openstack/puppet-openstack-integration
Code Issues Proposed changes
puppet-openstack-integration/manifests/ironic.pp
Emilien Macchi 2be3e3f9d2 scenario002: deploy RabbitMQ with SSL 
* Manage Puppet OpenStack CI CA and create a common certificate,
  auto-signed.
* Configure RabbitMQ to activate SSL on scenario002
* Configure OpenStack services that run on scenario002 to connect to
  RabbitMQ using SSL protocol.

Change-Id: Ic435078472ba4e0e0eaf04a64e5bcb7aabba7b3d
2016-02-29 14:37:56 -05:00

56 lines
1.4 KiB
Puppet
Raw Blame History

# Configure the Ironic service
#
# [*ssl*]
# (optional) Boolean to enable or not SSL.
# Defaults to false.
#
class openstack_integration::ironic (
$ssl = false,
) {
if $ssl {
$rabbit_port = '5671'
} else {
$rabbit_port = '5672'
}
rabbitmq_user { 'ironic':
admin => true,
password => 'an_even_bigger_secret',
provider => 'rabbitmqctl',
require => Class['::rabbitmq'],
}
rabbitmq_user_permissions { 'ironic@/':
configure_permission => '.*',
write_permission => '.*',
read_permission => '.*',
provider => 'rabbitmqctl',
require => Class['::rabbitmq'],
}
class { '::ironic':
rabbit_userid => 'ironic',
rabbit_password => 'an_even_bigger_secret',
rabbit_host => '127.0.0.1',
rabbit_port => $rabbit_port,
rabbit_use_ssl => $ssl,
database_connection => 'mysql+pymysql://ironic:ironic@127.0.0.1/ironic?charset=utf8',
debug => true,
verbose => true,
enabled_drivers => ['fake', 'pxe_ssh', 'pxe_ipmitool'],
}
class { '::ironic::db::mysql':
password => 'ironic',
}
class { '::ironic::keystone::auth':
password => 'a_big_secret',
}
class { '::ironic::client': }
class { '::ironic::api':
admin_password => 'a_big_secret',
workers => '2',
}
class { '::ironic::conductor': }
}
View Git Blame Copy Permalink