1 class roles::keystone {
3 $keystone_postgres_password = hkdf('/etc/puppet/secret', "openstack-keystone")
8 sql_connection => 'postgresql://keystone:$keystone_postgres_password@bmdb1.debian.org/keystone',
10 admin_token => 'admin_token',
13 class { 'keystone::roles::admin':
14 email => 'test@puppetlabs.com',
15 password => 'ChangeMe',
17 class { 'keystone::endpoint':
18 public_url => "https://${::fqdn}:5000/",
19 admin_url => "https://${::fqdn}:35357/",
22 keystone_config { 'ssl/enable': value => true }
25 class { 'keystone::wsgi::apache':
29 ssl::service { 'openstack.bm.debian.org':
30 notify => Service['apache2'],