X-Git-Url: https://gerrit.akraino.org/r/gitweb?a=blobdiff_plain;f=userconfigtemplate%2Fuser_config.yaml;h=2ea4a1e81ba6b00fa3576a99c4b1c256d7679d0b;hb=fa06747c17ef39c108972f2efb24596960dd8243;hp=1e1e257efd99c433205d63d8fb75a821520a6d87;hpb=6ec88afabb201adbd3e02490b3cac283a6e43842;p=ta%2Fconfig-manager.git diff --git a/userconfigtemplate/user_config.yaml b/userconfigtemplate/user_config.yaml index 1e1e257..2ea4a1e 100644 --- a/userconfigtemplate/user_config.yaml +++ b/userconfigtemplate/user_config.yaml @@ -29,7 +29,7 @@ ### - Minor changes in template (e.g. new optional attributes or ### changes in possible values, value ranges or default values) ### - Backwards compatible -version: 2.0.0 +version: 2.0.5 ### Cloud name can consist of lower case letters, digits and dash (-). ### Name must start and end with a letter or a digit. @@ -62,6 +62,9 @@ users: ### python -c "from passlib.hash import sha512_crypt; import getpass; print sha512_crypt.using(rounds=5000).hash(getpass.getpass())" admin_user_password: + # Authorized public keys for the admin user + #admin_user_authorized_keys: [] + ### User details for the initial user (gets user_management_admin role) initial_user_name: initial_user_password: @@ -232,6 +235,12 @@ caas: ### the Docker bridge CIDRs of all host via this parameter. #docker0_cidr: "172.17.0.1/16" + ### This parameter is used to set the overlay CIDR of the default network for containers, so pods can comminucate + ### over this subnet and Kubernetes services are available here also. + ### The parameter can be used to make sure the CIDR of this network does not overlap with any customer + ### specific provider network's + #oam_cidr: "10.244.0.0/16" + ### Mandatory parameter. All the infrastructure's HTTP servers are secured with TLS. ### The certificates of the servers are created in infrastructure deployment time, and are signed by an externally provided CA certificate. ### This CA certificate can be configured by setting its encrypted format into this configuration parameter. @@ -249,11 +258,18 @@ caas: encrypted_ca_key: '[""]' ### This parameter defines the DNS domain served by the REC DNS server for example - ### in-cluster Kubernetes Services all belongs to this domain DNS queries. + ### in-cluster Kubernetes Services all belongs to this domain DNS queries. ### Outside of this domain are either rejected, or forwarded to a configured upstream DNS server (if, any). ### The default value is: rec.io #dns_domain: "" + ### Tenant networks. + ### This list contains all provider networks dedicated to be used by CaaS tenant users. + ### These provider networks needs to binded homogenously to all CaaS hosts and the + ### provider network type must be caas. + ### SR-IOV provider networks also supported. + #tenant_networks: ["tenant_net1", "tenant_net2"] + ### Storage configuration storage: #backends: @@ -316,6 +332,15 @@ network_profiles: ### Provider network physical interface. ### Either Ethernet or bonding interface. #: + ### Optional provider network type. + ### + ### Supported types: + ### caas: + ### Containers as a Service (CaaS) provider network + ### Notes: + ### CaaS bond interfaces are configured as a Linux bond interfaces. + #type: + ### Provider networks on this interface. ### Provider networks must be defined also in the networking: ### provider_networks: configuration. @@ -355,6 +380,11 @@ network_profiles: ### details. ### Default: false #trusted: [true|false] + + ### Optional provider network type + ### - caas: configure as CaaS SR-IOV cluster network + ### Default: caas + #type: ### Use above structure for all the SR-IOV provider networks in ### this profile # @@ -385,7 +415,11 @@ performance_profiles: ### Host CPU allocations. ### Any host CPUs that are not allocated for some specific purpose ### here will be automatically assigned by the system: - ### - All remaining CPUs are allocated for the host platform. + ### - If the node contains 'caas' in its service_profiles remaining + ### CPUs are allocated for CaaS CPU pools. Remainder CaaS CPU CPUs + ### allocated for default container execution. + ### - Any CPUs that don't fall into the above categories are allocated + ### for the host platform. ### Optional. Allocate CPUs for the host platform. ### The configured counts determine the number of full CPU cores to @@ -400,6 +434,23 @@ performance_profiles: #numa0: #numa1: + ### Optional. Performance tuning. + ### Valid values are low_latency and standard (default). + ### Note that low_latency mode will turn off power saving, etc + #tuning: + + ### Optional. Create CPU pools in CaaS CPU manager. + ### Type of this parameter is dictionary, consisting of the following attributes: + ### - exclusive_pool_percentage + ### - shared_pool_percentage + ### Attributes are optional, but at least one of them shall be defined + ### if caas_cpu_pools is defined. The sum of values can't exceed 100. + ### Minimum allocation is 1 CPU, which means anything greater than 0 + ### ensures 1 CPU allocation. + #caas_cpu_pools: + #exclusive_pool_percentage: + #shared_pool_percentage: + ### Storage profiles storage_profiles: ### The storage_profiles section name is part of mandatory configuration. @@ -472,17 +523,6 @@ storage_profiles: ### This parameter contains the name for the created LVM volume. #lv_name: - ### Mandatory - ### This parameter contains the directory where to mount - ### the backend of this profile. - #mount_dir: - - ### Optional - ### This parameter contains the mount options used to mount - ### the backend. The format must be a valid fstab format. - ### By default it is empty. - #mount_options: - host_os: ### The value of this parameter is used to protect the entire GRUB 2 menu structure of all the infrastructure nodes. ### The configured value should be a properly salted PBKDF2 (Password-Based Key Derivation Function 2) hash. @@ -543,7 +583,10 @@ hosts: address: user: password: - + # Optional: the IPMI privilege level to request. + # Typical values include 'USER', 'OPERATOR', 'ADMINISTRATOR' + # default is 'ADMINISTRATOR' if unspecified. + # priv_level: ### Optional parameter needed for virtual deployment to identify the ### nodes the mac address for the provisioning interface #mgmt_mac: [, , ...]