]> git.donarmstrong.com Git - dsa-puppet.git/blob - modules/roles/manifests/keystone.pp
projects / dsa-puppet.git / blob
? search:


92642b3491f1394f5cb3352d0bc63cc809875e36
[dsa-puppet.git] / modules / roles / manifests / keystone.pp
1 class roles::keystone {
2
3         $keystone_postgres_password = hkdf('/etc/puppet/secret', "openstack-keystone")
4
5         class { 'keystone':
6                 verbose        => true,
7                 debug          => true,
8                 sql_connection => 'postgresql://keystone:$keystone_postgres_password@bmdb1.debian.org/keystone',
9                 catalog_type   => 'sql',
10                 admin_token    => 'admin_token',
11                 enabled        => false,
12         }
13         class { 'keystone::roles::admin':
14                 email    => 'test@puppetlabs.com',
15                 password => 'ChangeMe',
16         }
17         class { 'keystone::endpoint':
18                 public_url => "https://${::fqdn}:5000/",
19                 admin_url  => "https://${::fqdn}:35357/",
20         }
21
22         keystone_config { 'ssl/enable': value => true }
23
24         include apache
25         class { 'keystone::wsgi::apache':
26                 ssl => true
27         }
28
29         ssl::service { 'openstack.bm.debian.org':
30                 notify => Service['apache2'],
31         }
32 }
Unnamed repository; edit this file 'description' to name the repository.