Puppet Class: ceph::rgw::keystone::auth

Defined in:
manifests/rgw/keystone/auth.pp

Overview

Class: ceph::rgw::keystone::auth

Configures RGW user, service and endpoint in Keystone V3.

Parameters

password

Password for the RGW user. Required.

user

Username for the RGW user. Required.

tenant

Tenant for user. Required.

email

Email for the RGW user. Optional. Defaults to ‘rgwuser@localhost’

roles

Accepted RGW roles. Optional. Defaults to [‘admin’]

public_url

The public URL. Optional. Defaults to ‘127.0.0.1:8080/swift/v1

admin_url

The admin URL. Optional. Defaults to ‘127.0.0.1:8080/swift/v1

internal_url

The internal URL. Optional. Defaults to ‘127.0.0.1:8080/swift/v1

region

Region for endpoint. Optional. Defaults to ‘RegionOne’

service_description

(Optional) Description of the service. Default to ‘Ceph RGW Service’

service_name

(Optional) Name of the service. Defaults to ‘swift’.

service_type

(Optional) Type of service. Defaults to ‘object-store’.

DEPRECATED PARAMETERS

rgw_service

Name of the keystone service used by RGW Defaults to undef

Parameters:

  • password (Any)
  • user (Any)
  • tenant (Any)
  • email (Any) (defaults to: 'rgwuser@localhost')
  • roles (Any) (defaults to: ['admin'])
  • public_url (Any) (defaults to: 'http://127.0.0.1:8080/swift/v1')
  • admin_url (Any) (defaults to: 'http://127.0.0.1:8080/swift/v1')
  • internal_url (Any) (defaults to: 'http://127.0.0.1:8080/swift/v1')
  • region (Any) (defaults to: 'RegionOne')
  • service_description (Any) (defaults to: 'Ceph RGW Service')
  • service_name (Any) (defaults to: 'swift')
  • service_type (Any) (defaults to: 'object-store')
  • rgw_service (Any) (defaults to: undef) 


58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
 
# File 'manifests/rgw/keystone/auth.pp', line 58

class ceph::rgw::keystone::auth (
  $password,
  $user,
  $tenant,
  $email               = 'rgwuser@localhost',
  $roles               = ['admin'],
  $public_url          = 'http://127.0.0.1:8080/swift/v1',
  $admin_url           = 'http://127.0.0.1:8080/swift/v1',
  $internal_url        = 'http://127.0.0.1:8080/swift/v1',
  $region              = 'RegionOne',
  $service_description = 'Ceph RGW Service',
  $service_name        = 'swift',
  $service_type        = 'object-store',
  # DEPRECATED PARAMETERS
  $rgw_service         = undef,
) {

  include openstacklib::openstackclient

  if $rgw_service {
    warning('The rgw_service parameter is deprecated')
    $rgw_service_real = $rgw_service
  } else {
    $rgw_service_real = "${service_name}::${service_type}"
  }

  ensure_resource('keystone_service', $rgw_service_real, {
    'ensure'      => 'present',
    'description' => $service_description,
  } )

  ensure_resource('keystone_endpoint', "${region}/${rgw_service_real}", {
    'ensure'       => 'present',
    'public_url'   => $public_url,
    'admin_url'    => $admin_url,
    'internal_url' => $internal_url,
  } )

  keystone_user { $user:
    ensure   => present,
    password => $password,
    email    => $email,
  }

  ensure_resource('keystone_role', $roles, {
    'ensure' => 'present'
  } )

  keystone_user_role { "${user}@${tenant}":
    ensure => present,
    roles  => $roles,
  }
}