55702739d0
This allows octavia service endpoints to use custom hostnames, and adds the following variables: * octavia_internal_fqdn * octavia_external_fqdn These default to the old values of kolla_internal_fqdn or kolla_external_fqdn. This also adds a octavia_api_listen_port option, which defaults to octavia_api_port for backward compatibility. This option allow the user to differentiate between the port the service listens on, and the port the service is reachable on. This is useful for external load balancers which live on the same host as the service itself. Change-Id: I1310eb5573a469b1a0e9549e853734455307a8b3 Implements: blueprint service-hostnames
82 lines
2.9 KiB
Django/Jinja
82 lines
2.9 KiB
Django/Jinja
[DEFAULT]
|
|
debug = {{ octavia_logging_debug }}
|
|
|
|
log_dir = /var/log/kolla/octavia
|
|
|
|
transport_url = {{ rpc_transport_url }}
|
|
|
|
[api_settings]
|
|
bind_host = {{ api_interface_address }}
|
|
bind_port = {{ octavia_api_listen_port }}
|
|
|
|
[certificates]
|
|
ca_private_key_passphrase = {{ octavia_ca_password }}
|
|
ca_private_key = /etc/octavia/certs/private/cakey.pem
|
|
ca_certificate = /etc/octavia/certs/ca_01.pem
|
|
|
|
[haproxy_amphora]
|
|
server_ca = /etc/octavia/certs/ca_01.pem
|
|
client_cert = /etc/octavia/certs/client.pem
|
|
|
|
[database]
|
|
connection = mysql+pymysql://{{ octavia_database_user }}:{{ octavia_database_password }}@{{ octavia_database_address }}/{{ octavia_database_name }}
|
|
max_retries = -1
|
|
|
|
[service_auth]
|
|
auth_url = {{ keystone_admin_url }}
|
|
auth_type = password
|
|
username = {{ octavia_keystone_user }}
|
|
password = {{ octavia_keystone_password }}
|
|
user_domain_name = {{ default_user_domain_name }}
|
|
project_name = {{ openstack_auth.project_name }}
|
|
project_domain_name = {{ default_project_domain_name }}
|
|
|
|
memcache_security_strategy = ENCRYPT
|
|
memcache_secret_key = {{ memcache_secret_key }}
|
|
memcached_servers = {% for host in groups['memcached'] %}{{ hostvars[host]['ansible_' + hostvars[host]['api_interface']]['ipv4']['address'] }}:{{ memcached_port }}{% if not loop.last %},{% endif %}{% endfor %}
|
|
|
|
[keystone_authtoken]
|
|
www_authenticate_uri = {{ keystone_internal_url }}
|
|
auth_url = {{ keystone_admin_url }}
|
|
auth_type = password
|
|
project_domain_id = {{ default_project_domain_id }}
|
|
user_domain_id = {{ default_user_domain_id }}
|
|
project_name = service
|
|
username = {{ octavia_keystone_user }}
|
|
password = {{ octavia_keystone_password }}
|
|
|
|
memcache_security_strategy = ENCRYPT
|
|
memcache_secret_key = {{ memcache_secret_key }}
|
|
memcached_servers = {% for host in groups['memcached'] %}{{ hostvars[host]['ansible_' + hostvars[host]['api_interface']]['ipv4']['address'] }}:{{ memcached_port }}{% if not loop.last %},{% endif %}{% endfor %}
|
|
|
|
[health_manager]
|
|
bind_port = {{ octavia_health_manager_port }}
|
|
bind_ip = {{ octavia_network_interface_address }}
|
|
heartbeat_key = insecure
|
|
controller_ip_port_list = {% for host in groups['octavia-health-manager'] %}{{ hostvars[host]['ansible_' + hostvars[host]['octavia_network_interface']]['ipv4']['address'] }}:{{ octavia_health_manager_port }}{% if not loop.last %},{% endif %}{% endfor %}
|
|
|
|
[controller_worker]
|
|
amp_boot_network_list = {{ octavia_amp_boot_network_list }}
|
|
amp_image_tag = amphora
|
|
amp_secgroup_list = {{ octavia_amp_secgroup_list }}
|
|
amp_flavor_id = {{ octavia_amp_flavor_id }}
|
|
amp_ssh_key_name = octavia_ssh_key
|
|
network_driver = allowed_address_pairs_driver
|
|
compute_driver = compute_nova_driver
|
|
amphora_driver = amphora_haproxy_rest_driver
|
|
amp_active_retries = 100
|
|
amp_active_wait_sec = 2
|
|
loadbalancer_topology = {{ octavia_loadbalancer_topology }}
|
|
|
|
[oslo_messaging]
|
|
topic = octavia_prov
|
|
rpc_thread_pool_size = 2
|
|
|
|
[oslo_messaging_notifications]
|
|
transport_url = {{ notify_transport_url }}
|
|
|
|
{% if octavia_policy_file is defined %}
|
|
[oslo_policy]
|
|
policy_file = {{ octavia_policy_file }}
|
|
{% endif %}
|