###### VARIABLES YOU SHOULD CONFIGURE FOR YOUR DEPLOYEMNT ###### OR PASS as "-e" args to ansible-playbook command # This is an account that must exist in OpenStack. # It is used to create projects, access, Heat templates admin_user: opentlc-mgr # Authenication credentials for OpenStack in order to create the things. # These should be included with your secrets, but are listed here for reference # osp_auth_url: # osp_auth_username: # osp_auth_password: # osp_auth_cloud: # osp_auth_project_domain: #usually set to "default" # osp_auth_user_domain: #usually set to "default" # Authenication credentials for IBM Cloud Storage in order to download images from. # These should be included with your secrets, but are listed here for reference #ibm_api_key: "" #ibm_bucket_name: "" #ibm_endpoint: "" #ibm_auth_endpoint: "https://iam.cloud.ibm.com/identity/token" #ibm_resource_id: "" # Host used to convert images from IBM cloud and upload to Glance import_host: 169.47.25.34 # The output_dir holds all of the files generated during the deployment # This includes generated Heat templates, SSH config, SSH keys # This must be an absolute path and no vars (like $HOME or ~) output_dir: /tmp/output_dir # The name of the agnosticd config to deploy env_type: osp-migration # The {{ guid }} is used everywhere and it is what differentiates otherwise # identical environments. Make this unique. Usually they are 4 characters, but # it can be any reasonablre length. guid: mydefault # Used to add metadata (tags) to OpenStack objects created project_tag: "{{ env_type }}-{{ guid }}" osp_project_name: >- {{ project | replace('-bp','') | replace('OPTLC', 'OTLC-LAB-' + student_name) }}-{{ guid }} # Why is this config being deployed? # Some valid: development, ilt, production, event purpose: development # The type of cloud provider this will be deployed to # none is used here because it has its own infra in infra.yml cloud_provider: osp # This should be overwritten based on the user ordering the catalog item # It will be used by the bastion-student-user role and created on the bastion student_name: lab-user # Enable this if you want to create a user on the bastion # Mutually exclusive with {{ install_ipa_client }} install_student_user: true # Enable this if you want to use IPA for user authentication. # Mutually exclusive with {{ install_student_user }} install_ipa_client: false # TODO: What does this really do besides run the role? set_env_authorized_key: false env_authorized_key: "{{guid}}key" key_name: "default_key_name" # This is the user that Ansible will use to connect to the nodes it is # configuring from the admin/control host ansible_user: cloud-user remote_user: cloud-user # Run the bastion-lite role install_bastion: false # FTL is used for grading and solving. It will pull in the external ftl-injector role. # This might be enabled when we have solvers to run or graders for ILT install_ftl: true # FTL injector will try to install python-pip and we only have python3-pip available # This var will force the ftl-injector role to adapt accordingly ftl_use_python3: true # Packages to install on all of the hosts deployed as part of the agnosticd config # This invokes the "common" role install_common: true # As part of the "common" role, this cause it to do a yum update on the host update_packages: true # If you want DNS entries to be created automatically, choose one of these. # Alternately, they can both be set to false. use_dynamic_dns: true # This is not fully implemented yet # use_route53: false # The domain that you want to add DNS entries to osp_cluster_dns_zone: blue.osp.opentlc.com # The dynamic DNS server you will add entries to. # NOTE: This is only applicable when {{ use_dynamic_dns}} is true osp_cluster_dns_server: ddns01.opentlc.com # Whether to wait for an ack from the DNS servers before continuing wait_for_dns: true # Authenticaion for DDNS # ddns_key_name: # ddns_key_algorithm: # default value set to: "hmac-md5" # ddns_secret_name: # Ceph cluster name used to upload images ceph_cluster: "{{ osp_cluster_dns_zone.split('.')[0] }}"