Puppet Class: ceilometer::keystone::auth

Defined in:
manifests/keystone/auth.pp

Overview

Class: ceilometer::keystone::auth

Configures Ceilometer user, service and endpoint in Keystone.

Parameters:

password

(Required) Password for Ceilometer user.

email

(Optional) Email for Ceilometer user. Defaults to ‘ceilometer@localhost’.

auth_name

(Optional) Username for Ceilometer service. Defaults to ‘ceilometer’.

configure_user

(Optional) Should Ceilometer service user be configured? Defaults to true.

configure_user_role

(Optional) Should roles be configured on Ceilometer service user? Defaults to true.

region

(Optional) Region for endpoint. Defaults to ‘RegionOne’.

tenant

(Optional) Tenant for Ceilometer user. Defaults to ‘services’.

roles

(Optional) List of roles assigned to ceilometer user. Defaults to [‘admin’]

system_scope

(Optional) Scope for system operations. Defaults to ‘all’

system_roles

(Optional) List of system roles assigned to ceilometer user. Defaults to []

Examples:

class { 'ceilometer::keystone::auth':
  password => 'secrete',
}

Parameters:

  • password (Any) (defaults to: false)
  • email (Any) (defaults to: 'ceilometer@localhost')
  • auth_name (Any) (defaults to: 'ceilometer')
  • configure_user (Any) (defaults to: true)
  • configure_user_role (Any) (defaults to: true)
  • region (Any) (defaults to: 'RegionOne')
  • tenant (Any) (defaults to: 'services')
  • roles (Any) (defaults to: ['admin'])
  • system_scope (Any) (defaults to: 'all')
  • system_roles (Any) (defaults to: []) 


52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
 
# File 'manifests/keystone/auth.pp', line 52

class ceilometer::keystone::auth (
  $password             = false,
  $email                = 'ceilometer@localhost',
  $auth_name            = 'ceilometer',
  $configure_user       = true,
  $configure_user_role  = true,
  $region               = 'RegionOne',
  $tenant               = 'services',
  $roles                = ['admin'],
  $system_scope         = 'all',
  $system_roles         = [],
) {

  include ceilometer::deps

  validate_legacy(String, 'validate_string', $password)

  # Ceilometer requires only its user, project, and role assignment.
  # service and endpoint should be disabled since ceilometer-api has been removed.
  keystone::resource::service_identity { 'ceilometer':
    configure_user      => $configure_user,
    configure_user_role => $configure_user_role,
    configure_endpoint  => false,
    configure_service   => false,
    region              => $region,
    auth_name           => $auth_name,
    password            => $password,
    email               => $email,
    tenant              => $tenant,
    roles               => $roles,
    system_scope        => $system_scope,
    system_roles        => $system_roles,
  }
}