openstack/puppet-watcher
Code Issues Proposed changes
puppet-watcher/manifests/keystone/auth.pp
Takashi Kajinami 012583523e Expose configure_service 
This parameter has been implemented in the underlying defined resource
type but was not configurable.

Change-Id: I10cd07571763281eda7c5dafcd75ad63b12ea469
2024-10-12 12:21:28 +09:00

130 lines
3.9 KiB
Puppet
Raw Blame History

# == Class: watcher::keystone::auth
#
# Configures watcher user, service and endpoint in Keystone.
#
# === Parameters
#
# [*password*]
# (Required) Password for watcher user.
#
# [*auth_name*]
# (Optional) Username for watcher service.
# Defaults to 'watcher'.
#
# [*email*]
# (Optional) Email for watcher user.
# Defaults to 'watcher@localhost'.
#
# [*tenant*]
# (Optional) Tenant for watcher user.
# Defaults to 'services'.
#
# [*roles*]
# (Optional) List of roles assigned to watcher user.
# Defaults to ['admin']
#
# [*system_scope*]
# (Optional) Scope for system operations.
# Defaults to 'all'
#
# [*system_roles*]
# (Optional) List of system roles assigned to watcher user.
# Defaults to []
#
# [*configure_endpoint*]
# (Optional) Should watcher endpoint be configured?
# Defaults to true.
#
# [*configure_user*]
# (Optional) Should the service user be configured?
# Defaults to true.
#
# [*configure_user_role*]
# (Optional) Should the admin role be configured for the service user?
# Defaults to true.
#
# [*configure_service*]
# (Optional) Should the service be configurd?
# Defaults to True
#
# [*service_type*]
# (Optional) Type of service.
# Defaults to 'infra-optim'.
#
# [*region*]
# (Optional) Region for endpoint.
# Defaults to 'RegionOne'.
#
# [*service_name*]
# (Optional) Name of the service.
# Defaults to the value of auth_name.
#
# [*service_description*]
# (Optional) Description of the service.
# Default to 'watcher API Service'
#
# [*public_url*]
# (0ptional) The endpoint's public url.
# This url should *not* contain any trailing '/'.
# Defaults to 'http://127.0.0.1:9322'
#
# [*admin_url*]
# (Optional) The endpoint's admin url.
# This url should *not* contain any trailing '/'.
# Defaults to 'http://127.0.0.1:9322'
#
# [*internal_url*]
# (Optional) The endpoint's internal url.
# This url should *not* contain any trailing '/'.
# Defaults to 'http://127.0.0.1:9322'
#
class watcher::keystone::auth (
String[1] $password,
String[1] $auth_name = 'watcher',
String[1] $email = 'watcher@localhost',
String[1] $tenant = 'services',
Array[String[1]] $roles = ['admin'],
String[1] $system_scope = 'all',
Array[String[1]] $system_roles = [],
Boolean $configure_endpoint = true,
Boolean $configure_user = true,
Boolean $configure_user_role = true,
Boolean $configure_service = true,
Optional[String[1]] $service_name = undef,
String[1] $service_description = 'Infrastructure Optimization service',
String[1] $service_type = 'infra-optim',
String[1] $region = 'RegionOne',
Keystone::PublicEndpointUrl $public_url = 'http://127.0.0.1:9322',
Keystone::EndpointUrl $admin_url = 'http://127.0.0.1:9322',
Keystone::EndpointUrl $internal_url = 'http://127.0.0.1:9322',
) {
include watcher::deps
$real_service_name = pick($service_name, $auth_name)
Keystone::Resource::Service_identity['watcher'] -> Anchor['watcher::service::end']
keystone::resource::service_identity { 'watcher':
configure_user => $configure_user,
configure_user_role => $configure_user_role,
configure_endpoint => $configure_endpoint,
configure_service => $configure_service,
service_name => $real_service_name,
service_type => $service_type,
service_description => $service_description,
region => $region,
auth_name => $auth_name,
password => $password,
email => $email,
tenant => $tenant,
roles => $roles,
system_scope => $system_scope,
system_roles => $system_roles,
public_url => $public_url,
internal_url => $internal_url,
admin_url => $admin_url,
}
}
View Git Blame Copy Permalink