We've had some changes to our cloud landscape over the past little while
and cloud launcher is bailing out early when it hits clouds it can't
talk to. Fix this by removing the clouds/regions that no longer
function/exist so that we can configure the clouds that are listed
later.
Change-Id: I803655325d3a92c6d228499800b29332b5b32741
The k8s-on-openstack code wants to use a keypair for getting ssh access
set up for nodes it creates. Add a keypair everywhere that has root's
public key in it so that we can run k8s-on-openstack.
Change-Id: I62d9b6e03a0a433446f022b954283ace9755d9d7
This account is an admin account and sees every project's default
security group. This leads to:
FAILED! => {"changed": false, "msg": "Multiple matches found for default"}
When attempting to set the properties of the default security group for
this account. There doesn't appear to be a good way to filter the other
default security groups out currently so avoid setting them for now.
Change-Id: I9a8cc7d59c0295caa71bf107b9b78745a4617981
We need to expand-contract our keypairs. This is the first of three
patches. The next will use this new keypair from nodepool. Then we can
remove the old one.
The new keypair object updates the ssh key for Shrews and removes
inactive old rooters.
Change-Id: I610e51b58a8b69c8d70c8be260e3a91e86247389
Packet Host and Platform 9 have generously agreed to donate some
compute resources to our testing efforts. Add Nodepool and
Puppetmaster credentials for them.
Change-Id: I705c4204abca060c35a1a417791a67229b78cd02
We longer have any jobs or need to manage VMs in
tripleo-test-cloud-rh(1|2). This hardware still eventually be removed
so lets also remove it from our configuration.
Change-Id: I588ae945df15beceaf7a60bf6a65b1615b2074f0
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
Following on from I166d9f669ea88663d4ffe70e25a6e908d11cf35f, add to
the cloud launcher. For now just add keys and security (no special
network setup).
Add a default image to the control plane account, as the cloud
currently doesn't have a xenial-based image. It needs a few special
properties to boot.
Change-Id: I846632219cbeb1f56eb0648861db0bfea3de7c3b
This removes remaining references to internap (renamed to inap).
It also updates some items (cacti/nodepool logging) that were missed
in the rename.
Change-Id: Ibafd416e9e55aa458a50eb71922065a35e3d99f4
In order to provide increased proxy cache capacity, increase the
mirror flavor's disk size in Infra-cloud to 250GiB. Other providers
will get Cinder volumes added as needed.
Change-Id: I56130167e94237b93b3bdbfd1334eb97c76836fa
This should give us connectivity to the outside world with NAT'd
internal IP addressing.
Note that we can't add the router to the template because the external
network name will be different across clouds and we have to pass in the
subnet lists which may vary as well.
Change-Id: Iea225c71d0d8e644cbaf709554d02d130ad21c18
We need to ensure ovh is properly setup with our SSH keypairs for
nodepool.
Change-Id: I2a02dfb5da2ac0af087d502ae8143047e3d1b12c
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
Copy our current infra-root list from user.pp into cloud_layouts.yml.
Change-Id: Ic339f6879782a9f9d7d92a445160c5b0949a698b
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
Because rackspace doesn't support security groups, we need to create
openstackci-keypairs.
Change-Id: I549c5e99554eb876b872a08989dc0345a799ff00
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
Since we are moving forward with removing our baked in SSH keys for
our images, we now need to move our public keys into our clouds. This
will allow nodepool to inject them into metadata for glean.
Change-Id: I0ff9db47a0845ed9d038792383624af4bd34d525
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
In the infracloud, the Member role is not created by default.
We created that with a previous change by adding it to the launcher.
Now we associate that role to the openstackci/openstackzuul user/projects,
so those users are members of their corresponding projects.
Change-Id: I9147b253c7f747f435c773932dc4a8aad1189799
We need to create these roles, so we can associate users with projects.
Change-Id: I29af32c9b0f99c584b6ed76b346b1b117d05b277
Depends-On: I2df8503bb713827f0f04691c2f259dc9541c9c83
The servers are still currently created by launch-node, I'll revert
this commit when I put the pre/post create/delete actions per resource
on the launcher role.
Change-Id: I0a6401c9d783b9c3876ebb1f9c8b144f75d7abb2
It was discussed with other members of the Infra team that this
file would be better place on the playbooks folder, since the
run_launcher is located there.
Change-Id: I752ee592d3ffd8be4fd4ad29dbf73df443f28674
