80c1ba2d51
These users already have access by using the 'baremetal' account so formalizing this is better overall. This is a re-up of I31e0504f68e196b0b249b5b7b750861a752679ac Change-Id: Ic487e09ee8850c6a94c264c83593ba4a903cffa0 Depends-On: I120760d614df92b3af6dcbf5adf1e7ccd9da94ab
90 lines
2.9 KiB
Puppet
90 lines
2.9 KiB
Puppet
class openstack_project::infracloud::controller (
|
|
$keystone_rabbit_password,
|
|
$neutron_rabbit_password,
|
|
$nova_rabbit_password,
|
|
$root_mysql_password,
|
|
$keystone_mysql_password,
|
|
$glance_mysql_password,
|
|
$neutron_mysql_password,
|
|
$nova_mysql_password,
|
|
$glance_admin_password,
|
|
$keystone_admin_password,
|
|
$neutron_admin_password,
|
|
$nova_admin_password,
|
|
$keystone_admin_token,
|
|
$ssl_key_file_contents,
|
|
$ssl_cert_file_contents,
|
|
$br_name,
|
|
$controller_management_address,
|
|
$controller_public_address = $::fqdn,
|
|
$openstackci_password,
|
|
$openstackci_email = 'infra-root@openstack.org',
|
|
$openstackjenkins_password,
|
|
$openstackjenkins_email = 'infra-root@openstack.org',
|
|
) {
|
|
class { '::infracloud::controller':
|
|
keystone_rabbit_password => $keystone_rabbit_password,
|
|
neutron_rabbit_password => $neutron_rabbit_password,
|
|
nova_rabbit_password => $nova_rabbit_password,
|
|
root_mysql_password => $root_mysql_password,
|
|
keystone_mysql_password => $keystone_mysql_password,
|
|
glance_mysql_password => $glance_mysql_password,
|
|
neutron_mysql_password => $neutron_mysql_password,
|
|
nova_mysql_password => $nova_mysql_password,
|
|
keystone_admin_password => $keystone_admin_password,
|
|
glance_admin_password => $glance_admin_password,
|
|
neutron_admin_password => $neutron_admin_password,
|
|
nova_admin_password => $nova_admin_password,
|
|
keystone_admin_token => $keystone_admin_token,
|
|
ssl_key_file_contents => $ssl_key_file_contents,
|
|
ssl_cert_file_contents => $ssl_cert_file_contents,
|
|
br_name => $br_name,
|
|
controller_management_address => $controller_management_address,
|
|
controller_public_address => $controller_public_address,
|
|
}
|
|
|
|
keystone_domain { 'infra':
|
|
ensure => present,
|
|
enabled => true,
|
|
}
|
|
|
|
keystone_tenant { 'openstackci':
|
|
ensure => present,
|
|
enabled => true,
|
|
description => 'Infra Long Lived Resources',
|
|
domain => 'infra',
|
|
require => Keystone_domain['infra'],
|
|
}
|
|
|
|
keystone_tenant { 'openstackjenkins':
|
|
ensure => present,
|
|
enabled => true,
|
|
description => 'Infra short lived resources',
|
|
domain => 'infra',
|
|
require => Keystone_domain['infra'],
|
|
}
|
|
|
|
keystone_user { 'openstackci':
|
|
ensure => present,
|
|
enabled => true,
|
|
domain => 'infra',
|
|
email => $openstackci_email,
|
|
password => $openstackci_password,
|
|
require => Keystone_tenant['openstackci'],
|
|
}
|
|
|
|
keystone_user { 'openstackjenkins':
|
|
ensure => present,
|
|
enabled => true,
|
|
domain => 'infra',
|
|
email => $openstackjenkins_email,
|
|
password => $openstackjenkins_password,
|
|
require => Keystone_tenant['openstackjenkins'],
|
|
}
|
|
realize (
|
|
User::Virtual::Localuser['colleen'],
|
|
User::Virtual::Localuser['rcarrillocruz'],
|
|
)
|
|
|
|
}
|