|
1 [DEFAULT] |
|
2 # Show more verbose log output (sets INFO log level output) |
|
3 #verbose = False |
|
4 |
|
5 # Show debugging output in logs (sets DEBUG log level output) |
|
6 #debug = False |
|
7 |
|
8 log_file = /var/log/glance/image-cache.log |
|
9 |
|
10 # Send logs to syslog (/dev/log) instead of to file specified by `log_file` |
|
11 #use_syslog = False |
|
12 |
|
13 # Directory that the Image Cache writes data to |
|
14 image_cache_dir = /var/lib/glance/image-cache/ |
|
15 |
|
16 # Number of seconds after which we should consider an incomplete image to be |
|
17 # stalled and eligible for reaping |
|
18 image_cache_stall_time = 86400 |
|
19 |
|
20 # image_cache_invalid_entry_grace_period - seconds |
|
21 # |
|
22 # If an exception is raised as we're writing to the cache, the cache-entry is |
|
23 # deemed invalid and moved to <image_cache_datadir>/invalid so that it can be |
|
24 # inspected for debugging purposes. |
|
25 # |
|
26 # This is number of seconds to leave these invalid images around before they |
|
27 # are elibible to be reaped. |
|
28 image_cache_invalid_entry_grace_period = 3600 |
|
29 |
|
30 # Max cache size in bytes |
|
31 image_cache_max_size = 10737418240 |
|
32 |
|
33 # Address to find the registry server |
|
34 registry_host = 0.0.0.0 |
|
35 |
|
36 # Port the registry server is listening on |
|
37 registry_port = 9191 |
|
38 |
|
39 # Auth settings if using Keystone |
|
40 auth_url = http://127.0.0.1:5000/v2.0/ |
|
41 admin_tenant_name = %SERVICE_TENANT_NAME% |
|
42 admin_user = %SERVICE_USER% |
|
43 admin_password = %SERVICE_PASSWORD% |
|
44 |
|
45 # List of which store classes and store class locations are |
|
46 # currently known to glance at startup. |
|
47 # known_stores = glance.store.filesystem.Store, |
|
48 # glance.store.http.Store, |
|
49 # glance.store.rbd.Store, |
|
50 # glance.store.s3.Store, |
|
51 # glance.store.swift.Store, |
|
52 # glance.store.sheepdog.Store, |
|
53 # glance.store.cinder.Store, |
|
54 |
|
55 # ============ Filesystem Store Options ======================== |
|
56 |
|
57 # Directory that the Filesystem backend store |
|
58 # writes image data to |
|
59 filesystem_store_datadir = /var/lib/glance/images/ |
|
60 |
|
61 # ============ Swift Store Options ============================= |
|
62 |
|
63 # Version of the authentication service to use |
|
64 # Valid versions are '2' for keystone and '1' for swauth and rackspace |
|
65 swift_store_auth_version = 2 |
|
66 |
|
67 # Address where the Swift authentication service lives |
|
68 # Valid schemes are 'http://' and 'https://' |
|
69 # If no scheme specified, default to 'https://' |
|
70 # For swauth, use something like '127.0.0.1:8080/v1.0/' |
|
71 swift_store_auth_address = 127.0.0.1:5000/v2.0/ |
|
72 |
|
73 # User to authenticate against the Swift authentication service |
|
74 # If you use Swift authentication service, set it to 'account':'user' |
|
75 # where 'account' is a Swift storage account and 'user' |
|
76 # is a user in that account |
|
77 swift_store_user = jdoe:jdoe |
|
78 |
|
79 # Auth key for the user authenticating against the |
|
80 # Swift authentication service |
|
81 swift_store_key = a86850deb2742ec3cb41518e26aa2d89 |
|
82 |
|
83 # Container within the account that the account should use |
|
84 # for storing images in Swift |
|
85 swift_store_container = glance |
|
86 |
|
87 # Do we create the container if it does not exist? |
|
88 swift_store_create_container_on_put = False |
|
89 |
|
90 # What size, in MB, should Glance start chunking image files |
|
91 # and do a large object manifest in Swift? By default, this is |
|
92 # the maximum object size in Swift, which is 5GB |
|
93 swift_store_large_object_size = 5120 |
|
94 |
|
95 # When doing a large object manifest, what size, in MB, should |
|
96 # Glance write chunks to Swift? This amount of data is written |
|
97 # to a temporary disk buffer during the process of chunking |
|
98 # the image file, and the default is 200MB |
|
99 swift_store_large_object_chunk_size = 200 |
|
100 |
|
101 # Whether to use ServiceNET to communicate with the Swift storage servers. |
|
102 # (If you aren't RACKSPACE, leave this False!) |
|
103 # |
|
104 # To use ServiceNET for authentication, prefix hostname of |
|
105 # `swift_store_auth_address` with 'snet-'. |
|
106 # Ex. https://example.com/v1.0/ -> https://snet-example.com/v1.0/ |
|
107 swift_enable_snet = False |
|
108 |
|
109 # ============ S3 Store Options ============================= |
|
110 |
|
111 # Address where the S3 authentication service lives |
|
112 # Valid schemes are 'http://' and 'https://' |
|
113 # If no scheme specified, default to 'http://' |
|
114 s3_store_host = 127.0.0.1:8080/v1.0/ |
|
115 |
|
116 # User to authenticate against the S3 authentication service |
|
117 s3_store_access_key = <20-char AWS access key> |
|
118 |
|
119 # Auth key for the user authenticating against the |
|
120 # S3 authentication service |
|
121 s3_store_secret_key = <40-char AWS secret key> |
|
122 |
|
123 # Container within the account that the account should use |
|
124 # for storing images in S3. Note that S3 has a flat namespace, |
|
125 # so you need a unique bucket name for your glance images. An |
|
126 # easy way to do this is append your AWS access key to "glance". |
|
127 # S3 buckets in AWS *must* be lowercased, so remember to lowercase |
|
128 # your AWS access key if you use it in your bucket name below! |
|
129 s3_store_bucket = <lowercased 20-char aws access key>glance |
|
130 |
|
131 # Do we create the bucket if it does not exist? |
|
132 s3_store_create_bucket_on_put = False |
|
133 |
|
134 # When sending images to S3, the data will first be written to a |
|
135 # temporary buffer on disk. By default the platform's temporary directory |
|
136 # will be used. If required, an alternative directory can be specified here. |
|
137 # s3_store_object_buffer_dir = /path/to/dir |
|
138 |
|
139 # ============ Cinder Store Options =========================== |
|
140 |
|
141 # Info to match when looking for cinder in the service catalog |
|
142 # Format is : separated values of the form: |
|
143 # <service_type>:<service_name>:<endpoint_type> (string value) |
|
144 #cinder_catalog_info = volume:cinder:publicURL |
|
145 |
|
146 # Override service catalog lookup with template for cinder endpoint |
|
147 # e.g. http://localhost:8776/v1/%(project_id)s (string value) |
|
148 #cinder_endpoint_template = <None> |
|
149 |
|
150 # Region name of this node (string value) |
|
151 #os_region_name = <None> |
|
152 |
|
153 # Location of ca certicates file to use for cinder client requests |
|
154 # (string value) |
|
155 #cinder_ca_certificates_file = <None> |
|
156 |
|
157 # Number of cinderclient retries on failed http calls (integer value) |
|
158 #cinder_http_retries = 3 |
|
159 |
|
160 # Allow to perform insecure SSL requests to cinder (boolean value) |
|
161 #cinder_api_insecure = False |
|
162 |
|
163 # ================= Security Options ========================== |
|
164 |
|
165 # AES key for encrypting store 'location' metadata, including |
|
166 # -- if used -- Swift or S3 credentials |
|
167 # Should be set to a random string of length 16, 24 or 32 bytes |
|
168 # metadata_encryption_key = <16, 24 or 32 char registry metadata key> |