3522d235bd
Use upstream Ansible modules for registration of services, endpoints, users, projects, roles, and role grants. Change-Id: I7c9138d422cc91c177fd8992347176bb54156b5a
48 lines
1.4 KiB
YAML
48 lines
1.4 KiB
YAML
---
|
|
- import_role:
|
|
name: service-ks-register
|
|
vars:
|
|
service_ks_register_auth: "{{ openstack_magnum_auth }}"
|
|
service_ks_register_services: "{{ magnum_ks_services }}"
|
|
service_ks_register_users: "{{ magnum_ks_users }}"
|
|
tags: always
|
|
|
|
- name: Creating Magnum trustee domain
|
|
become: true
|
|
kolla_toolbox:
|
|
module_name: "os_keystone_domain"
|
|
module_args:
|
|
name: "{{ magnum_trustee_domain }}"
|
|
description: "Owns users and projects created by magnum"
|
|
auth: "{{ openstack_magnum_auth }}"
|
|
endpoint_type: "{{ openstack_interface }}"
|
|
cacert: "{{ openstack_cacert }}"
|
|
register: trustee_domain
|
|
run_once: True
|
|
|
|
- name: Creating Magnum trustee user
|
|
become: true
|
|
kolla_toolbox:
|
|
module_name: "os_user"
|
|
module_args:
|
|
name: "{{ magnum_trustee_domain_admin }}"
|
|
domain: "{{ magnum_trustee_domain }}"
|
|
password: "{{ magnum_keystone_password }}"
|
|
auth: "{{ openstack_magnum_auth }}"
|
|
endpoint_type: "{{ openstack_interface }}"
|
|
cacert: "{{ openstack_cacert }}"
|
|
run_once: True
|
|
|
|
- name: Creating Magnum trustee user role
|
|
become: true
|
|
kolla_toolbox:
|
|
module_name: "os_user_role"
|
|
module_args:
|
|
domain: "{{ trustee_domain.id }}"
|
|
user: "{{ magnum_trustee_domain_admin }}"
|
|
role: "admin"
|
|
auth: "{{ openstack_magnum_auth }}"
|
|
endpoint_type: "{{ openstack_interface }}"
|
|
cacert: "{{ openstack_cacert }}"
|
|
run_once: True
|