This PS moves OpenVSwitch into its own chart - decoupling it from neutron,
both making it easier to deploy and use seperately and permitting
use of other network backends.
Partially implements: blueprint split-nova-and-neutron-infra
Change-Id: Ifd637136b950ddf1ba1c26ce76c9bbdeafc232c3
This PS moves libvirt into its own chart - decoupling it from nova,
both making it easier to deploy and use seperately and permitting
use of other compute backends.
Partially implements: blueprint split-nova-and-neutron-infra
Change-Id: I06237157244c3cdb5503eafa01229d061b1614f0
This patch set removes the "local/CHART" references in the documentation
and replaces it with a reference to a local path. This was already
updated in gate script.
Change-Id: I1753cb500cbe448a43ede85168d71596de4e08b8
Closes-Bug: #1711733
Keystone is using keys to encrypt credentials saved into the database.
The mechanism is very similar to fernet tokens. This commit implements a
job setting key repository up and rotate job for those keys. All is
based on implementation of fernet tokens.
Change-Id: I88faf1d02d2b317563e8603cebba542f8b133c6a
Closes-Bug: 1693807
Keystone supports (and that's a default setting since Ocata) using
non-persistent fernet tokens instead of UUID tokens written into the DB.
This setting is in some cases better in terms of performance and
manageability (no more tokens DB table cleanups). OpenStack-Helm should
be able to support it.
General issue with fernet tokens is that keys used to encrypt them need
to be persistent and shared accross the cluster. Moreover "rotate"
operation generates a new key, so key repository will change over time.
This commit implements fernet tokens support by:
* A 'keystone-fernet-keys' secret is created to serve as keys repository.
* New fernet-setup Job will populate secret with initial keys.
* New fernet-rotate CronJob will be run periodically (weekly by default)
and perform key rotation operation and update the secret.
* Secret is attached to keystone-api pods in /etc/keystone/fernet-tokens
directory.
Turns out k8s is updating secrets attached to pods automatically, so
because of Keystone's fernet tokens implementation, we don't need to
worry about synchronization of the key repository. Everything should be
fine unless fernet-rotate job will run before all of the pods will
notice the change in the secret. As in real-world scenario you would
rotate your keys no more often than once an hour, this should be totally
fine.
Implements: blueprint keystone-fernet-tokens
Change-Id: Ifc84b8c97e1a85d30eb46260582d9c58220fbf0a
This enhances the stability and recovery of ceph by leveraging
hostNetworking for monitors as well as OSDs, and enables the
K8S_HOST_NETWORK variable within ceph-docker. This enhancement should
allow recovery of monitors from a complete downed cluster.
Additionally, ceph's generic "ceph-storage" node label has been
split out for mon, mds, and osd.
Co-Authored-By: Larry Rensing <lr699s@att.com>
Change-Id: I27efe5c41d04ab044dccb5f38db897cb041d4723
This PS move s the replicas key to be under the pod key in the values.
It brings further consolation of related configuration params to be
nested under common keys across all charts.
Change-Id: I420b06debd0a62ba5d83497be43ff6c49c49d339
This PS updates the Multinode Doc for Ceph deployemnt now that we
have bootstrap capability within the chart.
Change-Id: I40110db926bbbcbfb5a08300784e6a9735d32955
This PS deletes superfluous documentation and empty files from
the troubleshooting section, and also updates some of the docs
regarding persistent storage troubleshooting.
Change-Id: I60876e40ffe1a1f88ac6c761e8bf10beee92c2a0
This clarifies some of the steps in the kubeadm-aio guide, which
includes: adding minimum suggested system specs, commands to
verify success of a helm chart installation, and general clean up
and reformatting of the docs
Change-Id: I3f8cac9de7940970754e09bedf4d1d37022e7255
This PS organizes the installation document tree for easier navigation
and updating relevant content.
Change-Id: I51951d99dfc06bf441bd65ca817119cbca061851
This PS changes the install guide in order to have users pull our
custom kube-controller-manager image prior to initializing their
Kubernetes cluster. Also changes the reference in the gate to remove
redundant lines.
Change-Id: Ic32742b1df8145a99c8333a3d0711113e3cce30e
This PS makes some adjustments to the multinode install doc, removing
some steps that are no longer required.
Change-Id: I1775057c59ab8cc381398e51bb3487ca307eca83
This PS fixes some references to Helm v2.3.1, which has been
replaced by Helm v2.4.1 as the reference version.
Change-Id: I369f4846623932c2420fab2632ac1c0d8aad3cff
As we update the version information in the document, the ascii rst
table easily gets misaligned and causes the doc gate to fail. This
patch set changes the table structure, while retaining the formatting,
so future update of the document can be done easily without spending
time realigning the table cell border.
Change-Id: I84aeba3604ced255b057b7ce43f1f94a1af19b65
This PS refactors the ceph chart and secret generation process.
The updated chart replaces the existing "bootstrap" chart.
Additionally, Ceph manifests and deployment guides were modified
accordingly.
Change-Id: I6f5bb88fc0f40cfee8865d9dab83859d765e7537
Co-Authored-By: Larry Rensing <lr699s@att.com>
Removed inappropriate quotes from around kube_version in
the controller manager sed command, and clarified version
info for the controller manager.
Change-Id: Ied241a2d36524951942171630647411e2d76644c
Closes-Bug: #1695021
This PS moves the dev contents to the tools directory as well
as updates the VagrantFile to use the existing scripts
for installing kubeadm-aio and deploying helm charts.
Change-Id: I6768d1f96abe6b15f66931d543e9adcc0e82829b
Addresses consistency issues that appear with autoincrement fields in
the existing chart, as demonstrated in [1]. It should allow automatic
recovery of 2 out of the 3 (default) cluster members.
It does not address automatic recovery of a complete shutdown of all
cluster nodes.
[1] https://review.openstack.org/#/c/465977/
Change-Id: I84c86e1862f03a6d381bf219b821ea3636049f0b
This commit compiles guides-install pages into multiple .rst files and
adds them to rst docs index.
Change-Id: Iae68f29c2a2d7252336d798281b8ed8657af6deb
Partial-Implements: blueprint docs-to-rst
