https://kolla.external:8443",
|
||||||
|
kolla_url(fqdn, protocol, port))
|
||||||
|
|
||||||
|
def test_http_8080_nopath(self):
|
||||||
|
protocol = 'http'
|
||||||
|
fqdn = 'kolla.external'
|
||||||
|
port = 8080
|
||||||
|
self.assertEqual("http://kolla.external:8080",
|
||||||
|
kolla_url(fqdn, protocol, port))
|
||||||
|
@ -0,0 +1,7 @@
|
|||||||
|
---
|
||||||
|
features:
|
||||||
|
- |
|
||||||
|
Adds single service external frontend feature to haproxy.
|
||||||
|
Details are in the
|
||||||
|
`haproxy guide <https://docs.openstack.org/kolla-ansible/latest/reference/high-availability/haproxy-guide.html>`_
|
||||||
|
section of the documentation.
|
Loading…
Reference in New Issue
Block a user