9748e6b154
The files and templates we carry are almost always in a state of
maintenance. The upstream services are maintaining these files and
there's really no reason we need to carry duplicate copies of them. This
change removes all of the files we expect to get from the upstream
service. while the focus of this change is to remove configuration file
maintenance burdens it also allows the role to execute faster.
* Source installs have the configuration files within the venv at
"<<VENV_PATH>>/etc/<<SERVICE_NAME>>". The role will now link the
default configuration path to this directory. When the service is
upgraded the link will move to the new venv path.
* Distro installs package all of the required configuration files.
To maintain our current capabilities to override configuration the
role will fetch files from the disk whenever an override is provided and
then push the fetched file back to the target using `config_template`.
Change-Id: I3e7283bf778a9d686f3ae500b289c1fb43b42b92
Signed-off-by: cloudnull <kevin@cloudnull.com>
124 lines
5.1 KiB
Django/Jinja
124 lines
5.1 KiB
Django/Jinja
# {{ ansible_managed }}
|
|
|
|
[DEFAULT]
|
|
# Disable stderr logging
|
|
use_stderr = False
|
|
debug = {{ debug }}
|
|
log_file = /var/log/glance/glance-api.log
|
|
fatal_deprecations = {{ glance_fatal_deprecations }}
|
|
bind_host = {{ glance_api_bind_address }}
|
|
bind_port = {{ glance_api_service_port }}
|
|
http_keepalive = {{ glance_http_keepalive }}
|
|
digest_algorithm = {{ glance_digest_algorithm }}
|
|
backlog = 4096
|
|
workers = {{ glance_api_workers | default(glance_api_threads) }}
|
|
registry_host = {{ glance_registry_host }}
|
|
registry_port = {{ glance_registry_service_port }}
|
|
registry_client_protocol = {{ glance_service_registry_proto }}
|
|
cinder_catalog_info = volume:cinder:internalURL
|
|
|
|
enable_v2_api = {{ glance_enable_v2_api | bool }}
|
|
enable_v2_registry = {{ glance_enable_v2_registry | bool }}
|
|
|
|
{% if glance_enable_v2_registry | bool %}
|
|
data_api = glance.db.registry.api
|
|
{% endif %}
|
|
|
|
transport_url = {{ glance_oslomsg_rpc_transport }}://{% for host in glance_oslomsg_rpc_servers.split(',') %}{{ glance_oslomsg_rpc_userid }}:{{ glance_oslomsg_rpc_password }}@{{ host }}:{{ glance_oslomsg_rpc_port }}{% if not loop.last %},{% else %}/{{ glance_oslomsg_rpc_vhost }}{% if glance_oslomsg_rpc_use_ssl | bool %}?ssl=1{% else %}?ssl=0{% endif %}{% endif %}{% endfor %}
|
|
|
|
delayed_delete = False
|
|
scrub_time = 43200
|
|
image_cache_dir = {{ glance_system_user_home }}/cache/
|
|
|
|
# defaults to true if RBD is used as default store
|
|
show_image_direct_url = {{ glance_show_image_direct_url }}
|
|
show_multiple_locations = {{ glance_show_multiple_locations }}
|
|
|
|
[task]
|
|
task_executor = {{ glance_task_executor }}
|
|
|
|
[database]
|
|
connection = mysql+pymysql://{{ glance_galera_user }}:{{ glance_container_mysql_password }}@{{ glance_galera_address }}/{{ glance_galera_database }}?charset=utf8{% if glance_galera_use_ssl | bool %}&ssl_ca={{ glance_galera_ssl_ca_cert }}{% endif %}
|
|
|
|
[keystone_authtoken]
|
|
insecure = {{ keystone_service_internaluri_insecure | bool }}
|
|
auth_type = {{ glance_keystone_auth_plugin }}
|
|
auth_url = {{ keystone_service_adminurl }}
|
|
www_authenticate_uri = {{ keystone_service_internaluri }}
|
|
project_domain_id = {{ glance_service_project_domain_id }}
|
|
user_domain_id = {{ glance_service_user_domain_id }}
|
|
project_name = {{ glance_service_project_name }}
|
|
username = {{ glance_service_user_name }}
|
|
password = {{ glance_service_password }}
|
|
region_name = {{ keystone_service_region }}
|
|
|
|
memcached_servers = {{ memcached_servers }}
|
|
|
|
token_cache_time = 300
|
|
|
|
# if your memcached server is shared, use these settings to avoid cache poisoning
|
|
memcache_security_strategy = ENCRYPT
|
|
memcache_secret_key = {{ memcached_encryption_key }}
|
|
|
|
[oslo_policy]
|
|
policy_file = {{ glance_policy_file }}
|
|
policy_default_rule = {{ glance_policy_default_rule }}
|
|
policy_dirs = {{ glance_policy_dirs }}
|
|
|
|
[oslo_messaging_rabbit]
|
|
ssl = {{ glance_oslomsg_notify_use_ssl | bool }}
|
|
rabbit_notification_exchange = glance
|
|
rabbit_notification_topic = notifications
|
|
|
|
[oslo_messaging_notifications]
|
|
driver = {{ (glance_ceilometer_enabled | bool) | ternary('messagingv2', 'noop') }}
|
|
transport_url = {{ glance_oslomsg_notify_transport }}://{% for host in glance_oslomsg_notify_servers.split(',') %}{{ glance_oslomsg_notify_userid }}:{{ glance_oslomsg_notify_password }}@{{ host }}:{{ glance_oslomsg_notify_port }}{% if not loop.last %},{% else %}/{{ glance_oslomsg_notify_vhost }}{% if glance_oslomsg_notify_use_ssl | bool %}?ssl=1{% else %}?ssl=0{% endif %}{% endif %}{% endfor %}
|
|
|
|
[paste_deploy]
|
|
flavor = {{ glance_flavor }}
|
|
|
|
[glance_store]
|
|
default_store = {{ glance_default_store }}
|
|
|
|
{% set glance_available_stores = [ glance_default_store ] + glance_additional_stores %}
|
|
stores = {% for backend in glance_available_stores %}{{ backend }}{% if not loop.last %},{% endif %}{% endfor %}
|
|
|
|
{% if 'file' in glance_available_stores %}
|
|
filesystem_store_datadir = {{ glance_system_user_home }}/images/
|
|
{% endif %}
|
|
|
|
{% if 'swift' in glance_available_stores %}
|
|
swift_store_config_file = {{ glance_etc_dir }}/glance-swift-store.conf
|
|
default_swift_reference = swift1
|
|
swift_store_auth_insecure = {{ glance_swift_store_auth_insecure | bool }}
|
|
swift_store_region = {{ glance_swift_store_region }}
|
|
swift_store_container = {{ glance_swift_store_container }}
|
|
swift_store_create_container_on_put = True
|
|
swift_store_large_object_size = {{ glance_swift_store_large_object_size }}
|
|
swift_store_large_object_chunk_size = {{ glance_swift_store_large_object_chunk_size }}
|
|
swift_store_retry_get_count = 5
|
|
swift_store_endpoint_type = {{ glance_swift_store_endpoint_type }}
|
|
{% endif %}
|
|
|
|
{% if 'rbd' in glance_available_stores %}
|
|
rbd_store_pool = {{ glance_rbd_store_pool }}
|
|
rbd_store_user = {{ glance_rbd_store_user }}
|
|
rbd_store_ceph_conf = /etc/ceph/ceph.conf
|
|
rbd_store_chunk_size = {{ glance_rbd_store_chunk_size }}
|
|
{% endif %}
|
|
|
|
[profiler]
|
|
enabled = {{ glance_profiler_enabled }}
|
|
|
|
{% if glance_proxy_headers_parsing | bool %}
|
|
[oslo_middleware]
|
|
enable_proxy_headers_parsing = True
|
|
{% endif %}
|
|
|
|
{% if glance_cors_allowed_origin is not none %}
|
|
[cors]
|
|
allow_headers = origin,content-md5,x-image-meta-checksum,x-storage-token,accept-encoding,x-auth-token,x-identity-status,x-roles,x-service-catalog,x-user-id,x-tenant-id,x-openstack-request-id
|
|
allow_methods = GET,POST,PUT,PATCH,DELETE
|
|
allowed_origin = {{ glance_cors_allowed_origin }}
|
|
{% endif %}
|