Skip to content

dguerri/openstack-keystone

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

45 Commits
defaults
defaults
 
 
handlers
handlers
 
 
library
library
 
 
meta
meta
 
 
tasks
tasks
 
 
tests
tests
 
 
vars
vars
 
 
.travis.yml
.travis.yml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Keystone OpenStack Ansible Role

Status

  • Build Status on master branch
  • Build Status on development branch
  • Ansible Galaxy on Ansible Galaxy

OpenStack Keystone identity service installation.

Tested on Ubuntu Precise (12.04) and Trusty (14.04) with Juno.

Requirements

A DBMS already configured with a user and a database (when applicable). For RHEL/CentOS, RHOSP or RDO repositories are needed.

Role Variables

Keystone (set by this role)

Name Default value Description
keystone_database_url sqlite:https:////var/lib/keystone/keystone.db Database URI
keystone_admin_bind_host 0.0.0.0 On which IP Keystone admin service should listen on
keystone_admin_port 35357 Desired Keystone admin service port
keystone_bind_host 0.0.0.0 On which IP Keystone public service should listen on
keystone_port 5000 Desired Keystone service port
keystone_protocol http Desired Keystone protocol (http/https) - WiP, do not use
keystone_admin_token keystone_admin_token Desired service token
keystone_tenants [ ] Array of of hash with tenant name and description (see examples)
keystone_users [ ] Array of hash with user: name, password, tenant and email (see examples)
keystone_roles [ ] Array of hash with role: name, user and tenant (see examples)
keystone_services [ ] Array of hash with role: name, service_type and description (see examples)
keystone_endpoints [ ] Array of hash with role: service_name, region, public_url, internal_url and admin_url (see examples)
keystone_log_dir /var/log/keystone Keystone log directory (it must exists)
keystone_hostname localhost Hostname/IP used internally during configuration. localhost is usually ok

Dependencies

None.

Example Playbook

- hosts: keystone001
  roles:
    - role: openstack-keystone
      keystone_database_url: "mysql:https://{{ MYSQL_KEYSTONE_USER }}:{{ MYSQL_KEYSTONE_PASS }}@{{ DATABASE_HOSTNAME }}/{{ MYSQL_KEYSTONE_DB }}"
      keystone_admin_token: "{{ ADMIN_TOKEN }}"
      keystone_tenants:
        - { name: admin, description: "Admin tenant" }
        - { name: service, description: "Service tenant" }
        - { name: demo, description: "Demo tenant"  }
      keystone_users:
        - { name: admin, password: "{{ ADMIN_PASS }}", tenant: admin }
        - { name: demo, password: "{{ DEMO_PASS }}", tenant: demo }
        - { name: glance, password: "{{ GLANCE_PASS }}", tenant: service }
      keystone_roles:
        - { name: admin, user: admin, tenant: admin }
        - { name: _member_, user: demo, tenant: demo  }
        - { name: admin, user: glance, tenant: service  }
      keystone_services:
        - { name: keystone, service_type: identity }
        - { name: glance, service_type: image }
      keystone_endpoints:
        - service_name: keystone
          public_url: "https://keystone:5000/v2.0"
          internal_url: "https://keystone:5000/v2.0"
          admin_url: "https://keystone:35357/v2.0"
        - service_name: glance
          public_url: "https://glance:9292/"
          internal_url: "https://glance:9292/"
          admin_url: "https://glance:9292/"

A complete Ansible playbook demo, which uses this role, is available on Github (openstack-ansible-galaxy/vagrant-ansible-openstack) https://github.com/openstack-ansible-galaxy/vagrant-ansible-openstack

Credits

RedHat suport implemented by Abel Boldú [email protected]

License

Apache

Copyright

Copyright (c) 2015 Davide Guerri [email protected]

About

OpenStack Keystone identity service installation - Ansible role

Resources

Readme

License

Apache-2.0 license
Activity

Stars

4 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases

4 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages