HPC/hpc-cloud
7
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Compare commits

base: HPC:umcg-0.2
Branches Tags
HPC:master HPC:develop HPC:merlin HPC:feature/add-variables HPC:merlin-develop HPC:feature/galera HPC:feature/cinder-volume-encryption
HPC:umcg-0.2 HPC:umcg-0.1
...
compare: HPC:develop
Branches Tags
HPC:develop HPC:merlin HPC:master HPC:feature/add-variables HPC:merlin-develop HPC:feature/galera HPC:feature/cinder-volume-encryption
HPC:umcg-0.2 HPC:umcg-0.1

11 Commits
umcg-0.2 ... develop

Author SHA1 Message Date
Egon Rijpkema
b75fab3e81 Added openstack01 with /dev mounted in cinder container. 2018-12-18 11:08:04 +01:00
Egon Rijpkema
25e2467edc Mounting the whole of /dev/now in cinder-storage 2018-12-14 16:16:50 +01:00
Egon Rijpkema
f011919666 added openstack01 2018-12-14 10:24:44 +01:00
Egon Rijpkema
6cbebf4c91 set cinder availability zone 2018-12-11 10:04:42 +01:00
Egon Rijpkema
4309956de1 Without host mode the docker container id 
is referenced in volume name.
 2018-12-10 17:24:43 +01:00
Egon Rijpkema
51e2bf3544 Login to docker repo is now needed. 2018-11-21 15:49:06 +01:00
Egon Rijpkema
375d5fa4c9 changes for openstack03 2018-10-11 09:59:16 +02:00
Egon Rijpkema
4d95b0ddbd openstack04 added to openstack03 cluster. 2018-10-10 10:44:09 +02:00
Egon Rijpkema
981b1eff63 Better security for machine that runs horizon. 2018-10-03 13:45:54 +02:00
Egon Rijpkema
31e3506d30 Added sane ansible.cfg 2018-10-03 11:50:42 +02:00
Egon Rijpkema
03a619823d This makes a neutron net-list possible 
as well as a openstack network list.
 2018-07-19 15:01:56 +02:00
13 changed files with 48 additions and 12 deletions
Expand all files Collapse all files

6
ansible.cfg
View File

@ -1,2 +1,6 @@
[defaults]
inventory = merlin
inventory = hosts
stdout_callback = debug
vault_password_file = .vault_pass.txt
forks = 20
host_key_checking = false

8
cinder-controller.yml
View File

@ -1,7 +1,13 @@
---
- hosts: all
name: Dummy to gather facts
tasks: []
tasks:
- name: gather facts even if hosts are excluded.
setup:
delegate_to: "{{item}}"
delegate_facts: True
loop: "{{groups['all']}}"
- hosts: cinder-controller
become: True

6
common.yml
View File

@ -1,5 +1,11 @@
---
- hosts: all
become: True
vars_prompt:
- name: "docker_user"
prompt: "What is your p number?"
- name: "docker_pass"
prompt: "What is your password?"
private: yes
roles:
- common

2
group_vars/horizon.yml Normal file
View File

@ -0,0 +1,2 @@
---
security_fail2ban_enabled: false

1
horizon.yml
View File

@ -6,4 +6,5 @@
- hosts: horizon
become: True
roles:
- geerlingguy.security
- horizon

2
host_vars/openstack03 Normal file
View File

@ -0,0 +1,2 @@
---
listen_ip: '172.23.40.243'

2
host_vars/openstack04 Normal file
View File

@ -0,0 +1,2 @@
---
listen_ip: '172.23.40.253'

8
openstack03
View File

@ -26,10 +26,14 @@ openstack03
openstack03
[cinder-storage]
openstack01 storage_volume=/dev/sdc3
openstack02 storage_volume=/dev/sda5
openstack03 storage_volume=/dev/sdb1
openstack04 storage_volume=/dev/sdb1
[nova-compute]
openstack01 physical_interface_mappings=provider:bond0
openstack02 physical_interface_mappings=provider:enp34s0f1
openstack03 physical_interface_mappings=provider:enp4s0f0
openstack04 physical_interface_mappings=provider:eno1
[all:vars]
listen_ip=172.23.40.243

4
roles/cinder-storage/tasks/main.yml
View File

@ -20,7 +20,9 @@
-e "OS_PASSWORD={{ secrets['OS_PASSWORD'] }}"
-e "RABBIT_HOST={{ listen_ip | default(hostvars[groups['rabbitmq'][0]]['ansible_default_ipv4']['address']) }}"
-e "RABBIT_PASSWORD={{ secrets['RABBIT_PASSWORD'] }}"
-e "AVAILABILITY_ZONE={{ ansible_nodename }}"
-e "RABBIT_USER=openstack"
-e "CINDER_STORAGE_VOLUME={{ storage_volume }}"
tags: vars
- name: pull docker image
@ -43,7 +45,7 @@
--privileged
{{ env_vars }}
-v /srv/cinder-storage/root:/root \
-v "{{ storage_volume }}":/dev/cinder_storage_volume \
-v /dev:/dev \
{{ docker_image }} /etc/bootstrap.sh
tags: bootstrap

9
roles/cinder-storage/templates/cinder-storage.service
View File

@ -11,13 +11,10 @@ ExecStartPre=-/usr/bin/docker rm %n
ExecStart=/usr/bin/docker run --name %n \
--privileged \
{{ env_vars | replace('\n', '') }} \
-v "/dev/cinder-volumes/":/dev/cinder-volumes \
-v /srv/cinder-storage/root:/root \
-v "{{ storage_volume }}":/dev/cinder_storage_volume \
-v "/dev/lvm":/dev/lvm \
-v "/srv/cinder-storage/volumes/:/var/lib/cinder/volumes/" \
-p 8777:8776 \
-p 3260:3260 \
-v "/dev":/dev \
-v "/var/lib/cinder:/var/lib/cinder" \
--network=host \
{{ docker_image }}
[Install]

9
roles/common/tasks/main.yml
View File

@ -26,4 +26,11 @@
owner: root
group: root
- import_tasks: docker.yml
#- import_tasks: docker.yml
- name: Log into DockerHub
docker_login:
registry: registry.webhosting.rug.nl
username: "{{ docker_user }}"
password: "{{ docker_pass }}"

2
roles/keystone/templates/admin-openrc.sh
View File

@ -1,3 +1,5 @@
export OS_PROJECT_DOMAIN_NAME=Default
export OS_USER_DOMAIN_NAME=Default
export OS_TENANT_NAME=admin
export OS_USERNAME=admin
export OS_PASSWORD={{ hostvars[groups['keystone'][0]]['OS_PASSWORD'] }}

1
roles/nova-compute/templates/nova-compute.service
View File

@ -31,6 +31,7 @@ ExecStart=/usr/bin/docker run --name %n \
-e "RABBIT_HOST={{ hostvars[groups['rabbitmq'][0]]['listen_ip'] | default(hostvars[groups['rabbitmq'][0]]['ansible_default_ipv4']['address']) }}" \
-e "RABBIT_PASSWORD={{ secrets['RABBIT_PASSWORD'] }}" \
-e "RABBIT_USER=openstack" \
-e "AVAILABILITY_ZONE={{ ansible_nodename }}" \
--add-host=keystone:{{ hostvars[groups['keystone'][0]]['listen_ip'] | default(hostvars[groups['keystone'][0]]['ansible_default_ipv4']['address']) }} \
--add-host=mariadb:{{ hostvars[groups['databases'][0]]['listen_ip'] | default(hostvars[groups['databases'][0]]['ansible_default_ipv4']['address']) }} \
--privileged \