hp1 has been rebuilt and tested, we can now add it back running tripleo
ci. Should be merged after Id52212f5096998e7aec6ec5dcb877c4e7dc33dff
which increases overcloud timeouts accordingly.
Change-Id: I5e61f4015d67858d675c0cfea995bbd9df519fd3
* modules/openstack_project/files/git/cgitrc: The dumb HTTP protocol
support in cgit is an attractive nuisance and source of surprising
random errors for users who misconfigure their repositories to use
it as a remote. We provide a separate smart HTTP backend and
configure cgit to list that as the clone URL anyway, so the default
enable-http-clone is disabled to avoid further accidental use.
Change-Id: Iacc34ba51cd835f7e999b753e06ef6eea41630df
Enable the SSL connection for groups.openstack.org, required
by oauth2 authentication of openstackid.org.
New hiera variables:
- groups_site_ssl_cert_file_contents: x509 certificate of the vhost
in pem format.
- groups_site_ssl_key_file_contents: key of x509 cert in pem format.
- groups_site_ssl_chain_file_contents: parent certs of site certificate
Change-Id: Ia266e1ee057467e5149b84f8b5f8be98bf63180f
Implements: blueprint groups-oauth2-authentication
We have been using the explicit host file for ansible for too long. Go
back to the puppet inventory ansible script so that all our nodes get
puppeted. Do this by removing the ansible hostfile override in the
puppetmaster.pp manifest.
Change-Id: I87816ca09566bc267b7723c0c0ce148d55da5142
This change will allow users to query Gerrit for a Storyboard story
using search string 'tr:<tracking id>' or 'story:<tracking id>'. For example
you can do a query in gerrit for 'story:2000070'.
feature reference:
https://gerrit-review.googlesource.com/Documentation/config-gerrit.html#trackingid
Change-Id: Ie6c70bd02e40a6ac3a70c9fa5a0efe33a3e8e7cb
The keystone log link was pointing to the screen log when it runs
as eventlet. When keystone runs under Apache Httpd its logs are in
the apache directory, so correct the links.
Change-Id: Ib1f29be5ff3dda23317362f15d3b746909293a06
This commit adds a mysql_proxy module which will setup a read-only
proxy to a mysql db. This also configures a proxy to the subunit2sql
db to run on logstash.o.o to provide read only access to the data in
the database.
Change-Id: I478baca354354347fe50074a8e3b9f66ca890d55
This commit switches the subunit2sql_uri which get's passed into the
config file template to use decomposed values. The advantage of this
is that it enables using subsets of the information elsewhere.
Change-Id: I30b5117c12897fa3a1cb1e2579b4eec59ba57b2b
Third party account creation is now self-serve. Remove third-party-requests
mailing list from the configuration since it will be shut down.
Change-Id: I122ea8789c66be0498b75ae48d7ad67121572b34
The site_ssl_cert_file and site_ssl_key_file parameter defaults were
wrong in the hurry, now fixing that with snakeoil certificate and
key.
Change-Id: I79187f079dce99eaad8fc9cbc3009b870bcb4911
We can now use 3.x configuration exclusively. Also we used
$puppet_version which is incorrect, the value is $puppetversion.
Change-Id: I8ddd985d76970ab8937752dd9c2dc6cf4b7d160a
This will enable puppet forge release of puppet modules
using the release pipeline. See
https://review.openstack.org/134834
for the details.
Change-Id: I7c3004828df34672442d190bb60a8a342cacffd0
Extend the Drupal vhost template with ssl capability, and
groups-dev.openstack.org now accepts the following hiera variables for
ssl setup:
- groups_dev_site_ssl_cert_file_contents: x509 certificate of vhost in pem format
- groups_dev_site_ssl_key_file_contents: rsa key of x509 certificate in pem format
- groups_dev_site_ssl_chain_file_contents: trusted chain of parent certificates (optional)
This patch is required for proper openstackid/oauth2 backref communication.
Change-Id: Ia148d1db743fc80bcb675c9ca2906333ef62eff8
Implements: blueprint groups-oauth2-authentication
This reverts commit 7fab4be0db8233e0225a8f026fabbb80cadff760.
Reverting this because this image does not build and is in a tight loop
of failure.
Logs:
2014-11-21 23:53:14,319 WARNING nodepool.NodePool: Missing disk image devstack-fedora21-dib
2014-11-21 23:53:14,320 DEBUG nodepool.NodePool: Queued image building task for devstack-fedora21-dib
2014-11-21 23:53:14,327 INFO nodepool.DiskImageBuilderThread: Creating image: devstack-fedora21-dib with filename /opt/nodepool_dib/devstack-fedora21-dib-1416613994.qcow2
2014-11-21 23:53:14,340 INFO nodepool.DiskImageBuilderThread: Running disk-image-create -x --no-tmpfs -o /opt/nodepool_dib/devstack-fedora21-dib-1416613994.qcow2 fedora vm puppet nodepool-base node-devstack
2014-11-21 23:53:14,351 ERROR nodepool.DiskImageBuilderThread: Exception in run method:
Traceback (most recent call last):
File "/usr/local/lib/python2.7/dist-packages/nodepool/nodepool.py", line 779, in _buildImage
env=env)
File "/usr/lib/python2.7/subprocess.py", line 710, in __init__
errread, errwrite)
File "/usr/lib/python2.7/subprocess.py", line 1327, in _execute_child
raise child_exception
TypeError: execve() arg 3 contains a non-string value
Conflicts:
modules/openstack_project/templates/nodepool/nodepool.yaml.erb
Change-Id: I0d4e8519972d14fc100f46dae1b4549743b438f2
Adds a rule to the bottom of the openstack-INPUT chain to log any
packets that make it this far and are on their way to being rejected.
This may help us find out why Devstack Ironic VM nodes occasionally cannot
reach the host's TFTP server.
Change-Id: I3980284a93f50ac8db16769f6ad87382aa55e898
Related-bug: #1393099
lsof is a very valuable tool for debugging connectivity issues. It is
not installed on our centos6 nodes by default. Install it here so that
we have it available for debugging connections issues.
Change-Id: I836b6bb4e852a2fbbff8d3a1620920de8d03b112
We need to override the locations of tmp and DIB cache to take advantage
of ephemeral disks on cloud nodes. DIB requires many gigabytes of
storage in our use of the tool and many cloud VMs simply do not provide
that on the root filesystem.
In our specific case we mount the ephemeral drive on /opt so we use
/opt/dib_cache and /opt/dib_tmp as the new locations for these
directories when running DIB.
Change-Id: Id126d3e63a518886c8047684ae14e891f6fdad99
