X-Git-Url: https://gerrit.akraino.org/r/gitweb?p=ta%2Fconfig-manager.git;a=blobdiff_plain;f=userconfigtemplate%2Fuser_config.yaml;h=fdf6bdee14ca0de23a31169d5d4f58dbdcccd8c6;hp=4517eaf8f3ab2bd478aaff8323478f982081448e;hb=refs%2Fheads%2Fmaster;hpb=c389bdee7b3845b55f443dbf04c0ce4083a55886 diff --git a/userconfigtemplate/user_config.yaml b/userconfigtemplate/user_config.yaml index 4517eaf..fdf6bde 100644 --- a/userconfigtemplate/user_config.yaml +++ b/userconfigtemplate/user_config.yaml @@ -29,7 +29,7 @@ ### - Minor changes in template (e.g. new optional attributes or ### changes in possible values, value ranges or default values) ### - Backwards compatible -version: 2.0.0 +version: 2.0.5 ### Cloud name can consist of lower case letters, digits and dash (-). ### Name must start and end with a letter or a digit. @@ -62,6 +62,9 @@ users: ### python -c "from passlib.hash import sha512_crypt; import getpass; print sha512_crypt.using(rounds=5000).hash(getpass.getpass())" admin_user_password: + # Authorized public keys for the admin user + #admin_user_authorized_keys: [] + ### User details for the initial user (gets user_management_admin role) initial_user_name: initial_user_password: @@ -169,6 +172,38 @@ networking: #routes: # - {to: 192.168.12.0/22, via: 192.168.12.65} + ### Optional. + ### This network is used as the underlay network for inter-cluster + ### communication within CaaS. Setting this network can expose CaaS cluster + ### services to this network. + ### If unspecified, infra_internal used as a fallback option. + #caas_oam: + ### Optional network mtu + ### If not defined default value is used. + #mtu: + + ### Network domains + #network_domains: + ### User defined name for network domain + #rack-1: + ### Network address in CIDR format + #cidr: + + ### Optional vlan id + #vlan: + + ### IP address of the gateway for default route. + ### If unspecified, the subnet's first IP address assumed. + #gateway: + + ### Range for IPs + #ip_range_start: + #ip_range_end: + + ### Optional static routes + #routes: + # - {to: , via: } + ### Provider networks ### Provider network to physical interface mapping is done ### in the network profile configuration @@ -232,6 +267,12 @@ caas: ### the Docker bridge CIDRs of all host via this parameter. #docker0_cidr: "172.17.0.1/16" + ### This parameter is used to set the overlay CIDR of the default network for containers, so pods can comminucate + ### over this subnet and Kubernetes services are available here also. + ### The parameter can be used to make sure the CIDR of this network does not overlap with any customer + ### specific provider network's + #oam_cidr: "10.244.0.0/16" + ### Mandatory parameter. All the infrastructure's HTTP servers are secured with TLS. ### The certificates of the servers are created in infrastructure deployment time, and are signed by an externally provided CA certificate. ### This CA certificate can be configured by setting its encrypted format into this configuration parameter. @@ -248,6 +289,18 @@ caas: ### e.g. ["U2FsdGVkX1+WlNST+W.."] encrypted_ca_key: '[""]' + ### This parameter defines the DNS domain served by the REC DNS server for example + ### in-cluster Kubernetes Services all belongs to this domain DNS queries. + ### Outside of this domain are either rejected, or forwarded to a configured upstream DNS server (if, any). + ### The default value is: rec.io + #dns_domain: "" + + ### Tenant networks. + ### This list contains all provider networks dedicated to be used by CaaS tenant users. + ### These provider networks needs to binded homogenously to all CaaS hosts and the + ### provider network type must be caas. + ### SR-IOV provider networks also supported. + #tenant_networks: ["tenant_net1", "tenant_net2"] ### Storage configuration storage: @@ -311,6 +364,15 @@ network_profiles: ### Provider network physical interface. ### Either Ethernet or bonding interface. #: + ### Optional provider network type. + ### + ### Supported types: + ### caas: + ### Containers as a Service (CaaS) provider network + ### Notes: + ### CaaS bond interfaces are configured as a Linux bond interfaces. + #type: + ### Provider networks on this interface. ### Provider networks must be defined also in the networking: ### provider_networks: configuration. @@ -350,6 +412,11 @@ network_profiles: ### details. ### Default: false #trusted: [true|false] + + ### Optional provider network type + ### - caas: configure as CaaS SR-IOV cluster network + ### Default: caas + #type: ### Use above structure for all the SR-IOV provider networks in ### this profile # @@ -380,7 +447,11 @@ performance_profiles: ### Host CPU allocations. ### Any host CPUs that are not allocated for some specific purpose ### here will be automatically assigned by the system: - ### - All remaining CPUs are allocated for the host platform. + ### - If the node contains 'caas' in its service_profiles remaining + ### CPUs are allocated for CaaS CPU pools. Remainder CaaS CPU CPUs + ### allocated for default container execution. + ### - Any CPUs that don't fall into the above categories are allocated + ### for the host platform. ### Optional. Allocate CPUs for the host platform. ### The configured counts determine the number of full CPU cores to @@ -395,6 +466,23 @@ performance_profiles: #numa0: #numa1: + ### Optional. Performance tuning. + ### Valid values are low_latency and standard (default). + ### Note that low_latency mode will turn off power saving, etc + #tuning: + + ### Optional. Create CPU pools in CaaS CPU manager. + ### Type of this parameter is dictionary, consisting of the following attributes: + ### - exclusive_pool_percentage + ### - shared_pool_percentage + ### Attributes are optional, but at least one of them shall be defined + ### if caas_cpu_pools is defined. The sum of values can't exceed 100. + ### Minimum allocation is 1 CPU, which means anything greater than 0 + ### ensures 1 CPU allocation. + #caas_cpu_pools: + #exclusive_pool_percentage: + #shared_pool_percentage: + ### Storage profiles storage_profiles: ### The storage_profiles section name is part of mandatory configuration. @@ -467,17 +555,6 @@ storage_profiles: ### This parameter contains the name for the created LVM volume. #lv_name: - ### Mandatory - ### This parameter contains the directory where to mount - ### the backend of this profile. - #mount_dir: - - ### Optional - ### This parameter contains the mount options used to mount - ### the backend. The format must be a valid fstab format. - ### By default it is empty. - #mount_options: - host_os: ### The value of this parameter is used to protect the entire GRUB 2 menu structure of all the infrastructure nodes. ### The configured value should be a properly salted PBKDF2 (Password-Based Key Derivation Function 2) hash. @@ -538,10 +615,12 @@ hosts: address: user: password: - + # Optional: the IPMI privilege level to request. + # Typical values include 'USER', 'OPERATOR', 'ADMINISTRATOR' + # default is 'ADMINISTRATOR' if unspecified. + # priv_level: ### Optional parameter needed for virtual deployment to identify the ### nodes the mac address for the provisioning interface #mgmt_mac: [, , ...] ... -