This PS mounts the machine id into the compute daemonsets. It is
required for newer verions of libvirt and nova.
Change-Id: I75d3ebe670fe1372eb4b6a7fc90102bee69465bf
This PS moves the nova policy.yaml to be fully driven by gotpl,
allowing full configuration without editing the template.
Change-Id: I0af8693df8b54486e2ba3dbe9eaca8d718d7d022
This PS moves the cinder policy.json to be fully driven by gotpl,
allowing full configuration without editing the template.
Change-Id: Ib3e9582492231860870c3907ab0983405d88b8c8
This PS seeks to reduce the load exerted on the node in the single
node gate test - as a the single node gate is currently broken
due to resource starvation on the nodes.
Change-Id: I34db5108b4abb48bb452eed73067644cc03270c0
Before this change, there was no ability to append custom volume for
any of the services. The reason was a missing new line character, so
the templates were formatted like this:
- name: pod-shared
mountPath: /tmp/pod-shared - mountPath: /tmp/test2
name: test2
Apart from that, for some of the services (mostly job-bootstrap) invalid
indentation for custom volumes (and their mounts) was set.
Closes-Bug: 1712745
Change-Id: Ib57c76a34c0e28ad9e67ea47d1fc250b17711a42
Signed-off-by: Mateusz Blaszkowski <mateusz.blaszkowski@intel.com>
This PS adds a configmap teplater helper to helm-toolkit. It makes it
simpler to write consistent charts that supports over-riding of all
values.
Change-Id: I9a587999859ea02802485eb25a3f0ebec8c712a8
This PS changes the MVP deployment of Neutron to use the native
interface rather than shelling uout to the clients. The values
were inserted during the original development of the MVP deployment
and subsequently left.
Change-Id: Ie098dc71a0fc82f000b7c40048e9f35913f05a79
This PS updates the ceph namespace client key script to hard fail
if it cannot get the admin storage key from the namespace ceph is
deployed into.
Change-Id: Ieefe6d800a678d721294561b25bbebc874cfa74d
This PS support to render nginx configuration to be controlled. It
enables to config nginx paramter in values.yaml
Change-Id: Ie36efddceeb2feb1aedb88f5852fb706c161aa05
Closes-Bug: 1712263
There are serveral issues with default settings of [trustee] section in
heat.conf:
1. Keystone trust isn't added for admin user (heat-trust should be
admin's user trustee to make it possible for admin to create stacks).
2. Keystone is adding role "admin" in domain "heat". This blocks
creation of correct trust in Keystone as role names are duplicated.
Please note that adding this role is not necessary for Heat to work
correctly.
This commit solves the issues by:
1. Creating a job that will add a Keystone trust between admin and
heat-trust users. This allows admin to create Heat stacks.
2. Removes adding a new role in a domain in _ks-domain-user.sh.tpl
script.
Additionally, as _ks-domain-user.sh.tpl is only really used by Heat
chart, this commit also removes it from configmap-bin in Barbican,
Magnum, Mistral and Senlin charts. Those charts must have been
copy-pasted from Heat chart and don't need to include this file.
Also I fix a bug introduced by I86a21e625afd822379ac11351603b2c606a3769f
that renamded heat-domain user to heat-trust and created two users with
the same name.
Change-Id: I303d9bc2aa1796f21bedc6ecdc85a4b3f6c68504
Closes-Bug: 1696462
This PS adds a functional test of heat in the OSH gates, it also moves
most params to a seperate file - making config of the gate in non-zuul
environments simpler.
Change-Id: I37a1bc0dcc8000c5da8067a8d376c78f7cd6f7ab
This PS seperates the NoVNC assets from the container serving the
NoVNC Proxy process - meaning images other than kolla or those
built from disto packages can be used without modification.
Change-Id: I8b363db9d4166ae2d5e85d135e488402ffb14f41
This PS adds heat to the single node and Armada based deployment
checks in the gate scripts. Additionally it moves the client calls
in the check scripts to use the heat engine pod.
Change-Id: Iccc996fb2b2140ed19c6708d6033b4a9dd1bfc46
Now, openstack-helm support "helm test" function, and It execute rally
container.
Rally also can test Tempest itself, so this fix will be add tempest
test in rally container.
Change-Id: I2c2f684f6583f2a3d9c7279a3d85cb242934e90e
Implements: blueprint add-tempest-in-helm-test
This patch set enables keystonemiddleware memcache encryption by providing a
random string key into the service configuration file, and setting the
memcache_security_strategy as ENCRYPT.
Change-Id: Ia030f5414308a29096c644bae70047a323eaffde
This patch set adds basic barbican test using the OpenStack Client. This
patch set also addressed an issue where the href contains a duplicate
version in the path, e.g. http://URL:xxxx/v1/v1/secrets in secret path.
Change-Id: Ie66d00d5a0b02721ba41e6bf4b5e784fb49adce8
