Puppet Class: magnum::keystone::keystone_auth

Defined in:
manifests/keystone/keystone_auth.pp

Overview

class: magnum::keystone::keystone_auth

Configure the keystone_auth section in the configuration file

Parameters

password

(Required) Password to create for the service user

username

(Optional) The name of the service user Defaults to ‘magnum’

auth_url

(Optional) The URL to use for authentication. Defaults to ‘localhost:5000

project_name

(Optional) Service project name Defaults to ‘services’

user_domain_name

(Optional) Name of domain for $username Defaults to ‘Default’

project_domain_name

(Optional) Name of domain for $project_name Defaults to ‘Default’

system_scope

(Optional) Scope for system operations. Defaults to $facts

auth_type

(Optional) Authentication type to load Defaults to ‘password’

cafile

(Optional) A PEM encoded Certificate Authority to use when verifying HTTPs connections. Defaults to $facts.

certfile

(Optional) Required if identity server requires client certificate Defaults to $facts.

keyfile

(Optional) Required if identity server requires client certificate Defaults to $facts.

insecure

(Optional) If true, explicitly allow TLS without checking server cert against any certificate authorities. Defaults to $facts

Parameters:

  • password (Any)
  • username (Any) (defaults to: 'magnum')
  • auth_url (Any) (defaults to: 'http://localhost:5000')
  • project_name (Any) (defaults to: 'services')
  • user_domain_name (Any) (defaults to: 'Default')
  • project_domain_name (Any) (defaults to: 'Default')
  • system_scope (Any) (defaults to: $facts['os_service_default'])
  • auth_type (Any) (defaults to: 'password')
  • cafile (Any) (defaults to: $facts['os_service_default'])
  • keyfile (Any) (defaults to: $facts['os_service_default'])
  • certfile (Any) (defaults to: $facts['os_service_default'])
  • insecure (Any) (defaults to: $facts['os_service_default']) 


56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
 
# File 'manifests/keystone/keystone_auth.pp', line 56

class magnum::keystone::keystone_auth(
  $password,
  $username            = 'magnum',
  $auth_url            = 'http://localhost:5000',
  $project_name        = 'services',
  $user_domain_name    = 'Default',
  $project_domain_name = 'Default',
  $system_scope        = $facts['os_service_default'],
  $auth_type           = 'password',
  $cafile              = $facts['os_service_default'],
  $keyfile             = $facts['os_service_default'],
  $certfile            = $facts['os_service_default'],
  $insecure            = $facts['os_service_default'],
) {

  include magnum::deps

  if is_service_default($system_scope) {
    $project_name_real = $project_name
    $project_domain_name_real = $project_domain_name
  } else {
    $project_name_real = $facts['os_service_default']
    $project_domain_name_real = $facts['os_service_default']
  }

  magnum_config {
    'keystone_auth/auth_url'            : value => $auth_url;
    'keystone_auth/username'            : value => $username;
    'keystone_auth/password'            : value => $password, secret => true;
    'keystone_auth/project_name'        : value => $project_name_real;
    'keystone_auth/user_domain_name'    : value => $user_domain_name;
    'keystone_auth/project_domain_name' : value => $project_domain_name_real;
    'keystone_auth/system_scope'        : value => $system_scope;
    'keystone_auth/auth_type'           : value => $auth_type;
    'keystone_auth/cafile'              : value => $cafile;
    'keystone_auth/keyfile'             : value => $keyfile;
    'keystone_auth/certfile'            : value => $certfile;
    'keystone_auth/insecure'            : value => $insecure;
  }
}