Removed hardcoded ips for glance

Also added domain, projects, users creation for keystone. This guide was followed: https://docs.openstack.org/ocata/install-guide-ubuntu/keystone-us
2017-07-12 10:19:45 +02:00
parent 062fabd4b6
commit a25852b39e
9 changed files with 46 additions and 31 deletions
--- a/roles/keystone/files/Dockerfile
+++ b/roles/keystone/files/Dockerfile
@ -17,7 +17,7 @@ RUN set -x \

 # set admin token TODO: make this a secret
 # in volume of met env
-ADD keystone.conf /etc/keystone/keystone.conf
+COPY keystone.conf /etc/keystone/keystone.conf

 RUN mkdir /etc/keystone/fernet-keys

@ -25,5 +25,7 @@ RUN chown keystone: /etc/keystone/fernet-keys

 COPY admin-openrc.sh root/admin-openrc.sh

+COPY bootstrap.sh /etc/bootstrap.sh
+
 #RUN keystone-manage db_sync
 CMD apachectl -DFOREGROUND
--- a/roles/keystone/files/bootstrap.sh
+++ b/roles/keystone/files/bootstrap.sh
@ -0,0 +1,16 @@
+#!/bin/bash
+
+source /root/admin-openrc.sh
+
+openstack project create --domain default \
+      --description "Service Project" service
+
+openstack project create --domain default \
+  --description "Demo Project" demo
+
+openstack user create --domain default \
+  --password geheim demo
+
+openstack role create user
+
+openstack role add --project demo --user demo user
--- a/roles/keystone/tasks/main.yml
+++ b/roles/keystone/tasks/main.yml
@ -35,11 +35,6 @@
 - name: install service file
  command: systemctl daemon-reload

- name: make sure service is started
-  systemd:
-    name: keystone.service
-    state: restarted
-
 - name: Initialize db
  script: scripts/initialize_db.sh {{ hostvars[groups['databases'][0]]['ansible_default_ipv4']['address'] }}

@ -60,3 +55,14 @@
                    --bootstrap-public-url http://{{ hostvars[groups['keystone'][0]]['ansible_default_ipv4']['address'] }}:5000/v3/
                    --bootstrap-region-id RegionOne

+- name: Create a domain, projects users and roles
+  command: >
+             /usr/bin/docker run --rm
+             --add-host=mariadb:{{ hostvars[groups['databases'][0]]['ansible_default_ipv4']['address'] }}
+             -v /srv/keystone/fernet-keys:/etc/keystone/fernet-keys
+             hpc/keystone bash /etc/bootstrap.sh
+
+- name: make sure service is started
+  systemd:
+    name: keystone.service
+    state: restarted
--- a/roles/keystone/templates/keystone.service
+++ b/roles/keystone/templates/keystone.service
@ -6,8 +6,7 @@ Requires=docker.service
 [Service]
 TimeoutStartSec=0
 Restart=always
-ExecStartPre=-/usr/bin/docker stop %n
-ExecStartPre=-/usr/bin/docker rm %n
+ExecStartPre=-/usr/bin/docker rm -f %n
 ExecStart=/usr/bin/docker run --name %n \
  --add-host=mariadb:172.23.41.2 \
  -p 5000:5000 -p 35357:35357 \