# ingress.yaml
images:
tags:
entrypoint: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
ingress: registry.cicd.stg.taco/nginx-ingress-controller:0.9.0
error_pages: registry.cicd.stg.taco/defaultbackend:1.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
pull_policy: Always
config:
worker-processes: "8"
pod:
replicas:
ingress: 1
error_page: 1
# openstack-ceph-config.yaml
images:
tags:
ks_user: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_service: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_endpoints: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ceph_bootstrap: registry.cicd.stg.taco/ceph-daemon:tag-build-master-jewel-ubuntu-16.04
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
ceph_daemon: registry.cicd.stg.taco/ceph-daemon:tag-build-master-jewel-ubuntu-16.04
ceph_config_helper: registry.cicd.stg.taco/ceph-config-helper:v1.7.5
ceph_rbd_provisioner: registry.cicd.stg.taco/rbd-provisioner:v0.1.1
ceph_cephfs_provisioner: registry.cicd.stg.taco/cephfs-provisioner:v0.1.1
pull_policy: IfNotPresent
deployment:
storage_secrets: true
client_secrets: true
rbd_provisioner: false
cephfs_provisioner: false
rgw_keystone_user_and_endpoints: false
conf:
ceph:
global:
mon_host: 192.168.51.20
storageclass:
rbd:
provision_storage_class: false
user_id: cinder
admin_secret_namespace: openstack
cephfs:
provision_storage_class: false
dmin_secret_namespace: openstack
manifests:
configmap_bin_clients: true
configmap_bin_ks: true
configmap_bin: true
configmap_etc: true
configmap_templates: true
daemonset_mon: false
daemonset_osd: false
deployment_mds: false
deployment_moncheck: false
deployment_rbd_provisioner: false
deployment_cephfs_provisioner: false
deployment_rgw: false
deployment_mgr: false
job_bootstrap: false
job_cephfs_client_key: false
job_keyring: false
job_ks_endpoints: false
job_ks_service: false
job_ks_user: false
job_namespace_client_key_cleaner: true
job_namespace_client_key: true
job_rbd_pool: false
job_storage_admin_keys: true
secret_keystone_rgw: false
secret_keystone: false
service_mgr: false
service_mon: false
service_rgw: false
service_mon_discovery: false
storageclass: false
dependencies:
rbd_provisioner:
jobs:
services:
# mariadb.yaml
images:
tags:
mariadb: registry.cicd.stg.taco/mariadb:10.1.23
test: registry.cicd.stg.taco/ocata/ubuntu-source-kolla-toolbox:develop
pull_policy: Always
pod:
replicas:
server: 3
volume:
enabled: true
class_name: ceph
# etcd.yaml
images:
tags:
etcd: registry.cicd.stg.taco/etcd:v3.2.5
test: registry.cicd.stg.taco/ocata/ubuntu-source-kolla-toolbox:develop
pull_policy: IfNotPresent
pod:
replicas:
etcd: 1
# rabbitmq.yaml
images:
tags:
rabbitmq: registry.cicd.stg.taco/rabbitmq:3.7
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
test: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
pull_policy: IfNotPresent
pod:
replicas:
server: 3
volume:
class_name: ceph
# memcached.yaml
images:
tags:
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
memcached: registry.cicd.stg.taco/memcached:1.5.5
pull_policy: IfNotPresent
pod:
replicas:
server: 1
# libvirt.yaml
images:
tags:
libvirt: registry.cicd.stg.taco/ocata/ubuntu-source-nova-libvirt:2.2.0
pull_policy: Always
ceph:
enabled: true
cinder_user: "cinder"
cinder_keyring: "xxxxx=="
libvirt:
listen_addr: 0.0.0.0
log_level: 3
manifests:
configmap_bin: true
configmap_etc: true
daemonset_libvirt: true
# openvswitch.yaml
images:
tags:
openvswitch_db_server: registry.cicd.stg.taco/ocata/ubuntu-source-openvswitch-db-server:2.2.0
openvswitch_vswitchd: registry.cicd.stg.taco/ocata/ubuntu-source-openvswitch-vswitchd:2.2.0
pull_policy: Always
network:
external_bridge: br-ex
interface:
external: bond1.52
auto_bridge_add: {}
# keystone.yaml
images:
tags:
bootstrap: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
test: registry.cicd.stg.taco/ocata/ubuntu-source-rally:2.2.0
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
keystone_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
db_drop: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
keystone_fernet_setup: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
keystone_fernet_rotate: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
keystone_credential_setup: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
keystone_credential_rotate: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
keystone_api: registry.cicd.stg.taco/ocata/ubuntu-source-keystone:2.2.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
rabbit_init: registry.cicd.stg.taco/rabbitmq:3.7-management
pull_policy: Always
conf:
keystone:
DEFAULT:
debug: true
pod:
replicas:
api: 3
# glance.yaml
storage: rbd
images:
tags:
test: registry.cicd.stg.taco/ocata/ubuntu-source-rally:2.2.0
glance_storage_init: registry.cicd.stg.taco/ceph-daemon:tag-build-master-jewel-ubuntu-16.04
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
glance_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-glance-api:2.2.0
db_drop: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_user: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_service: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_endpoints: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
glance_api: registry.cicd.stg.taco/ocata/ubuntu-source-glance-api:2.2.0
glance_registry: registry.cicd.stg.taco/ocata/ubuntu-source-glance-registry:2.2.0
bootstrap: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
rabbit_init: registry.cicd.stg.taco/rabbitmq:3.7-management
pull_policy: Always
pod:
replicas:
api: 3
registry: 3
user:
glance:
uid: 42415
network:
api:
ingress:
proxy_body_size: 102400M
conf:
ceph:
monitors: ["192.168.51.20"]
admin_keyring: "xxxx=="
glance:
glance_store:
rbd_store_user: glance
rbd_store_pool: images
DEFAULT:
show_image_direct_url: true
bootstrap:
enabled: true
images:
cirros:
id: 201084fc-c276-4744-8504-cb974dbb3610
private: false
# nova.yaml
images:
tags:
bootstrap: registry.cicd.stg.taco/ocata/ubuntu-source-nova-api:2.2.0
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-nova-api:2.2.0
db_drop: registry.cicd.stg.taco/ocata/ubuntu-source-nova-api:2.2.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
rabbit_init: registry.cicd.stg.taco/rabbitmq:3.7-management
ks_user: registry.cicd.stg.taco/ocata/ubuntu-source-kolla-toolbox:2.2.0
ks_service: registry.cicd.stg.taco/ocata/ubuntu-source-kolla-toolbox:2.2.0
ks_endpoints: registry.cicd.stg.taco/ocata/ubuntu-source-kolla-toolbox:2.2.0
nova_api: registry.cicd.stg.taco/ocata/ubuntu-source-nova-api:2.2.0
nova_cell_setup: registry.cicd.stg.taco/ocata/ubuntu-source-nova-api:2.2.0
nova_compute: registry.cicd.stg.taco/ocata/ubuntu-source-nova-compute:2.2.0
nova_compute_ironic: registry.cicd.stg.taco/ocata/ubuntu-source-nova-compute-ironic:2.2.0
nova_compute_ssh: registry.cicd.stg.taco/ocata/ubuntu-source-nova-ssh:2.2.0
nova_conductor: registry.cicd.stg.taco/ocata/ubuntu-source-nova-conductor:2.2.0
nova_consoleauth: registry.cicd.stg.taco/ocata/ubuntu-source-nova-consoleauth:2.2.0
nova_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-nova-api:2.2.0
nova_novncproxy: registry.cicd.stg.taco/ocata/ubuntu-source-nova-novncproxy:2.2.0
nova_novncproxy_assets: registry.cicd.stg.taco/ocata/ubuntu-source-nova-novncproxy:2.2.0
nova_placement: registry.cicd.stg.taco/ocata/ubuntu-source-nova-placement-api:2.2.0
nova_scheduler: registry.cicd.stg.taco/ocata/ubuntu-source-nova-scheduler:2.2.0
nova_spiceproxy: registry.cicd.stg.taco/ocata/ubuntu-source-nova-spicehtml5proxy:2.2.0
nova_spiceproxy_assets: registry.cicd.stg.taco/ocata/ubuntu-source-nova-spicehtml5proxy:2.2.0
test: registry.cicd.stg.taco/ocata/ubuntu-source-rally:2.2.0
pull_policy: Always
bootstrap:
enabled: true
flavors:
m1_tiny:
id: 0c84e220-a258-439f-a6ff-f8e9fd980025
network:
novncproxy:
name: "nova-novncproxy"
node_port:
enabled: true
port: 30608
port: 6080
targetPort: 6080
ceph:
enabled: true
cinder_user: "cinder"
cinder_keyring: "xxxx=="
secret_uuid: "582393ff-9a5c-4a2e-ae0d-86ec18c36afc"
conf:
nova:
DEFAULT:
force_config_drive: true
scheduler_default_filters: "RetryFilter,AvailabilityZoneFilter,RamFilter,ComputeFilter,ComputeCapabilitiesFilter,ImagePropertiesFilter,ServerGroupAntiAffinityFilter,ServerGroupAffinityFilter"
debug: true
vnc:
novncproxy_base_url: http://ctrl01-stg:30608/vnc_auto.html
libvirt:
rbd_user: "cinder"
rbd_secret_uuid: "582393ff-9a5c-4a2e-ae0d-86ec18c36afc"
scheduler:
discover_hosts_in_cells_interval: 60
endpoints:
oslo_db_cell0:
path: /nova_cell0
pod:
user:
nova:
uid: 42436
replicas:
api_metadata: 3
osapi: 3
conductor: 3
consoleauth: 3
scheduler: 3
novncproxy: 3
# neutron.yaml
images:
tags:
bootstrap: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
neutron_test: registry.cicd.stg.taco/ocata/ubuntu-source-rally:2.2.0
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
neutron_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-server:2.2.0
db_drop: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_user: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_service: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_endpoints: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
neutron_server: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-server:2.2.0
neutron_dhcp: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-dhcp-agent:2.2.0
neutron_metadata: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-metadata-agent:2.2.0
neutron_l3: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-l3-agent:2.2.0
neutron_openvswitch_agent: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-openvswitch-agent:2.2.0
neutron_linuxbridge_agent: registry.cicd.stg.taco/ocata/ubuntu-source-neutron-linuxbridge-agent:2.2.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
rabbit_init: registry.cicd.stg.taco/rabbitmq:3.7-management
pull_policy: Always
pod:
replicas:
server: 3
user:
neutron:
uid: 42435
labels:
agent:
dhcp:
node_selector_key: openstack-network-node
l3:
node_selector_key: openstack-network-node
manifests:
daemonset_metadata_agent: false
daemonset_ovs_agent: true
daemonset_lb_agent: false
network:
backend: ovs
external_bridge: br-ex
interface:
tunnel: bond1
conf:
neutron_sudoers:
override: |
# This sudoers file supports rootwrap-daemon for both Kolla and LOCI Images.
Defaults !requiretty
Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin:/var/lib/openstack/bin:/var/lib/kolla/venv/bin"
neutron ALL = (root) NOPASSWD: /var/lib/kolla/venv/bin/neutron-rootwrap /etc/neutron/rootwrap.conf *, /var/lib/openstack/bin/neutron-rootwrap /etc/neutron/rootwrap.conf *, /var/lib/kolla/venv/bin/neutron-rootwrap-daemon /etc/neutron/rootwrap.conf, /var/lib/openstack/bin/neutron-rootwrap-daemon /etc/neutron/rootwrap.conf
neutron:
DEFAULT:
debug: True
core_plugin: ml2
l3_ha: True
global_physnet_mtu: 9000
service_plugins: router
interface_driver: openvswitch
agent:
root_helper_daemon: sudo neutron-rootwrap-daemon /etc/neutron/rootwrap.conf
plugins:
ml2_conf:
ml2:
mechanism_drivers: openvswitch,l2population
type_drivers: flat, vlan, vxlan
tenant_network_types: vxlan
openvswitch_agent:
agent:
tunnel_types: vxlan
l2_population: True
arp_responder: True
ovs:
bridge_mappings: "external:br-ex"
securitygroup:
firewall_driver: openvswitch
# cinder.yaml
images:
tags:
test: registry.cicd.stg.taco/ocata/ubuntu-source-rally:2.2.0
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
cinder_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-cinder-api:2.2.0
db_drop: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_user: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_service: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_endpoints: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
cinder_api: registry.cicd.stg.taco/ocata/ubuntu-source-cinder-api:2.2.0
bootstrap: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
cinder_scheduler: registry.cicd.stg.taco/ocata/ubuntu-source-cinder-scheduler:2.2.0
cinder_volume: registry.cicd.stg.taco/ocata/ubuntu-source-cinder-volume:2.2.0
cinder_volume_usage_audit: registry.cicd.stg.taco/ocata/ubuntu-source-cinder-volume:2.2.0
cinder_storage_init: registry.cicd.stg.taco/ceph-daemon:tag-build-master-jewel-ubuntu-16.04
cinder_backup: registry.cicd.stg.taco/ocata/ubuntu-source-cinder-backup:2.2.0
cinder_backup_storage_init: registry.cicd.stg.taco/ceph-daemon:tag-build-master-jewel-ubuntu-16.04
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
rabbit_init: registry.cicd.stg.taco/rabbitmq:3.7-management
pull_policy: Always
pod:
user:
cinder:
uid: 42407
replicas:
api: 3
backup: 1
scheduler: 3
volume: 1
conf:
ceph:
admin_keyring: "xxxxx=="
monitors: ["192.168.51.20"]
cinder:
DEFAULT:
debug: true
backup_ceph_user: "cinder"
backup_ceph_pool: "backups"
backends:
rbd1:
volume_driver: cinder.volume.drivers.rbd.RBDDriver
volume_backend_name: rbd1
rbd_ceph_conf: "/etc/ceph/ceph.conf"
rbd_flatten_volume_from_snapshot: false
rbd_max_clone_depth: 5
rbd_store_chunk_size: 4
rados_connect_timeout: -1
rbd_user: "cinder"
rbd_pool: "volumes"
# heat.yaml
images:
tags:
bootstrap: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
heat_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-heat-api:2.2.0
db_drop: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_user: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_service: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
ks_endpoints: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
heat_api: registry.cicd.stg.taco/ocata/ubuntu-source-heat-api:2.2.0
heat_cfn: registry.cicd.stg.taco/ocata/ubuntu-source-heat-api:2.2.0
heat_cloudwatch: registry.cicd.stg.taco/ocata/ubuntu-source-heat-api:2.2.0
heat_engine: registry.cicd.stg.taco/ocata/ubuntu-source-heat-engine:2.2.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
rabbit_init: registry.cicd.stg.taco/rabbitmq:3.7-management
pull_policy: Always
pod:
user:
heat:
uid: 42418
replicas:
api: 3
cfn: 3
cloudwatch: 3
engine: 3
# horizon.yaml
images:
tags:
db_init: registry.cicd.stg.taco/ocata/ubuntu-source-horizon:2.2.0
horizon_db_sync: registry.cicd.stg.taco/ocata/ubuntu-source-horizon:2.2.0
horizon: registry.cicd.stg.taco/ocata/ubuntu-source-horizon:2.2.0
dep_check: registry.cicd.stg.taco/kubernetes-entrypoint:v0.2.1
test: registry.cicd.stg.taco/ocata/ubuntu-source-horizon:develop
pull_policy: Always
pod:
replicas:
server: 3
network:
external_policy_local: false
node_port:
enabled: true
port: 32000
local_settings:
openstack_neutron_network:
enable_router: "True"
enable_quotas: "True"
enable_ipv6: "False"
enable_distributed_router: "False"
enable_ha_router: "True"
enable_lb: "True"
enable_firewall: "False"
enable_vpn: "False"
enable_fip_topology_check: "True"
