Puppet Class: nova::key_manager::barbican

Defined in:
manifests/key_manager/barbican.pp

Overview

Class: nova::key_manager::barbican

Setup and configure Barbican Key Manager options

Parameters

barbican_endpoint

(Optional) Use this endpoint to connect to Barbican. Defaults to $::os_service_default

barbican_api_version

(Optional) Version of the Barbican API. Defaults to $::os_service_default

auth_endpoint

(Optional) Use this endpoint to connect to Keystone. Defaults to $::os_service_default

retry_delay

(Optional) Number of seconds to wait before retrying poll for key creation completion. Defaults to $::os_service_default

number_of_retries

(Optional) Number of times to retry poll fo key creation completion. Defaults to $::os_service_default

barbican_endpoint_type

(Optional) Specifies the type of endpoint. Defaults to $::os_service_default

barbican_region_name

(Optional) Specifies the region of the chosen endpoint. Defaults to $::os_service_default

send_service_user_token

(Optional) The service uses service token feature when this is set as true. Defaults to $::os_service_default

Parameters:

  • barbican_endpoint (Any) (defaults to: $::os_service_default)
  • barbican_api_version (Any) (defaults to: $::os_service_default)
  • auth_endpoint (Any) (defaults to: $::os_service_default)
  • retry_delay (Any) (defaults to: $::os_service_default)
  • number_of_retries (Any) (defaults to: $::os_service_default)
  • barbican_endpoint_type (Any) (defaults to: $::os_service_default)
  • barbican_region_name (Any) (defaults to: $::os_service_default)
  • send_service_user_token (Any) (defaults to: $::os_service_default) 


40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
 
# File 'manifests/key_manager/barbican.pp', line 40

class nova::key_manager::barbican (
  $barbican_endpoint       = $::os_service_default,
  $barbican_api_version    = $::os_service_default,
  $auth_endpoint           = $::os_service_default,
  $retry_delay             = $::os_service_default,
  $number_of_retries       = $::os_service_default,
  $barbican_endpoint_type  = $::os_service_default,
  $barbican_region_name    = $::os_service_default,
  $send_service_user_token = $::os_service_default,
) {

  include nova::deps

  # cryptsetup is required when Barbican is encrypting volumes
  ensure_packages('cryptsetup', {
    ensure => present,
    tag    => 'openstack',
  })

  oslo::key_manager::barbican { 'nova_config':
    barbican_endpoint       => $barbican_endpoint,
    barbican_api_version    => $barbican_api_version,
    auth_endpoint           => $auth_endpoint,
    retry_delay             => $retry_delay,
    number_of_retries       => $number_of_retries,
    barbican_endpoint_type  => $barbican_endpoint_type,
    barbican_region_name    => $barbican_region_name,
    send_service_user_token => $send_service_user_token,
  }
}