1 [DEFAULT] |
1 [DEFAULT] |
2 |
2 |
3 # |
3 # |
4 # Options defined in heat.common.config |
4 # From heat.api.middleware.ssl |
5 # |
5 # |
6 |
6 |
7 # Name of the engine node. This can be an opaque identifier. |
7 # The HTTP Header that will be used to determine which the original request |
8 # It is not necessarily a hostname, FQDN, or IP address. |
8 # protocol scheme was, even if it was removed by an SSL terminator proxy. |
9 # (string value) |
9 # (string value) |
10 #host=heat |
10 #secure_proxy_ssl_header = X-Forwarded-Proto |
11 |
11 |
12 |
12 # |
13 # |
13 # From heat.common.config |
14 # Options defined in heat.common.config |
14 # |
15 # |
15 |
16 |
16 # Name of the engine node. This can be an opaque identifier. It is not |
17 # The default user for new instances. This option is |
17 # necessarily a hostname, FQDN, or IP address. (string value) |
18 # deprecated and will be removed in the Juno release. If it's |
18 #host = heat |
19 # empty, Heat will use the default user set up with your cloud |
19 |
20 # image (for OS::Nova::Server) or 'ec2-user' (for |
20 # |
|
21 # From heat.common.config |
|
22 # |
|
23 |
|
24 # The default user for new instances. This option is deprecated and will be |
|
25 # removed in the Juno release. If it's empty, Heat will use the default user |
|
26 # set up with your cloud image (for OS::Nova::Server) or 'ec2-user' (for |
21 # AWS::EC2::Instance). (string value) |
27 # AWS::EC2::Instance). (string value) |
22 instance_user= |
28 instance_user = |
23 |
|
24 # Driver to use for controlling instances. (string value) |
|
25 #instance_driver=heat.engine.nova |
|
26 |
29 |
27 # List of directories to search for plug-ins. (list value) |
30 # List of directories to search for plug-ins. (list value) |
28 plugin_dirs=/usr/lib/heat |
31 plugin_dirs = /usr/lib/heat |
29 |
32 |
30 # The directory to search for environment files. (string |
33 # The directory to search for environment files. (string value) |
|
34 #environment_dir = /etc/heat/environment.d |
|
35 |
|
36 # Select deferred auth method, stored password or trusts. (string value) |
|
37 # Allowed values: password, trusts |
|
38 #deferred_auth_method = trusts |
|
39 |
|
40 # Subset of trustor roles to be delegated to heat. If left unset, all roles of |
|
41 # a user will be delegated to heat when creating a stack. (list value) |
|
42 #trusts_delegated_roles = |
|
43 |
|
44 # Maximum resources allowed per top-level stack. -1 stands for unlimited. |
|
45 # (integer value) |
|
46 #max_resources_per_stack = 1000 |
|
47 |
|
48 # Maximum number of stacks any one tenant may have active at one time. (integer |
31 # value) |
49 # value) |
32 #environment_dir=/etc/heat/environment.d |
50 #max_stacks_per_tenant = 100 |
33 |
51 |
34 # Select deferred auth method, stored password or trusts. |
52 # Number of times to retry to bring a resource to a non-error state. Set to 0 |
35 # (string value) |
53 # to disable retries. (integer value) |
36 #deferred_auth_method=password |
54 #action_retry_limit = 5 |
37 |
55 |
38 # Subset of trustor roles to be delegated to heat. If |
56 # Controls how many events will be pruned whenever a stack's events exceed |
39 # trusts_delegated_roles is set to [], all roles of a user |
57 # max_events_per_stack. Set this lower to keep more events at the expense of |
40 # will be delegated to heat when creating a stack. (list |
58 # more frequent purges. (integer value) |
|
59 #event_purge_batch_size = 10 |
|
60 |
|
61 # Maximum events that will be available per stack. Older events will be deleted |
|
62 # when this is reached. Set to 0 for unlimited events per stack. (integer |
41 # value) |
63 # value) |
42 #trusts_delegated_roles=heat_stack_owner |
64 #max_events_per_stack = 1000 |
43 |
65 |
44 # Maximum resources allowed per top-level stack. (integer |
66 # Timeout in seconds for stack action (ie. create or update). (integer value) |
|
67 #stack_action_timeout = 3600 |
|
68 |
|
69 # Error wait time in seconds for stack action (ie. create or update). (integer |
45 # value) |
70 # value) |
46 #max_resources_per_stack=1000 |
71 #error_wait_time = 240 |
47 |
72 |
48 # Maximum number of stacks any one tenant may have active at |
73 # RPC timeout for the engine liveness check that is used for stack locking. |
49 # one time. (integer value) |
74 # (integer value) |
50 #max_stacks_per_tenant=100 |
75 #engine_life_check_timeout = 2 |
51 |
76 |
52 # Number of times to retry to bring a resource to a non-error |
77 # Enable the legacy OS::Heat::CWLiteAlarm resource. (boolean value) |
53 # state. Set to 0 to disable retries. (integer value) |
78 #enable_cloud_watch_lite = true |
54 #action_retry_limit=5 |
79 |
55 |
80 # Enable the preview Stack Abandon feature. (boolean value) |
56 # Controls how many events will be pruned whenever a stack's |
81 #enable_stack_abandon = false |
57 # events exceed max_events_per_stack. Set this lower to keep |
82 |
58 # more events at the expense of more frequent purges. (integer |
83 # Enable the preview Stack Adopt feature. (boolean value) |
|
84 #enable_stack_adopt = false |
|
85 |
|
86 # Enables engine with convergence architecture. All stacks with this option |
|
87 # will be created using convergence engine . (boolean value) |
|
88 #convergence_engine = false |
|
89 |
|
90 # Template default for how the server should receive the metadata required for |
|
91 # software configuration. POLL_SERVER_CFN will allow calls to the cfn API |
|
92 # action DescribeStackResource authenticated with the provided keypair |
|
93 # (requires enabled heat-api-cfn). POLL_SERVER_HEAT will allow calls to the |
|
94 # Heat API resource-show using the provided keystone credentials (requires |
|
95 # keystone v3 API, and configured stack_user_* config options). POLL_TEMP_URL |
|
96 # will create and populate a Swift TempURL with metadata for polling (requires |
|
97 # object-store endpoint which supports TempURL). (string value) |
|
98 # Allowed values: POLL_SERVER_CFN, POLL_SERVER_HEAT, POLL_TEMP_URL |
|
99 #default_software_config_transport = POLL_SERVER_CFN |
|
100 |
|
101 # Template default for how the server should signal to heat with the deployment |
|
102 # output values. CFN_SIGNAL will allow an HTTP POST to a CFN keypair signed URL |
|
103 # (requires enabled heat-api-cfn). TEMP_URL_SIGNAL will create a Swift TempURL |
|
104 # to be signaled via HTTP PUT (requires object-store endpoint which supports |
|
105 # TempURL). HEAT_SIGNAL will allow calls to the Heat API resource-signal using |
|
106 # the provided keystone credentials (string value) |
|
107 # Allowed values: CFN_SIGNAL, TEMP_URL_SIGNAL, HEAT_SIGNAL |
|
108 #default_deployment_signal_transport = CFN_SIGNAL |
|
109 |
|
110 # Deprecated. (string value) |
|
111 #onready = <None> |
|
112 |
|
113 # When this feature is enabled, scheduler hints identifying the heat stack |
|
114 # context of a server or volume resource are passed to the configured |
|
115 # schedulers in nova and cinder, for creates done using heat resource types |
|
116 # OS::Cinder::Volume, OS::Nova::Server, and AWS::EC2::Instance. |
|
117 # heat_root_stack_id will be set to the id of the root stack of the resource, |
|
118 # heat_stack_id will be set to the id of the resource's parent stack, |
|
119 # heat_stack_name will be set to the name of the resource's parent stack, |
|
120 # heat_path_in_stack will be set to a list of tuples, (stackresourcename, |
|
121 # stackname) with list[0] being (None, rootstackname), heat_resource_name will |
|
122 # be set to the resource's name, and heat_resource_uuid will be set to the |
|
123 # resource's orchestration id. (boolean value) |
|
124 #stack_scheduler_hints = false |
|
125 |
|
126 # |
|
127 # From heat.common.config |
|
128 # |
|
129 |
|
130 # Seconds between running periodic tasks. (integer value) |
|
131 #periodic_interval = 60 |
|
132 |
|
133 # URL of the Heat metadata server. (string value) |
|
134 #heat_metadata_server_url = |
|
135 |
|
136 # URL of the Heat waitcondition server. (string value) |
|
137 #heat_waitcondition_server_url = |
|
138 |
|
139 # URL of the Heat CloudWatch server. (string value) |
|
140 #heat_watch_server_url = |
|
141 |
|
142 # Instance connection to CFN/CW API via https. (string value) |
|
143 #instance_connection_is_secure = 0 |
|
144 |
|
145 # Instance connection to CFN/CW API validate certs if SSL is used. (string |
59 # value) |
146 # value) |
60 #event_purge_batch_size=10 |
147 #instance_connection_https_validate_certificates = 1 |
61 |
148 |
62 # Maximum events that will be available per stack. Older |
149 # Default region name used to get services endpoints. (string value) |
63 # events will be deleted when this is reached. Set to 0 for |
150 #region_name_for_services = <None> |
64 # unlimited events per stack. (integer value) |
151 |
65 #max_events_per_stack=1000 |
152 # Keystone role for heat template-defined users. (string value) |
66 |
153 #heat_stack_user_role = heat_stack_user |
67 # Timeout in seconds for stack action (ie. create or update). |
154 |
|
155 # Keystone domain ID which contains heat template-defined users. If this option |
|
156 # is set, stack_user_domain_name option will be ignored. (string value) |
|
157 # Deprecated group/name - [DEFAULT]/stack_user_domain |
|
158 #stack_user_domain_id = <None> |
|
159 |
|
160 # Keystone domain name which contains heat template-defined users. If |
|
161 # `stack_user_domain_id` option is set, this option is ignored. (string value) |
|
162 #stack_user_domain_name = <None> |
|
163 |
|
164 # Keystone username, a user with roles sufficient to manage users and projects |
|
165 # in the stack_user_domain. (string value) |
|
166 #stack_domain_admin = <None> |
|
167 |
|
168 # Keystone password for stack_domain_admin user. (string value) |
|
169 #stack_domain_admin_password = <None> |
|
170 |
|
171 # Maximum raw byte size of any template. (integer value) |
|
172 #max_template_size = 524288 |
|
173 |
|
174 # Maximum depth allowed when using nested stacks. (integer value) |
|
175 #max_nested_stack_depth = 5 |
|
176 |
|
177 # Number of heat-engine processes to fork and run. (integer value) |
|
178 num_engine_workers = 1 |
|
179 |
|
180 # |
|
181 # From heat.common.crypt |
|
182 # |
|
183 |
|
184 # Key used to encrypt authentication info in the database. Length of this key |
|
185 # must be 16, 24 or 32 characters. (string value) |
|
186 #auth_encryption_key = notgood but just long enough i t |
|
187 |
|
188 # |
|
189 # From heat.common.heat_keystoneclient |
|
190 # |
|
191 |
|
192 # Fully qualified class name to use as a keystone backend. (string value) |
|
193 #keystone_backend = heat.common.heat_keystoneclient.KeystoneClientV3 |
|
194 |
|
195 # |
|
196 # From heat.common.wsgi |
|
197 # |
|
198 |
|
199 # Maximum raw byte size of JSON request body. Should be larger than |
|
200 # max_template_size. (integer value) |
|
201 #max_json_body_size = 1048576 |
|
202 |
|
203 # |
|
204 # From heat.engine.clients |
|
205 # |
|
206 |
|
207 # Fully qualified class name to use as a client backend. (string value) |
|
208 #cloud_backend = heat.engine.clients.OpenStackClients |
|
209 |
|
210 # |
|
211 # From heat.engine.notification |
|
212 # |
|
213 |
|
214 # Default notification level for outgoing notifications. (string value) |
|
215 #default_notification_level = INFO |
|
216 |
|
217 # Default publisher_id for outgoing notifications. (string value) |
|
218 #default_publisher_id = <None> |
|
219 |
|
220 # List of drivers to send notifications (DEPRECATED). (multi valued) |
|
221 #list_notifier_drivers = |
|
222 |
|
223 # |
|
224 # From heat.engine.resources |
|
225 # |
|
226 |
|
227 # Custom template for the built-in loadbalancer nested stack. (string value) |
|
228 #loadbalancer_template = <None> |
|
229 |
|
230 # |
|
231 # From heat.openstack.common.eventlet_backdoor |
|
232 # |
|
233 |
|
234 # Enable eventlet backdoor. Acceptable values are 0, <port>, and |
|
235 # <start>:<end>, where 0 results in listening on a random tcp port number; |
|
236 # <port> results in listening on the specified port number (and not enabling |
|
237 # backdoor if that port is in use); and <start>:<end> results in listening on |
|
238 # the smallest unused port number within the specified range of port numbers. |
|
239 # The chosen port is displayed in the service's log file. (string value) |
|
240 #backdoor_port = <None> |
|
241 |
|
242 # |
|
243 # From heat.openstack.common.policy |
|
244 # |
|
245 |
|
246 # The JSON file that defines policies. (string value) |
|
247 #policy_file = policy.json |
|
248 |
|
249 # Default rule. Enforced when a requested rule is not found. (string value) |
|
250 #policy_default_rule = default |
|
251 |
|
252 # Directories where policy configuration files are stored. They can be relative |
|
253 # to any directory in the search path defined by the config_dir option, or |
|
254 # absolute paths. The file defined by policy_file must exist for these |
|
255 # directories to be searched. (multi valued) |
|
256 #policy_dirs = policy.d |
|
257 |
|
258 # |
|
259 # From oslo.log |
|
260 # |
|
261 |
|
262 # Print debugging output (set logging level to DEBUG instead of default WARNING |
|
263 # level). (boolean value) |
|
264 #debug = false |
|
265 |
|
266 # Print more verbose output (set logging level to INFO instead of default |
|
267 # WARNING level). (boolean value) |
|
268 #verbose = false |
|
269 |
|
270 # The name of a logging configuration file. This file is appended to any |
|
271 # existing logging configuration files. For details about logging configuration |
|
272 # files, see the Python logging module documentation. (string value) |
|
273 # Deprecated group/name - [DEFAULT]/log_config |
|
274 #log_config_append = <None> |
|
275 |
|
276 # DEPRECATED. A logging.Formatter log message format string which may use any |
|
277 # of the available logging.LogRecord attributes. This option is deprecated. |
|
278 # Please use logging_context_format_string and logging_default_format_string |
|
279 # instead. (string value) |
|
280 #log_format = <None> |
|
281 |
|
282 # Format string for %%(asctime)s in log records. Default: %(default)s . (string |
|
283 # value) |
|
284 #log_date_format = %Y-%m-%d %H:%M:%S |
|
285 |
|
286 # (Optional) Name of log file to output to. If no default is set, logging will |
|
287 # go to stdout. (string value) |
|
288 # Deprecated group/name - [DEFAULT]/logfile |
|
289 #log_file = <None> |
|
290 |
|
291 # (Optional) The base directory used for relative --log-file paths. (string |
|
292 # value) |
|
293 # Deprecated group/name - [DEFAULT]/logdir |
|
294 #log_dir = <None> |
|
295 |
|
296 # Use syslog for logging. Existing syslog format is DEPRECATED during I, and |
|
297 # will change in J to honor RFC5424. (boolean value) |
|
298 #use_syslog = false |
|
299 |
|
300 # (Optional) Enables or disables syslog rfc5424 format for logging. If enabled, |
|
301 # prefixes the MSG part of the syslog message with APP-NAME (RFC5424). The |
|
302 # format without the APP-NAME is deprecated in I, and will be removed in J. |
|
303 # (boolean value) |
|
304 #use_syslog_rfc_format = false |
|
305 |
|
306 # Syslog facility to receive log lines. (string value) |
|
307 #syslog_log_facility = LOG_USER |
|
308 |
|
309 # Log output to standard error. (boolean value) |
|
310 #use_stderr = true |
|
311 |
|
312 # Format string to use for log messages with context. (string value) |
|
313 #logging_context_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [%(request_id)s %(user_identity)s] %(instance)s%(message)s |
|
314 |
|
315 # Format string to use for log messages without context. (string value) |
|
316 #logging_default_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [-] %(instance)s%(message)s |
|
317 |
|
318 # Data to append to log format when level is DEBUG. (string value) |
|
319 #logging_debug_format_suffix = %(funcName)s %(pathname)s:%(lineno)d |
|
320 |
|
321 # Prefix each line of exception output with this format. (string value) |
|
322 #logging_exception_prefix = %(asctime)s.%(msecs)03d %(process)d TRACE %(name)s %(instance)s |
|
323 |
|
324 # List of logger=LEVEL pairs. (list value) |
|
325 #default_log_levels = amqp=WARN,amqplib=WARN,boto=WARN,qpid=WARN,sqlalchemy=WARN,suds=INFO,oslo.messaging=INFO,iso8601=WARN,requests.packages.urllib3.connectionpool=WARN,urllib3.connectionpool=WARN,websocket=WARN,requests.packages.urllib3.util.retry=WARN,urllib3.util.retry=WARN,keystonemiddleware=WARN,routes.middleware=WARN,stevedore=WARN |
|
326 |
|
327 # Enables or disables publication of error events. (boolean value) |
|
328 #publish_errors = false |
|
329 |
|
330 # Enables or disables fatal status of deprecations. (boolean value) |
|
331 #fatal_deprecations = false |
|
332 |
|
333 # The format for an instance that is passed with the log message. (string |
|
334 # value) |
|
335 #instance_format = "[instance: %(uuid)s] " |
|
336 |
|
337 # The format for an instance UUID that is passed with the log message. (string |
|
338 # value) |
|
339 #instance_uuid_format = "[instance: %(uuid)s] " |
|
340 |
|
341 # |
|
342 # From oslo.messaging |
|
343 # |
|
344 |
|
345 # ZeroMQ bind address. Should be a wildcard (*), an ethernet interface, or IP. |
|
346 # The "host" option should point or resolve to this address. (string value) |
|
347 #rpc_zmq_bind_address = * |
|
348 |
|
349 # MatchMaker driver. (string value) |
|
350 #rpc_zmq_matchmaker = local |
|
351 |
|
352 # ZeroMQ receiver listening port. (integer value) |
|
353 #rpc_zmq_port = 9501 |
|
354 |
|
355 # Number of ZeroMQ contexts, defaults to 1. (integer value) |
|
356 #rpc_zmq_contexts = 1 |
|
357 |
|
358 # Maximum number of ingress messages to locally buffer per topic. Default is |
|
359 # unlimited. (integer value) |
|
360 #rpc_zmq_topic_backlog = <None> |
|
361 |
|
362 # Directory for holding IPC sockets. (string value) |
|
363 #rpc_zmq_ipc_dir = /var/run/openstack |
|
364 |
|
365 # Name of this node. Must be a valid hostname, FQDN, or IP address. Must match |
|
366 # "host" option, if running Nova. (string value) |
|
367 #rpc_zmq_host = localhost |
|
368 |
|
369 # Seconds to wait before a cast expires (TTL). Only supported by impl_zmq. |
68 # (integer value) |
370 # (integer value) |
69 #stack_action_timeout=3600 |
371 #rpc_cast_timeout = 30 |
70 |
|
71 # RPC timeout for the engine liveness check that is used for |
|
72 # stack locking. (integer value) |
|
73 #engine_life_check_timeout=2 |
|
74 |
|
75 # Enable the legacy OS::Heat::CWLiteAlarm resource. (boolean |
|
76 # value) |
|
77 #enable_cloud_watch_lite=true |
|
78 |
|
79 # Enable the preview Stack Abandon feature. (boolean value) |
|
80 #enable_stack_abandon=false |
|
81 |
|
82 # Enable the preview Stack Adopt feature. (boolean value) |
|
83 #enable_stack_adopt=false |
|
84 |
|
85 # Deprecated. (string value) |
|
86 #onready=<None> |
|
87 |
|
88 |
|
89 # |
|
90 # Options defined in heat.common.config |
|
91 # |
|
92 |
|
93 # Seconds between running periodic tasks. (integer value) |
|
94 #periodic_interval=60 |
|
95 |
|
96 # URL of the Heat metadata server. (string value) |
|
97 #heat_metadata_server_url= |
|
98 |
|
99 # URL of the Heat waitcondition server. (string value) |
|
100 #heat_waitcondition_server_url= |
|
101 |
|
102 # URL of the Heat CloudWatch server. (string value) |
|
103 #heat_watch_server_url= |
|
104 |
|
105 # Instance connection to CFN/CW API via https. (string value) |
|
106 #instance_connection_is_secure=0 |
|
107 |
|
108 # Instance connection to CFN/CW API validate certs if SSL is |
|
109 # used. (string value) |
|
110 #instance_connection_https_validate_certificates=1 |
|
111 |
|
112 # Default region name used to get services endpoints. (string |
|
113 # value) |
|
114 #region_name_for_services=<None> |
|
115 |
|
116 # Keystone role for heat template-defined users. (string |
|
117 # value) |
|
118 #heat_stack_user_role=heat_stack_user |
|
119 |
|
120 # Keystone domain ID which contains heat template-defined |
|
121 # users. If this option is set, stack_user_domain_name option |
|
122 # will be ignored. (string value) |
|
123 # Deprecated group/name - [DEFAULT]/stack_user_domain |
|
124 #stack_user_domain_id=<None> |
|
125 |
|
126 # Keystone domain name which contains heat template-defined |
|
127 # users. If `stack_user_domain_id` option is set, this option |
|
128 # is ignored. (string value) |
|
129 #stack_user_domain_name=<None> |
|
130 |
|
131 # Keystone username, a user with roles sufficient to manage |
|
132 # users and projects in the stack_user_domain. (string value) |
|
133 #stack_domain_admin=<None> |
|
134 |
|
135 # Keystone password for stack_domain_admin user. (string |
|
136 # value) |
|
137 #stack_domain_admin_password=<None> |
|
138 |
|
139 # Maximum raw byte size of any template. (integer value) |
|
140 #max_template_size=524288 |
|
141 |
|
142 # Maximum depth allowed when using nested stacks. (integer |
|
143 # value) |
|
144 #max_nested_stack_depth=3 |
|
145 |
|
146 # Number of heat-engine processes to fork and run. (integer |
|
147 # value) |
|
148 #num_engine_workers=1 |
|
149 |
|
150 |
|
151 # |
|
152 # Options defined in heat.common.wsgi |
|
153 # |
|
154 |
|
155 # Maximum raw byte size of JSON request body. Should be larger |
|
156 # than max_template_size. (integer value) |
|
157 #max_json_body_size=1048576 |
|
158 |
|
159 |
|
160 # |
|
161 # Options defined in oslo.messaging |
|
162 # |
|
163 |
|
164 # Use durable queues in AMQP. (boolean value) |
|
165 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
|
166 #amqp_durable_queues=false |
|
167 |
|
168 # Auto-delete queues in AMQP. (boolean value) |
|
169 #amqp_auto_delete=false |
|
170 |
|
171 # Size of RPC connection pool. (integer value) |
|
172 #rpc_conn_pool_size=30 |
|
173 |
|
174 # Qpid broker hostname. (string value) |
|
175 #qpid_hostname=localhost |
|
176 |
|
177 # Qpid broker port. (integer value) |
|
178 #qpid_port=5672 |
|
179 |
|
180 # Qpid HA cluster host:port pairs. (list value) |
|
181 #qpid_hosts=$qpid_hostname:$qpid_port |
|
182 |
|
183 # Username for Qpid connection. (string value) |
|
184 #qpid_username= |
|
185 |
|
186 # Password for Qpid connection. (string value) |
|
187 #qpid_password= |
|
188 |
|
189 # Space separated list of SASL mechanisms to use for auth. |
|
190 # (string value) |
|
191 #qpid_sasl_mechanisms= |
|
192 |
|
193 # Seconds between connection keepalive heartbeats. (integer |
|
194 # value) |
|
195 #qpid_heartbeat=60 |
|
196 |
|
197 # Transport to use, either 'tcp' or 'ssl'. (string value) |
|
198 #qpid_protocol=tcp |
|
199 |
|
200 # Whether to disable the Nagle algorithm. (boolean value) |
|
201 #qpid_tcp_nodelay=true |
|
202 |
|
203 # The number of prefetched messages held by receiver. (integer |
|
204 # value) |
|
205 #qpid_receiver_capacity=1 |
|
206 |
|
207 # The qpid topology version to use. Version 1 is what was |
|
208 # originally used by impl_qpid. Version 2 includes some |
|
209 # backwards-incompatible changes that allow broker federation |
|
210 # to work. Users should update to version 2 when they are |
|
211 # able to take everything down, as it requires a clean break. |
|
212 # (integer value) |
|
213 #qpid_topology_version=1 |
|
214 |
|
215 # SSL version to use (valid only if SSL enabled). valid values |
|
216 # are TLSv1 and SSLv23. SSLv2 and SSLv3 may be available on |
|
217 # some distributions. (string value) |
|
218 #kombu_ssl_version= |
|
219 |
|
220 # SSL key file (valid only if SSL enabled). (string value) |
|
221 #kombu_ssl_keyfile= |
|
222 |
|
223 # SSL cert file (valid only if SSL enabled). (string value) |
|
224 #kombu_ssl_certfile= |
|
225 |
|
226 # SSL certification authority file (valid only if SSL |
|
227 # enabled). (string value) |
|
228 #kombu_ssl_ca_certs= |
|
229 |
|
230 # How long to wait before reconnecting in response to an AMQP |
|
231 # consumer cancel notification. (floating point value) |
|
232 #kombu_reconnect_delay=1.0 |
|
233 |
|
234 # The RabbitMQ broker address where a single node is used. |
|
235 # (string value) |
|
236 #rabbit_host=localhost |
|
237 |
|
238 # The RabbitMQ broker port where a single node is used. |
|
239 # (integer value) |
|
240 #rabbit_port=5672 |
|
241 |
|
242 # RabbitMQ HA cluster host:port pairs. (list value) |
|
243 #rabbit_hosts=$rabbit_host:$rabbit_port |
|
244 |
|
245 # Connect over SSL for RabbitMQ. (boolean value) |
|
246 #rabbit_use_ssl=false |
|
247 |
|
248 # The RabbitMQ userid. (string value) |
|
249 #rabbit_userid=guest |
|
250 |
|
251 # The RabbitMQ password. (string value) |
|
252 #rabbit_password=guest |
|
253 |
|
254 # The RabbitMQ login method. (string value) |
|
255 #rabbit_login_method=AMQPLAIN |
|
256 |
|
257 # The RabbitMQ virtual host. (string value) |
|
258 #rabbit_virtual_host=/ |
|
259 |
|
260 # How frequently to retry connecting with RabbitMQ. (integer |
|
261 # value) |
|
262 #rabbit_retry_interval=1 |
|
263 |
|
264 # How long to backoff for between retries when connecting to |
|
265 # RabbitMQ. (integer value) |
|
266 #rabbit_retry_backoff=2 |
|
267 |
|
268 # Maximum number of RabbitMQ connection retries. Default is 0 |
|
269 # (infinite retry count). (integer value) |
|
270 #rabbit_max_retries=0 |
|
271 |
|
272 # Use HA queues in RabbitMQ (x-ha-policy: all). If you change |
|
273 # this option, you must wipe the RabbitMQ database. (boolean |
|
274 # value) |
|
275 #rabbit_ha_queues=false |
|
276 |
|
277 # Deprecated, use rpc_backend=kombu+memory or rpc_backend=fake |
|
278 # (boolean value) |
|
279 #fake_rabbit=false |
|
280 |
|
281 # ZeroMQ bind address. Should be a wildcard (*), an ethernet |
|
282 # interface, or IP. The "host" option should point or resolve |
|
283 # to this address. (string value) |
|
284 #rpc_zmq_bind_address=* |
|
285 |
|
286 # MatchMaker driver. (string value) |
|
287 #rpc_zmq_matchmaker=oslo.messaging._drivers.matchmaker.MatchMakerLocalhost |
|
288 |
|
289 # ZeroMQ receiver listening port. (integer value) |
|
290 #rpc_zmq_port=9501 |
|
291 |
|
292 # Number of ZeroMQ contexts, defaults to 1. (integer value) |
|
293 #rpc_zmq_contexts=1 |
|
294 |
|
295 # Maximum number of ingress messages to locally buffer per |
|
296 # topic. Default is unlimited. (integer value) |
|
297 #rpc_zmq_topic_backlog=<None> |
|
298 |
|
299 # Directory for holding IPC sockets. (string value) |
|
300 #rpc_zmq_ipc_dir=/var/run/openstack |
|
301 |
|
302 # Name of this node. Must be a valid hostname, FQDN, or IP |
|
303 # address. Must match "host" option, if running Nova. (string |
|
304 # value) |
|
305 #rpc_zmq_host=heat |
|
306 |
|
307 # Seconds to wait before a cast expires (TTL). Only supported |
|
308 # by impl_zmq. (integer value) |
|
309 #rpc_cast_timeout=30 |
|
310 |
372 |
311 # Heartbeat frequency. (integer value) |
373 # Heartbeat frequency. (integer value) |
312 #matchmaker_heartbeat_freq=300 |
374 #matchmaker_heartbeat_freq = 300 |
313 |
375 |
314 # Heartbeat time-to-live. (integer value) |
376 # Heartbeat time-to-live. (integer value) |
315 #matchmaker_heartbeat_ttl=600 |
377 #matchmaker_heartbeat_ttl = 600 |
316 |
378 |
317 # Size of RPC greenthread pool. (integer value) |
379 # Size of RPC thread pool. (integer value) |
318 #rpc_thread_pool_size=64 |
380 #rpc_thread_pool_size = 64 |
319 |
381 |
320 # Driver or drivers to handle sending notifications. (multi |
382 # Driver or drivers to handle sending notifications. (multi valued) |
321 # valued) |
383 #notification_driver = |
322 #notification_driver= |
|
323 |
384 |
324 # AMQP topic used for OpenStack notifications. (list value) |
385 # AMQP topic used for OpenStack notifications. (list value) |
325 # Deprecated group/name - [rpc_notifier2]/topics |
386 # Deprecated group/name - [rpc_notifier2]/topics |
326 #notification_topics=notifications |
387 #notification_topics = notifications |
327 |
388 |
328 # Seconds to wait for a response from a call. (integer value) |
389 # Seconds to wait for a response from a call. (integer value) |
329 #rpc_response_timeout=60 |
390 #rpc_response_timeout = 60 |
330 |
391 |
331 # A URL representing the messaging driver to use and its full |
392 # A URL representing the messaging driver to use and its full configuration. If |
332 # configuration. If not set, we fall back to the rpc_backend |
393 # not set, we fall back to the rpc_backend option and driver specific |
333 # option and driver specific configuration. (string value) |
394 # configuration. (string value) |
334 #transport_url=<None> |
395 #transport_url = <None> |
335 |
396 |
336 # The messaging driver to use, defaults to rabbit. Other |
397 # The messaging driver to use, defaults to rabbit. Other drivers include qpid |
337 # drivers include qpid and zmq. (string value) |
398 # and zmq. (string value) |
338 #rpc_backend=rabbit |
399 #rpc_backend = rabbit |
339 |
400 |
340 # The default exchange under which topics are scoped. May be |
401 # The default exchange under which topics are scoped. May be overridden by an |
341 # overridden by an exchange name specified in the |
402 # exchange name specified in the transport_url option. (string value) |
342 # transport_url option. (string value) |
403 #control_exchange = openstack |
343 #control_exchange=openstack |
404 |
344 |
405 |
345 |
406 [auth_password] |
346 # |
407 |
347 # Options defined in heat.api.middleware.ssl |
408 # |
348 # |
409 # From heat.common.config |
349 |
410 # |
350 # The HTTP Header that will be used to determine which the |
411 |
351 # original request protocol scheme was, even if it was removed |
412 # Allow orchestration of multiple clouds. (boolean value) |
352 # by an SSL terminator proxy. (string value) |
413 #multi_cloud = false |
353 #secure_proxy_ssl_header=X-Forwarded-Proto |
414 |
354 |
415 # Allowed keystone endpoints for auth_uri when multi_cloud is enabled. At least |
355 |
416 # one endpoint needs to be specified. (list value) |
356 # |
417 #allowed_auth_uris = |
357 # Options defined in heat.common.crypt |
418 |
358 # |
419 |
359 |
420 [clients] |
360 # Encryption key used for authentication info in database. |
421 |
|
422 # |
|
423 # From heat.common.config |
|
424 # |
|
425 |
|
426 # Type of endpoint in Identity service catalog to use for communication with |
|
427 # the OpenStack service. (string value) |
|
428 #endpoint_type = publicURL |
|
429 |
|
430 # Optional CA cert file to use in SSL connections. (string value) |
|
431 #ca_file = <None> |
|
432 |
|
433 # Optional PEM-formatted certificate chain file. (string value) |
|
434 #cert_file = <None> |
|
435 |
|
436 # Optional PEM-formatted file that contains the private key. (string value) |
|
437 #key_file = <None> |
|
438 |
|
439 # If set, then the server's certificate will not be verified. (boolean value) |
|
440 #insecure = false |
|
441 |
|
442 |
|
443 [clients_ceilometer] |
|
444 |
|
445 # |
|
446 # From heat.common.config |
|
447 # |
|
448 |
|
449 # Type of endpoint in Identity service catalog to use for communication with |
|
450 # the OpenStack service. (string value) |
|
451 #endpoint_type = <None> |
|
452 |
|
453 # Optional CA cert file to use in SSL connections. (string value) |
|
454 #ca_file = <None> |
|
455 |
|
456 # Optional PEM-formatted certificate chain file. (string value) |
|
457 #cert_file = <None> |
|
458 |
|
459 # Optional PEM-formatted file that contains the private key. (string value) |
|
460 #key_file = <None> |
|
461 |
|
462 # If set, then the server's certificate will not be verified. (boolean value) |
|
463 #insecure = <None> |
|
464 |
|
465 |
|
466 [clients_cinder] |
|
467 |
|
468 # |
|
469 # From heat.common.config |
|
470 # |
|
471 |
|
472 # Type of endpoint in Identity service catalog to use for communication with |
|
473 # the OpenStack service. (string value) |
|
474 #endpoint_type = <None> |
|
475 |
|
476 # Optional CA cert file to use in SSL connections. (string value) |
|
477 #ca_file = <None> |
|
478 |
|
479 # Optional PEM-formatted certificate chain file. (string value) |
|
480 #cert_file = <None> |
|
481 |
|
482 # Optional PEM-formatted file that contains the private key. (string value) |
|
483 #key_file = <None> |
|
484 |
|
485 # If set, then the server's certificate will not be verified. (boolean value) |
|
486 #insecure = <None> |
|
487 |
|
488 # |
|
489 # From heat.common.config |
|
490 # |
|
491 |
|
492 # Allow client's debug log output. (boolean value) |
|
493 #http_log_debug = false |
|
494 |
|
495 |
|
496 [clients_glance] |
|
497 |
|
498 # |
|
499 # From heat.common.config |
|
500 # |
|
501 |
|
502 # Type of endpoint in Identity service catalog to use for communication with |
|
503 # the OpenStack service. (string value) |
|
504 #endpoint_type = <None> |
|
505 |
|
506 # Optional CA cert file to use in SSL connections. (string value) |
|
507 #ca_file = <None> |
|
508 |
|
509 # Optional PEM-formatted certificate chain file. (string value) |
|
510 #cert_file = <None> |
|
511 |
|
512 # Optional PEM-formatted file that contains the private key. (string value) |
|
513 #key_file = <None> |
|
514 |
|
515 # If set, then the server's certificate will not be verified. (boolean value) |
|
516 #insecure = <None> |
|
517 |
|
518 |
|
519 [clients_heat] |
|
520 |
|
521 # |
|
522 # From heat.common.config |
|
523 # |
|
524 |
|
525 # Type of endpoint in Identity service catalog to use for communication with |
|
526 # the OpenStack service. (string value) |
|
527 #endpoint_type = <None> |
|
528 |
|
529 # Optional CA cert file to use in SSL connections. (string value) |
|
530 #ca_file = <None> |
|
531 |
|
532 # Optional PEM-formatted certificate chain file. (string value) |
|
533 #cert_file = <None> |
|
534 |
|
535 # Optional PEM-formatted file that contains the private key. (string value) |
|
536 #key_file = <None> |
|
537 |
|
538 # If set, then the server's certificate will not be verified. (boolean value) |
|
539 #insecure = <None> |
|
540 |
|
541 # |
|
542 # From heat.common.config |
|
543 # |
|
544 |
|
545 # Optional heat url in format like http://0.0.0.0:8004/v1/%(tenant_id)s. |
361 # (string value) |
546 # (string value) |
362 #auth_encryption_key=notgood but just long enough i think |
547 #url = |
363 |
548 |
364 |
549 |
365 # |
550 [clients_keystone] |
366 # Options defined in heat.common.heat_keystoneclient |
551 |
367 # |
552 # |
368 |
553 # From heat.common.config |
369 # Fully qualified class name to use as a keystone backend. |
554 # |
370 # (string value) |
555 |
371 #keystone_backend=heat.common.heat_keystoneclient.KeystoneClientV3 |
556 # Type of endpoint in Identity service catalog to use for communication with |
372 |
557 # the OpenStack service. (string value) |
373 |
558 #endpoint_type = <None> |
374 # |
559 |
375 # Options defined in heat.engine.clients |
560 # Optional CA cert file to use in SSL connections. (string value) |
376 # |
561 #ca_file = <None> |
377 |
562 |
378 # Fully qualified class name to use as a client backend. |
563 # Optional PEM-formatted certificate chain file. (string value) |
379 # (string value) |
564 #cert_file = <None> |
380 #cloud_backend=heat.engine.clients.OpenStackClients |
565 |
381 |
566 # Optional PEM-formatted file that contains the private key. (string value) |
382 |
567 #key_file = <None> |
383 # |
568 |
384 # Options defined in heat.engine.notification |
569 # If set, then the server's certificate will not be verified. (boolean value) |
385 # |
570 #insecure = <None> |
386 |
571 |
387 # Default notification level for outgoing notifications. |
572 |
388 # (string value) |
573 [clients_neutron] |
389 #default_notification_level=INFO |
574 |
390 |
575 # |
391 # Default publisher_id for outgoing notifications. (string |
576 # From heat.common.config |
392 # value) |
577 # |
393 #default_publisher_id=<None> |
578 |
394 |
579 # Type of endpoint in Identity service catalog to use for communication with |
395 # List of drivers to send notifications (DEPRECATED). (multi |
580 # the OpenStack service. (string value) |
396 # valued) |
581 #endpoint_type = <None> |
397 #list_notifier_drivers=<None> |
582 |
398 |
583 # Optional CA cert file to use in SSL connections. (string value) |
399 |
584 #ca_file = <None> |
400 # |
585 |
401 # Options defined in heat.engine.resources.loadbalancer |
586 # Optional PEM-formatted certificate chain file. (string value) |
402 # |
587 #cert_file = <None> |
403 |
588 |
404 # Custom template for the built-in loadbalancer nested stack. |
589 # Optional PEM-formatted file that contains the private key. (string value) |
405 # (string value) |
590 #key_file = <None> |
406 #loadbalancer_template=<None> |
591 |
407 |
592 # If set, then the server's certificate will not be verified. (boolean value) |
408 |
593 #insecure = <None> |
409 # |
594 |
410 # Options defined in heat.openstack.common.eventlet_backdoor |
595 |
411 # |
596 [clients_nova] |
412 |
597 |
413 # Enable eventlet backdoor. Acceptable values are 0, <port>, |
598 # |
414 # and <start>:<end>, where 0 results in listening on a random |
599 # From heat.common.config |
415 # tcp port number; <port> results in listening on the |
600 # |
416 # specified port number (and not enabling backdoor if that |
601 |
417 # port is in use); and <start>:<end> results in listening on |
602 # Type of endpoint in Identity service catalog to use for communication with |
418 # the smallest unused port number within the specified range |
603 # the OpenStack service. (string value) |
419 # of port numbers. The chosen port is displayed in the |
604 #endpoint_type = <None> |
420 # service's log file. (string value) |
605 |
421 #backdoor_port=<None> |
606 # Optional CA cert file to use in SSL connections. (string value) |
422 |
607 #ca_file = <None> |
423 |
608 |
424 # |
609 # Optional PEM-formatted certificate chain file. (string value) |
425 # Options defined in heat.openstack.common.lockutils |
610 #cert_file = <None> |
426 # |
611 |
427 |
612 # Optional PEM-formatted file that contains the private key. (string value) |
428 # Enables or disables inter-process locks. (boolean value) |
613 #key_file = <None> |
429 #disable_process_locking=false |
614 |
430 |
615 # If set, then the server's certificate will not be verified. (boolean value) |
431 # Directory to use for lock files. (string value) |
616 #insecure = <None> |
432 #lock_path=<None> |
617 |
433 |
618 # |
434 |
619 # From heat.common.config |
435 # |
|
436 # Options defined in heat.openstack.common.log |
|
437 # |
|
438 |
|
439 # Print debugging output (set logging level to DEBUG instead |
|
440 # of default WARNING level). (boolean value) |
|
441 #debug=false |
|
442 |
|
443 # Print more verbose output (set logging level to INFO instead |
|
444 # of default WARNING level). (boolean value) |
|
445 #verbose=false |
|
446 |
|
447 # Log output to standard error. (boolean value) |
|
448 #use_stderr=true |
|
449 |
|
450 # Format string to use for log messages with context. (string |
|
451 # value) |
|
452 #logging_context_format_string=%(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [%(request_id)s %(user_identity)s] %(instance)s%(message)s |
|
453 |
|
454 # Format string to use for log messages without context. |
|
455 # (string value) |
|
456 #logging_default_format_string=%(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [-] %(instance)s%(message)s |
|
457 |
|
458 # Data to append to log format when level is DEBUG. (string |
|
459 # value) |
|
460 #logging_debug_format_suffix=%(funcName)s %(pathname)s:%(lineno)d |
|
461 |
|
462 # Prefix each line of exception output with this format. |
|
463 # (string value) |
|
464 #logging_exception_prefix=%(asctime)s.%(msecs)03d %(process)d TRACE %(name)s %(instance)s |
|
465 |
|
466 # List of logger=LEVEL pairs. (list value) |
|
467 #default_log_levels=amqp=WARN,amqplib=WARN,boto=WARN,qpid=WARN,sqlalchemy=WARN,suds=INFO,oslo.messaging=INFO,iso8601=WARN,requests.packages.urllib3.connectionpool=WARN |
|
468 |
|
469 # Enables or disables publication of error events. (boolean |
|
470 # value) |
|
471 #publish_errors=false |
|
472 |
|
473 # Enables or disables fatal status of deprecations. (boolean |
|
474 # value) |
|
475 #fatal_deprecations=false |
|
476 |
|
477 # The format for an instance that is passed with the log |
|
478 # message. (string value) |
|
479 #instance_format="[instance: %(uuid)s] " |
|
480 |
|
481 # The format for an instance UUID that is passed with the log |
|
482 # message. (string value) |
|
483 #instance_uuid_format="[instance: %(uuid)s] " |
|
484 |
|
485 # The name of a logging configuration file. This file is |
|
486 # appended to any existing logging configuration files. For |
|
487 # details about logging configuration files, see the Python |
|
488 # logging module documentation. (string value) |
|
489 # Deprecated group/name - [DEFAULT]/log_config |
|
490 #log_config_append=<None> |
|
491 |
|
492 # DEPRECATED. A logging.Formatter log message format string |
|
493 # which may use any of the available logging.LogRecord |
|
494 # attributes. This option is deprecated. Please use |
|
495 # logging_context_format_string and |
|
496 # logging_default_format_string instead. (string value) |
|
497 #log_format=<None> |
|
498 |
|
499 # Format string for %%(asctime)s in log records. Default: |
|
500 # %(default)s . (string value) |
|
501 #log_date_format=%Y-%m-%d %H:%M:%S |
|
502 |
|
503 # (Optional) Name of log file to output to. If no default is |
|
504 # set, logging will go to stdout. (string value) |
|
505 # Deprecated group/name - [DEFAULT]/logfile |
|
506 #log_file=<None> |
|
507 |
|
508 # (Optional) The base directory used for relative --log-file |
|
509 # paths. (string value) |
|
510 # Deprecated group/name - [DEFAULT]/logdir |
|
511 #log_dir=<None> |
|
512 |
|
513 # Use syslog for logging. Existing syslog format is DEPRECATED |
|
514 # during I, and will change in J to honor RFC5424. (boolean |
|
515 # value) |
|
516 #use_syslog=false |
|
517 |
|
518 # (Optional) Enables or disables syslog rfc5424 format for |
|
519 # logging. If enabled, prefixes the MSG part of the syslog |
|
520 # message with APP-NAME (RFC5424). The format without the APP- |
|
521 # NAME is deprecated in I, and will be removed in J. (boolean |
|
522 # value) |
|
523 #use_syslog_rfc_format=false |
|
524 |
|
525 # Syslog facility to receive log lines. (string value) |
|
526 #syslog_log_facility=LOG_USER |
|
527 |
|
528 |
|
529 # |
|
530 # Options defined in heat.openstack.common.policy |
|
531 # |
|
532 |
|
533 # The JSON file that defines policies. (string value) |
|
534 #policy_file=policy.json |
|
535 |
|
536 # Default rule. Enforced when a requested rule is not found. |
|
537 # (string value) |
|
538 #policy_default_rule=default |
|
539 |
|
540 |
|
541 [auth_password] |
|
542 |
|
543 # |
|
544 # Options defined in heat.common.config |
|
545 # |
|
546 |
|
547 # Allow orchestration of multiple clouds. (boolean value) |
|
548 #multi_cloud=false |
|
549 |
|
550 # Allowed keystone endpoints for auth_uri when multi_cloud is |
|
551 # enabled. At least one endpoint needs to be specified. (list |
|
552 # value) |
|
553 #allowed_auth_uris= |
|
554 |
|
555 |
|
556 [clients] |
|
557 |
|
558 # |
|
559 # Options defined in heat.common.config |
|
560 # |
|
561 |
|
562 # Type of endpoint in Identity service catalog to use for |
|
563 # communication with the OpenStack service. (string value) |
|
564 #endpoint_type=publicURL |
|
565 |
|
566 # Optional CA cert file to use in SSL connections. (string |
|
567 # value) |
|
568 #ca_file=<None> |
|
569 |
|
570 # Optional PEM-formatted certificate chain file. (string |
|
571 # value) |
|
572 #cert_file=<None> |
|
573 |
|
574 # Optional PEM-formatted file that contains the private key. |
|
575 # (string value) |
|
576 #key_file=<None> |
|
577 |
|
578 # If set, then the server's certificate will not be verified. |
|
579 # (boolean value) |
|
580 #insecure=false |
|
581 |
|
582 |
|
583 [clients_ceilometer] |
|
584 |
|
585 # |
|
586 # Options defined in heat.common.config |
|
587 # |
|
588 |
|
589 # Type of endpoint in Identity service catalog to use for |
|
590 # communication with the OpenStack service. (string value) |
|
591 #endpoint_type=<None> |
|
592 |
|
593 # Optional CA cert file to use in SSL connections. (string |
|
594 # value) |
|
595 #ca_file=<None> |
|
596 |
|
597 # Optional PEM-formatted certificate chain file. (string |
|
598 # value) |
|
599 #cert_file=<None> |
|
600 |
|
601 # Optional PEM-formatted file that contains the private key. |
|
602 # (string value) |
|
603 #key_file=<None> |
|
604 |
|
605 # If set, then the server's certificate will not be verified. |
|
606 # (boolean value) |
|
607 #insecure=<None> |
|
608 |
|
609 |
|
610 [clients_cinder] |
|
611 |
|
612 # |
|
613 # Options defined in heat.common.config |
|
614 # |
|
615 |
|
616 # Type of endpoint in Identity service catalog to use for |
|
617 # communication with the OpenStack service. (string value) |
|
618 #endpoint_type=<None> |
|
619 |
|
620 # Optional CA cert file to use in SSL connections. (string |
|
621 # value) |
|
622 #ca_file=<None> |
|
623 |
|
624 # Optional PEM-formatted certificate chain file. (string |
|
625 # value) |
|
626 #cert_file=<None> |
|
627 |
|
628 # Optional PEM-formatted file that contains the private key. |
|
629 # (string value) |
|
630 #key_file=<None> |
|
631 |
|
632 # If set, then the server's certificate will not be verified. |
|
633 # (boolean value) |
|
634 #insecure=<None> |
|
635 |
|
636 |
|
637 # |
|
638 # Options defined in heat.common.config |
|
639 # |
620 # |
640 |
621 |
641 # Allow client's debug log output. (boolean value) |
622 # Allow client's debug log output. (boolean value) |
642 #http_log_debug=false |
623 #http_log_debug = false |
643 |
624 |
644 |
625 |
645 [clients_glance] |
626 [clients_sahara] |
646 |
627 |
647 # |
628 # |
648 # Options defined in heat.common.config |
629 # From heat.common.config |
649 # |
630 # |
650 |
631 |
651 # Type of endpoint in Identity service catalog to use for |
632 # Type of endpoint in Identity service catalog to use for communication with |
652 # communication with the OpenStack service. (string value) |
633 # the OpenStack service. (string value) |
653 #endpoint_type=<None> |
634 #endpoint_type = <None> |
654 |
635 |
655 # Optional CA cert file to use in SSL connections. (string |
636 # Optional CA cert file to use in SSL connections. (string value) |
656 # value) |
637 #ca_file = <None> |
657 #ca_file=<None> |
638 |
658 |
639 # Optional PEM-formatted certificate chain file. (string value) |
659 # Optional PEM-formatted certificate chain file. (string |
640 #cert_file = <None> |
660 # value) |
641 |
661 #cert_file=<None> |
642 # Optional PEM-formatted file that contains the private key. (string value) |
662 |
643 #key_file = <None> |
663 # Optional PEM-formatted file that contains the private key. |
644 |
664 # (string value) |
645 # If set, then the server's certificate will not be verified. (boolean value) |
665 #key_file=<None> |
646 #insecure = <None> |
666 |
|
667 # If set, then the server's certificate will not be verified. |
|
668 # (boolean value) |
|
669 #insecure=<None> |
|
670 |
|
671 |
|
672 [clients_heat] |
|
673 |
|
674 # |
|
675 # Options defined in heat.common.config |
|
676 # |
|
677 |
|
678 # Type of endpoint in Identity service catalog to use for |
|
679 # communication with the OpenStack service. (string value) |
|
680 #endpoint_type=<None> |
|
681 |
|
682 # Optional CA cert file to use in SSL connections. (string |
|
683 # value) |
|
684 #ca_file=<None> |
|
685 |
|
686 # Optional PEM-formatted certificate chain file. (string |
|
687 # value) |
|
688 #cert_file=<None> |
|
689 |
|
690 # Optional PEM-formatted file that contains the private key. |
|
691 # (string value) |
|
692 #key_file=<None> |
|
693 |
|
694 # If set, then the server's certificate will not be verified. |
|
695 # (boolean value) |
|
696 #insecure=<None> |
|
697 |
|
698 |
|
699 # |
|
700 # Options defined in heat.common.config |
|
701 # |
|
702 |
|
703 # Optional heat url in format like |
|
704 # http://0.0.0.0:8004/v1/%(tenant_id)s. (string value) |
|
705 #url= |
|
706 |
|
707 |
|
708 [clients_keystone] |
|
709 |
|
710 # |
|
711 # Options defined in heat.common.config |
|
712 # |
|
713 |
|
714 # Type of endpoint in Identity service catalog to use for |
|
715 # communication with the OpenStack service. (string value) |
|
716 #endpoint_type=<None> |
|
717 |
|
718 # Optional CA cert file to use in SSL connections. (string |
|
719 # value) |
|
720 #ca_file=<None> |
|
721 |
|
722 # Optional PEM-formatted certificate chain file. (string |
|
723 # value) |
|
724 #cert_file=<None> |
|
725 |
|
726 # Optional PEM-formatted file that contains the private key. |
|
727 # (string value) |
|
728 #key_file=<None> |
|
729 |
|
730 # If set, then the server's certificate will not be verified. |
|
731 # (boolean value) |
|
732 #insecure=<None> |
|
733 |
|
734 |
|
735 [clients_neutron] |
|
736 |
|
737 # |
|
738 # Options defined in heat.common.config |
|
739 # |
|
740 |
|
741 # Type of endpoint in Identity service catalog to use for |
|
742 # communication with the OpenStack service. (string value) |
|
743 #endpoint_type=<None> |
|
744 |
|
745 # Optional CA cert file to use in SSL connections. (string |
|
746 # value) |
|
747 #ca_file=<None> |
|
748 |
|
749 # Optional PEM-formatted certificate chain file. (string |
|
750 # value) |
|
751 #cert_file=<None> |
|
752 |
|
753 # Optional PEM-formatted file that contains the private key. |
|
754 # (string value) |
|
755 #key_file=<None> |
|
756 |
|
757 # If set, then the server's certificate will not be verified. |
|
758 # (boolean value) |
|
759 #insecure=<None> |
|
760 |
|
761 |
|
762 [clients_nova] |
|
763 |
|
764 # |
|
765 # Options defined in heat.common.config |
|
766 # |
|
767 |
|
768 # Type of endpoint in Identity service catalog to use for |
|
769 # communication with the OpenStack service. (string value) |
|
770 #endpoint_type=<None> |
|
771 |
|
772 # Optional CA cert file to use in SSL connections. (string |
|
773 # value) |
|
774 #ca_file=<None> |
|
775 |
|
776 # Optional PEM-formatted certificate chain file. (string |
|
777 # value) |
|
778 #cert_file=<None> |
|
779 |
|
780 # Optional PEM-formatted file that contains the private key. |
|
781 # (string value) |
|
782 #key_file=<None> |
|
783 |
|
784 # If set, then the server's certificate will not be verified. |
|
785 # (boolean value) |
|
786 #insecure=<None> |
|
787 |
|
788 |
|
789 # |
|
790 # Options defined in heat.common.config |
|
791 # |
|
792 |
|
793 # Allow client's debug log output. (boolean value) |
|
794 #http_log_debug=false |
|
795 |
647 |
796 |
648 |
797 [clients_swift] |
649 [clients_swift] |
798 |
650 |
799 # |
651 # |
800 # Options defined in heat.common.config |
652 # From heat.common.config |
801 # |
653 # |
802 |
654 |
803 # Type of endpoint in Identity service catalog to use for |
655 # Type of endpoint in Identity service catalog to use for communication with |
804 # communication with the OpenStack service. (string value) |
656 # the OpenStack service. (string value) |
805 #endpoint_type=<None> |
657 #endpoint_type = <None> |
806 |
658 |
807 # Optional CA cert file to use in SSL connections. (string |
659 # Optional CA cert file to use in SSL connections. (string value) |
808 # value) |
660 #ca_file = <None> |
809 #ca_file=<None> |
661 |
810 |
662 # Optional PEM-formatted certificate chain file. (string value) |
811 # Optional PEM-formatted certificate chain file. (string |
663 #cert_file = <None> |
812 # value) |
664 |
813 #cert_file=<None> |
665 # Optional PEM-formatted file that contains the private key. (string value) |
814 |
666 #key_file = <None> |
815 # Optional PEM-formatted file that contains the private key. |
667 |
816 # (string value) |
668 # If set, then the server's certificate will not be verified. (boolean value) |
817 #key_file=<None> |
669 #insecure = <None> |
818 |
|
819 # If set, then the server's certificate will not be verified. |
|
820 # (boolean value) |
|
821 #insecure=<None> |
|
822 |
670 |
823 |
671 |
824 [clients_trove] |
672 [clients_trove] |
825 |
673 |
826 # |
674 # |
827 # Options defined in heat.common.config |
675 # From heat.common.config |
828 # |
676 # |
829 |
677 |
830 # Type of endpoint in Identity service catalog to use for |
678 # Type of endpoint in Identity service catalog to use for communication with |
831 # communication with the OpenStack service. (string value) |
679 # the OpenStack service. (string value) |
832 #endpoint_type=<None> |
680 #endpoint_type = <None> |
833 |
681 |
834 # Optional CA cert file to use in SSL connections. (string |
682 # Optional CA cert file to use in SSL connections. (string value) |
835 # value) |
683 #ca_file = <None> |
836 #ca_file=<None> |
684 |
837 |
685 # Optional PEM-formatted certificate chain file. (string value) |
838 # Optional PEM-formatted certificate chain file. (string |
686 #cert_file = <None> |
839 # value) |
687 |
840 #cert_file=<None> |
688 # Optional PEM-formatted file that contains the private key. (string value) |
841 |
689 #key_file = <None> |
842 # Optional PEM-formatted file that contains the private key. |
690 |
843 # (string value) |
691 # If set, then the server's certificate will not be verified. (boolean value) |
844 #key_file=<None> |
692 #insecure = <None> |
845 |
|
846 # If set, then the server's certificate will not be verified. |
|
847 # (boolean value) |
|
848 #insecure=<None> |
|
849 |
693 |
850 |
694 |
851 [database] |
695 [database] |
852 |
696 |
853 # |
697 # |
854 # Options defined in oslo.db |
698 # From oslo.db |
855 # |
699 # |
856 |
700 |
857 # The file name to use with SQLite. (string value) |
701 # The file name to use with SQLite. (string value) |
858 #sqlite_db=oslo.sqlite |
702 # Deprecated group/name - [DEFAULT]/sqlite_db |
|
703 #sqlite_db = oslo.sqlite |
859 |
704 |
860 # If True, SQLite uses synchronous mode. (boolean value) |
705 # If True, SQLite uses synchronous mode. (boolean value) |
861 #sqlite_synchronous=true |
706 # Deprecated group/name - [DEFAULT]/sqlite_synchronous |
|
707 #sqlite_synchronous = true |
862 |
708 |
863 # The back end to use for the database. (string value) |
709 # The back end to use for the database. (string value) |
864 # Deprecated group/name - [DEFAULT]/db_backend |
710 # Deprecated group/name - [DEFAULT]/db_backend |
865 #backend=sqlalchemy |
711 #backend = sqlalchemy |
866 |
712 |
867 # The SQLAlchemy connection string to use to connect to the |
713 # The SQLAlchemy connection string to use to connect to the database. (string |
868 # database. (string value) |
714 # value) |
869 # Deprecated group/name - [DEFAULT]/sql_connection |
715 # Deprecated group/name - [DEFAULT]/sql_connection |
870 # Deprecated group/name - [DATABASE]/sql_connection |
716 # Deprecated group/name - [DATABASE]/sql_connection |
871 # Deprecated group/name - [sql]/connection |
717 # Deprecated group/name - [sql]/connection |
872 connection=mysql://%SERVICE_USER%:%SERVICE_PASSWORD%@localhost/heat |
718 connection = mysql://%SERVICE_USER%:%SERVICE_PASSWORD%@localhost/heat |
873 |
719 |
874 # The SQLAlchemy connection string to use to connect to the |
720 # The SQLAlchemy connection string to use to connect to the slave database. |
875 # slave database. (string value) |
721 # (string value) |
876 #slave_connection=<None> |
722 #slave_connection = <None> |
877 |
723 |
878 # The SQL mode to be used for MySQL sessions. This option, |
724 # The SQL mode to be used for MySQL sessions. This option, including the |
879 # including the default, overrides any server-set SQL mode. To |
725 # default, overrides any server-set SQL mode. To use whatever SQL mode is set |
880 # use whatever SQL mode is set by the server configuration, |
726 # by the server configuration, set this to no value. Example: mysql_sql_mode= |
881 # set this to no value. Example: mysql_sql_mode= (string |
727 # (string value) |
882 # value) |
728 #mysql_sql_mode = TRADITIONAL |
883 #mysql_sql_mode=TRADITIONAL |
729 |
884 |
730 # Timeout before idle SQL connections are reaped. (integer value) |
885 # Timeout before idle SQL connections are reaped. (integer |
|
886 # value) |
|
887 # Deprecated group/name - [DEFAULT]/sql_idle_timeout |
731 # Deprecated group/name - [DEFAULT]/sql_idle_timeout |
888 # Deprecated group/name - [DATABASE]/sql_idle_timeout |
732 # Deprecated group/name - [DATABASE]/sql_idle_timeout |
889 # Deprecated group/name - [sql]/idle_timeout |
733 # Deprecated group/name - [sql]/idle_timeout |
890 #idle_timeout=3600 |
734 #idle_timeout = 3600 |
891 |
735 |
892 # Minimum number of SQL connections to keep open in a pool. |
736 # Minimum number of SQL connections to keep open in a pool. (integer value) |
893 # (integer value) |
|
894 # Deprecated group/name - [DEFAULT]/sql_min_pool_size |
737 # Deprecated group/name - [DEFAULT]/sql_min_pool_size |
895 # Deprecated group/name - [DATABASE]/sql_min_pool_size |
738 # Deprecated group/name - [DATABASE]/sql_min_pool_size |
896 #min_pool_size=1 |
739 #min_pool_size = 1 |
897 |
740 |
898 # Maximum number of SQL connections to keep open in a pool. |
741 # Maximum number of SQL connections to keep open in a pool. (integer value) |
899 # (integer value) |
|
900 # Deprecated group/name - [DEFAULT]/sql_max_pool_size |
742 # Deprecated group/name - [DEFAULT]/sql_max_pool_size |
901 # Deprecated group/name - [DATABASE]/sql_max_pool_size |
743 # Deprecated group/name - [DATABASE]/sql_max_pool_size |
902 #max_pool_size=<None> |
744 #max_pool_size = <None> |
903 |
745 |
904 # Maximum number of database connection retries during |
746 # Maximum number of database connection retries during startup. Set to -1 to |
905 # startup. Set to -1 to specify an infinite retry count. |
747 # specify an infinite retry count. (integer value) |
906 # (integer value) |
|
907 # Deprecated group/name - [DEFAULT]/sql_max_retries |
748 # Deprecated group/name - [DEFAULT]/sql_max_retries |
908 # Deprecated group/name - [DATABASE]/sql_max_retries |
749 # Deprecated group/name - [DATABASE]/sql_max_retries |
909 #max_retries=10 |
750 #max_retries = 10 |
910 |
751 |
911 # Interval between retries of opening a SQL connection. |
752 # Interval between retries of opening a SQL connection. (integer value) |
912 # (integer value) |
|
913 # Deprecated group/name - [DEFAULT]/sql_retry_interval |
753 # Deprecated group/name - [DEFAULT]/sql_retry_interval |
914 # Deprecated group/name - [DATABASE]/reconnect_interval |
754 # Deprecated group/name - [DATABASE]/reconnect_interval |
915 #retry_interval=10 |
755 #retry_interval = 10 |
916 |
756 |
917 # If set, use this value for max_overflow with SQLAlchemy. |
757 # If set, use this value for max_overflow with SQLAlchemy. (integer value) |
918 # (integer value) |
|
919 # Deprecated group/name - [DEFAULT]/sql_max_overflow |
758 # Deprecated group/name - [DEFAULT]/sql_max_overflow |
920 # Deprecated group/name - [DATABASE]/sqlalchemy_max_overflow |
759 # Deprecated group/name - [DATABASE]/sqlalchemy_max_overflow |
921 #max_overflow=<None> |
760 #max_overflow = <None> |
922 |
761 |
923 # Verbosity of SQL debugging information: 0=None, |
762 # Verbosity of SQL debugging information: 0=None, 100=Everything. (integer |
924 # 100=Everything. (integer value) |
763 # value) |
925 # Deprecated group/name - [DEFAULT]/sql_connection_debug |
764 # Deprecated group/name - [DEFAULT]/sql_connection_debug |
926 #connection_debug=0 |
765 #connection_debug = 0 |
927 |
766 |
928 # Add Python stack traces to SQL as comment strings. (boolean |
767 # Add Python stack traces to SQL as comment strings. (boolean value) |
|
768 # Deprecated group/name - [DEFAULT]/sql_connection_trace |
|
769 #connection_trace = false |
|
770 |
|
771 # If set, use this value for pool_timeout with SQLAlchemy. (integer value) |
|
772 # Deprecated group/name - [DATABASE]/sqlalchemy_pool_timeout |
|
773 #pool_timeout = <None> |
|
774 |
|
775 # Enable the experimental use of database reconnect on connection lost. |
|
776 # (boolean value) |
|
777 #use_db_reconnect = false |
|
778 |
|
779 # Seconds between retries of a database transaction. (integer value) |
|
780 #db_retry_interval = 1 |
|
781 |
|
782 # If True, increases the interval between retries of a database operation up to |
|
783 # db_max_retry_interval. (boolean value) |
|
784 #db_inc_retry_interval = true |
|
785 |
|
786 # If db_inc_retry_interval is set, the maximum seconds between retries of a |
|
787 # database operation. (integer value) |
|
788 #db_max_retry_interval = 10 |
|
789 |
|
790 # Maximum retries in case of connection error or deadlock error before error is |
|
791 # raised. Set to -1 to specify an infinite retry count. (integer value) |
|
792 #db_max_retries = 20 |
|
793 |
|
794 |
|
795 [ec2authtoken] |
|
796 |
|
797 # |
|
798 # From heat.api.aws.ec2token |
|
799 # |
|
800 |
|
801 # Authentication Endpoint URI. (string value) |
|
802 #auth_uri = <None> |
|
803 |
|
804 # Allow orchestration of multiple clouds. (boolean value) |
|
805 #multi_cloud = false |
|
806 |
|
807 # Allowed keystone endpoints for auth_uri when multi_cloud is enabled. At least |
|
808 # one endpoint needs to be specified. (list value) |
|
809 #allowed_auth_uris = |
|
810 |
|
811 # Optional PEM-formatted certificate chain file. (string value) |
|
812 #cert_file = <None> |
|
813 |
|
814 # Optional PEM-formatted file that contains the private key. (string value) |
|
815 #key_file = <None> |
|
816 |
|
817 # Optional CA cert file to use in SSL connections. (string value) |
|
818 #ca_file = <None> |
|
819 |
|
820 # If set, then the server's certificate will not be verified. (boolean value) |
|
821 #insecure = false |
|
822 |
|
823 |
|
824 [eventlet_opts] |
|
825 |
|
826 # |
|
827 # From heat.common.wsgi |
|
828 # |
|
829 |
|
830 # If False, closes the client socket connection explicitly. (boolean value) |
|
831 #wsgi_keep_alive = true |
|
832 |
|
833 # Timeout for client connections' socket operations. If an incoming connection |
|
834 # is idle for this number of seconds it will be closed. A value of '0' means |
|
835 # wait forever. (integer value) |
|
836 #client_socket_timeout = 900 |
|
837 |
|
838 |
|
839 [heat_api] |
|
840 |
|
841 # |
|
842 # From heat.common.wsgi |
|
843 # |
|
844 |
|
845 # Address to bind the server. Useful when selecting a particular network |
|
846 # interface. (string value) |
|
847 # Deprecated group/name - [DEFAULT]/bind_host |
|
848 #bind_host = 0.0.0.0 |
|
849 |
|
850 # The port on which the server will listen. (integer value) |
|
851 # Deprecated group/name - [DEFAULT]/bind_port |
|
852 #bind_port = 8004 |
|
853 |
|
854 # Number of backlog requests to configure the socket with. (integer value) |
|
855 # Deprecated group/name - [DEFAULT]/backlog |
|
856 #backlog = 4096 |
|
857 |
|
858 # Location of the SSL certificate file to use for SSL mode. (string value) |
|
859 # Deprecated group/name - [DEFAULT]/cert_file |
|
860 #cert_file = <None> |
|
861 |
|
862 # Location of the SSL key file to use for enabling SSL mode. (string value) |
|
863 # Deprecated group/name - [DEFAULT]/key_file |
|
864 #key_file = <None> |
|
865 |
|
866 # Number of workers for Heat service. (integer value) |
|
867 # Deprecated group/name - [DEFAULT]/workers |
|
868 #workers = 0 |
|
869 |
|
870 # Maximum line size of message headers to be accepted. max_header_line may need |
|
871 # to be increased when using large tokens (typically those generated by the |
|
872 # Keystone v3 API with big service catalogs). (integer value) |
|
873 #max_header_line = 16384 |
|
874 |
|
875 |
|
876 [heat_api_cfn] |
|
877 |
|
878 # |
|
879 # From heat.common.wsgi |
|
880 # |
|
881 |
|
882 # Address to bind the server. Useful when selecting a particular network |
|
883 # interface. (string value) |
|
884 # Deprecated group/name - [DEFAULT]/bind_host |
|
885 #bind_host = 0.0.0.0 |
|
886 |
|
887 # The port on which the server will listen. (integer value) |
|
888 # Deprecated group/name - [DEFAULT]/bind_port |
|
889 #bind_port = 8000 |
|
890 |
|
891 # Number of backlog requests to configure the socket with. (integer value) |
|
892 # Deprecated group/name - [DEFAULT]/backlog |
|
893 #backlog = 4096 |
|
894 |
|
895 # Location of the SSL certificate file to use for SSL mode. (string value) |
|
896 # Deprecated group/name - [DEFAULT]/cert_file |
|
897 #cert_file = <None> |
|
898 |
|
899 # Location of the SSL key file to use for enabling SSL mode. (string value) |
|
900 # Deprecated group/name - [DEFAULT]/key_file |
|
901 #key_file = <None> |
|
902 |
|
903 # Number of workers for Heat service. (integer value) |
|
904 # Deprecated group/name - [DEFAULT]/workers |
|
905 #workers = 0 |
|
906 |
|
907 # Maximum line size of message headers to be accepted. max_header_line may need |
|
908 # to be increased when using large tokens (typically those generated by the |
|
909 # Keystone v3 API with big service catalogs). (integer value) |
|
910 #max_header_line = 16384 |
|
911 |
|
912 |
|
913 [heat_api_cloudwatch] |
|
914 |
|
915 # |
|
916 # From heat.common.wsgi |
|
917 # |
|
918 |
|
919 # Address to bind the server. Useful when selecting a particular network |
|
920 # interface. (string value) |
|
921 # Deprecated group/name - [DEFAULT]/bind_host |
|
922 #bind_host = 0.0.0.0 |
|
923 |
|
924 # The port on which the server will listen. (integer value) |
|
925 # Deprecated group/name - [DEFAULT]/bind_port |
|
926 #bind_port = 8003 |
|
927 |
|
928 # Number of backlog requests to configure the socket with. (integer value) |
|
929 # Deprecated group/name - [DEFAULT]/backlog |
|
930 #backlog = 4096 |
|
931 |
|
932 # Location of the SSL certificate file to use for SSL mode. (string value) |
|
933 # Deprecated group/name - [DEFAULT]/cert_file |
|
934 #cert_file = <None> |
|
935 |
|
936 # Location of the SSL key file to use for enabling SSL mode. (string value) |
|
937 # Deprecated group/name - [DEFAULT]/key_file |
|
938 #key_file = <None> |
|
939 |
|
940 # Number of workers for Heat service. (integer value) |
|
941 # Deprecated group/name - [DEFAULT]/workers |
|
942 #workers = 0 |
|
943 |
|
944 # Maximum line size of message headers to be accepted. max_header_line may need |
|
945 # to be increased when using large tokens (typically those generated by the |
|
946 # Keystone v3 API with big service catalogs.) (integer value) |
|
947 #max_header_line = 16384 |
|
948 |
|
949 |
|
950 [keystone_authtoken] |
|
951 |
|
952 # |
|
953 # From keystonemiddleware.auth_token |
|
954 # |
|
955 |
|
956 # Complete public Identity API endpoint. (string value) |
|
957 auth_uri = http://127.0.0.1:5000/v2.0/ |
|
958 |
|
959 # API version of the admin Identity API endpoint. (string value) |
|
960 #auth_version = <None> |
|
961 |
|
962 # Do not handle authorization requests within the middleware, but delegate the |
|
963 # authorization decision to downstream WSGI components. (boolean value) |
|
964 #delay_auth_decision = false |
|
965 |
|
966 # Request timeout value for communicating with Identity API server. (integer |
929 # value) |
967 # value) |
930 # Deprecated group/name - [DEFAULT]/sql_connection_trace |
968 #http_connect_timeout = <None> |
931 #connection_trace=false |
969 |
932 |
970 # How many times are we trying to reconnect when communicating with Identity |
933 # If set, use this value for pool_timeout with SQLAlchemy. |
971 # API Server. (integer value) |
|
972 #http_request_max_retries = 3 |
|
973 |
|
974 # Env key for the swift cache. (string value) |
|
975 #cache = <None> |
|
976 |
|
977 # Required if identity server requires client certificate (string value) |
|
978 #certfile = <None> |
|
979 |
|
980 # Required if identity server requires client certificate (string value) |
|
981 #keyfile = <None> |
|
982 |
|
983 # A PEM encoded Certificate Authority to use when verifying HTTPs connections. |
|
984 # Defaults to system CAs. (string value) |
|
985 #cafile = <None> |
|
986 |
|
987 # Verify HTTPS connections. (boolean value) |
|
988 #insecure = false |
|
989 |
|
990 # Directory used to cache files related to PKI tokens. (string value) |
|
991 signing_dir = /var/lib/heat/keystone-signing |
|
992 |
|
993 # Optionally specify a list of memcached server(s) to use for caching. If left |
|
994 # undefined, tokens will instead be cached in-process. (list value) |
|
995 # Deprecated group/name - [DEFAULT]/memcache_servers |
|
996 #memcached_servers = <None> |
|
997 |
|
998 # In order to prevent excessive effort spent validating tokens, the middleware |
|
999 # caches previously-seen tokens for a configurable duration (in seconds). Set |
|
1000 # to -1 to disable caching completely. (integer value) |
|
1001 #token_cache_time = 300 |
|
1002 |
|
1003 # Determines the frequency at which the list of revoked tokens is retrieved |
|
1004 # from the Identity service (in seconds). A high number of revocation events |
|
1005 # combined with a low cache duration may significantly reduce performance. |
934 # (integer value) |
1006 # (integer value) |
935 # Deprecated group/name - [DATABASE]/sqlalchemy_pool_timeout |
1007 #revocation_cache_time = 10 |
936 #pool_timeout=<None> |
1008 |
937 |
1009 # (Optional) If defined, indicate whether token data should be authenticated or |
938 # Enable the experimental use of database reconnect on |
1010 # authenticated and encrypted. Acceptable values are MAC or ENCRYPT. If MAC, |
939 # connection lost. (boolean value) |
1011 # token data is authenticated (with HMAC) in the cache. If ENCRYPT, token data |
940 #use_db_reconnect=false |
1012 # is encrypted and authenticated in the cache. If the value is not one of these |
941 |
1013 # options or empty, auth_token will raise an exception on initialization. |
942 # Seconds between database connection retries. (integer value) |
1014 # (string value) |
943 #db_retry_interval=1 |
1015 #memcache_security_strategy = <None> |
944 |
1016 |
945 # If True, increases the interval between database connection |
1017 # (Optional, mandatory if memcache_security_strategy is defined) This string is |
946 # retries up to db_max_retry_interval. (boolean value) |
1018 # used for key derivation. (string value) |
947 #db_inc_retry_interval=true |
1019 #memcache_secret_key = <None> |
948 |
1020 |
949 # If db_inc_retry_interval is set, the maximum seconds between |
1021 # (Optional) Number of seconds memcached server is considered dead before it is |
950 # database connection retries. (integer value) |
1022 # tried again. (integer value) |
951 #db_max_retry_interval=10 |
1023 #memcache_pool_dead_retry = 300 |
952 |
1024 |
953 # Maximum database connection retries before error is raised. |
1025 # (Optional) Maximum total number of open connections to every memcached |
954 # Set to -1 to specify an infinite retry count. (integer |
1026 # server. (integer value) |
955 # value) |
1027 #memcache_pool_maxsize = 10 |
956 #db_max_retries=20 |
1028 |
957 |
1029 # (Optional) Socket timeout in seconds for communicating with a memcache |
958 |
1030 # server. (integer value) |
959 [ec2authtoken] |
1031 #memcache_pool_socket_timeout = 3 |
960 |
1032 |
961 # |
1033 # (Optional) Number of seconds a connection to memcached is held unused in the |
962 # Options defined in heat.api.aws.ec2token |
1034 # pool before it is closed. (integer value) |
963 # |
1035 #memcache_pool_unused_timeout = 60 |
964 |
1036 |
965 # Authentication Endpoint URI. (string value) |
1037 # (Optional) Number of seconds that an operation will wait to get a memcache |
966 #auth_uri=<None> |
1038 # client connection from the pool. (integer value) |
967 |
1039 #memcache_pool_conn_get_timeout = 10 |
968 # Allow orchestration of multiple clouds. (boolean value) |
1040 |
969 #multi_cloud=false |
1041 # (Optional) Use the advanced (eventlet safe) memcache client pool. The |
970 |
1042 # advanced pool will only work under python 2.x. (boolean value) |
971 # Allowed keystone endpoints for auth_uri when multi_cloud is |
1043 #memcache_use_advanced_pool = false |
972 # enabled. At least one endpoint needs to be specified. (list |
1044 |
973 # value) |
1045 # (Optional) Indicate whether to set the X-Service-Catalog header. If False, |
974 #allowed_auth_uris= |
1046 # middleware will not ask for service catalog on token validation and will not |
975 |
1047 # set the X-Service-Catalog header. (boolean value) |
976 |
1048 #include_service_catalog = true |
977 [heat_api] |
1049 |
978 |
1050 # Used to control the use and type of token binding. Can be set to: "disabled" |
979 # |
1051 # to not check token binding. "permissive" (default) to validate binding |
980 # Options defined in heat.common.wsgi |
1052 # information if the bind type is of a form known to the server and ignore it |
981 # |
1053 # if not. "strict" like "permissive" but if the bind type is unknown the token |
982 |
1054 # will be rejected. "required" any form of token binding is needed to be |
983 # Address to bind the server. Useful when selecting a |
1055 # allowed. Finally the name of a binding method that must be present in tokens. |
984 # particular network interface. (string value) |
1056 # (string value) |
985 #bind_host=0.0.0.0 |
1057 #enforce_token_bind = permissive |
986 |
1058 |
987 # The port on which the server will listen. (integer value) |
1059 # If true, the revocation list will be checked for cached tokens. This requires |
988 #bind_port=8004 |
1060 # that PKI tokens are configured on the identity server. (boolean value) |
989 |
1061 #check_revocations_for_cached = false |
990 # Number of backlog requests to configure the socket with. |
1062 |
|
1063 # Hash algorithms to use for hashing PKI tokens. This may be a single algorithm |
|
1064 # or multiple. The algorithms are those supported by Python standard |
|
1065 # hashlib.new(). The hashes will be tried in the order given, so put the |
|
1066 # preferred one first for performance. The result of the first hash will be |
|
1067 # stored in the cache. This will typically be set to multiple values only while |
|
1068 # migrating from a less secure algorithm to a more secure one. Once all the old |
|
1069 # tokens are expired this option should be set to a single value for better |
|
1070 # performance. (list value) |
|
1071 #hash_algorithms = md5 |
|
1072 |
|
1073 # Prefix to prepend at the beginning of the path. Deprecated, use identity_uri. |
|
1074 # (string value) |
|
1075 #auth_admin_prefix = |
|
1076 |
|
1077 # Host providing the admin Identity API endpoint. Deprecated, use identity_uri. |
|
1078 # (string value) |
|
1079 #auth_host = 127.0.0.1 |
|
1080 |
|
1081 # Port of the admin Identity API endpoint. Deprecated, use identity_uri. |
991 # (integer value) |
1082 # (integer value) |
992 #backlog=4096 |
1083 #auth_port = 35357 |
993 |
1084 |
994 # Location of the SSL certificate file to use for SSL mode. |
1085 # Protocol of the admin Identity API endpoint (http or https). Deprecated, use |
995 # (string value) |
1086 # identity_uri. (string value) |
996 #cert_file=<None> |
1087 #auth_protocol = https |
997 |
1088 |
998 # Location of the SSL key file to use for enabling SSL mode. |
1089 # Complete admin Identity API endpoint. This should specify the unversioned |
999 # (string value) |
1090 # root endpoint e.g. https://localhost:35357/ (string value) |
1000 #key_file=<None> |
1091 identity_uri = http://127.0.0.1:35357/ |
1001 |
1092 |
1002 # Number of workers for Heat service. (integer value) |
1093 # This option is deprecated and may be removed in a future release. Single |
1003 #workers=0 |
1094 # shared secret with the Keystone configuration used for bootstrapping a |
1004 |
1095 # Keystone installation, or otherwise bypassing the normal authentication |
1005 # Maximum line size of message headers to be accepted. |
1096 # process. This option should not be used, use `admin_user` and |
1006 # max_header_line may need to be increased when using large |
1097 # `admin_password` instead. (string value) |
1007 # tokens (typically those generated by the Keystone v3 API |
1098 #admin_token = <None> |
1008 # with big service catalogs). (integer value) |
1099 |
1009 #max_header_line=16384 |
1100 # Service username. (string value) |
1010 |
1101 admin_user = %SERVICE_USER% |
1011 |
1102 |
1012 [heat_api_cfn] |
1103 # Service user password. (string value) |
1013 |
1104 admin_password = %SERVICE_PASSWORD% |
1014 # |
1105 |
1015 # Options defined in heat.common.wsgi |
1106 # Service tenant name. (string value) |
1016 # |
1107 admin_tenant_name = %SERVICE_TENANT_NAME% |
1017 |
1108 |
1018 # Address to bind the server. Useful when selecting a |
1109 # Name of the plugin to load (string value) |
1019 # particular network interface. (string value) |
1110 #auth_plugin = <None> |
1020 #bind_host=0.0.0.0 |
1111 |
1021 |
1112 # Config Section from which to load plugin specific options (string value) |
1022 # The port on which the server will listen. (integer value) |
1113 #auth_section = <None> |
1023 #bind_port=8000 |
|
1024 |
|
1025 # Number of backlog requests to configure the socket with. |
|
1026 # (integer value) |
|
1027 #backlog=4096 |
|
1028 |
|
1029 # Location of the SSL certificate file to use for SSL mode. |
|
1030 # (string value) |
|
1031 #cert_file=<None> |
|
1032 |
|
1033 # Location of the SSL key file to use for enabling SSL mode. |
|
1034 # (string value) |
|
1035 #key_file=<None> |
|
1036 |
|
1037 # Number of workers for Heat service. (integer value) |
|
1038 #workers=0 |
|
1039 |
|
1040 # Maximum line size of message headers to be accepted. |
|
1041 # max_header_line may need to be increased when using large |
|
1042 # tokens (typically those generated by the Keystone v3 API |
|
1043 # with big service catalogs). (integer value) |
|
1044 #max_header_line=16384 |
|
1045 |
|
1046 |
|
1047 [heat_api_cloudwatch] |
|
1048 |
|
1049 # |
|
1050 # Options defined in heat.common.wsgi |
|
1051 # |
|
1052 |
|
1053 # Address to bind the server. Useful when selecting a |
|
1054 # particular network interface. (string value) |
|
1055 #bind_host=0.0.0.0 |
|
1056 |
|
1057 # The port on which the server will listen. (integer value) |
|
1058 #bind_port=8003 |
|
1059 |
|
1060 # Number of backlog requests to configure the socket with. |
|
1061 # (integer value) |
|
1062 #backlog=4096 |
|
1063 |
|
1064 # Location of the SSL certificate file to use for SSL mode. |
|
1065 # (string value) |
|
1066 #cert_file=<None> |
|
1067 |
|
1068 # Location of the SSL key file to use for enabling SSL mode. |
|
1069 # (string value) |
|
1070 #key_file=<None> |
|
1071 |
|
1072 # Number of workers for Heat service. (integer value) |
|
1073 #workers=0 |
|
1074 |
|
1075 # Maximum line size of message headers to be accepted. |
|
1076 # max_header_line may need to be increased when using large |
|
1077 # tokens (typically those generated by the Keystone v3 API |
|
1078 # with big service catalogs.) (integer value) |
|
1079 #max_header_line=16384 |
|
1080 |
|
1081 |
|
1082 [keystone_authtoken] |
|
1083 |
|
1084 # |
|
1085 # Options defined in keystonemiddleware.auth_token |
|
1086 # |
|
1087 |
|
1088 # Prefix to prepend at the beginning of the path. Deprecated, |
|
1089 # use identity_uri. (string value) |
|
1090 #auth_admin_prefix= |
|
1091 |
|
1092 # Host providing the admin Identity API endpoint. Deprecated, |
|
1093 # use identity_uri. (string value) |
|
1094 #auth_host=127.0.0.1 |
|
1095 |
|
1096 # Port of the admin Identity API endpoint. Deprecated, use |
|
1097 # identity_uri. (integer value) |
|
1098 #auth_port=35357 |
|
1099 |
|
1100 # Protocol of the admin Identity API endpoint (http or https). |
|
1101 # Deprecated, use identity_uri. (string value) |
|
1102 #auth_protocol=https |
|
1103 |
|
1104 # Complete public Identity API endpoint (string value) |
|
1105 auth_uri=http://127.0.0.1:5000/v2.0/ |
|
1106 |
|
1107 # Complete admin Identity API endpoint. This should specify |
|
1108 # the unversioned root endpoint e.g. https://localhost:35357/ |
|
1109 # (string value) |
|
1110 identity_uri=http://127.0.0.1:35357/ |
|
1111 |
|
1112 # API version of the admin Identity API endpoint (string |
|
1113 # value) |
|
1114 #auth_version=<None> |
|
1115 |
|
1116 # Do not handle authorization requests within the middleware, |
|
1117 # but delegate the authorization decision to downstream WSGI |
|
1118 # components (boolean value) |
|
1119 #delay_auth_decision=false |
|
1120 |
|
1121 # Request timeout value for communicating with Identity API |
|
1122 # server. (boolean value) |
|
1123 #http_connect_timeout=<None> |
|
1124 |
|
1125 # How many times are we trying to reconnect when communicating |
|
1126 # with Identity API Server. (integer value) |
|
1127 #http_request_max_retries=3 |
|
1128 |
|
1129 # This option is deprecated and may be removed in a future |
|
1130 # release. Single shared secret with the Keystone |
|
1131 # configuration used for bootstrapping a Keystone |
|
1132 # installation, or otherwise bypassing the normal |
|
1133 # authentication process. This option should not be used, use |
|
1134 # `admin_user` and `admin_password` instead. (string value) |
|
1135 #admin_token=<None> |
|
1136 |
|
1137 # Keystone account username (string value) |
|
1138 admin_user=%SERVICE_USER% |
|
1139 |
|
1140 # Keystone account password (string value) |
|
1141 admin_password=%SERVICE_PASSWORD% |
|
1142 |
|
1143 # Keystone service account tenant name to validate user tokens |
|
1144 # (string value) |
|
1145 admin_tenant_name=%SERVICE_TENANT_NAME% |
|
1146 |
|
1147 # Env key for the swift cache (string value) |
|
1148 #cache=<None> |
|
1149 |
|
1150 # Required if Keystone server requires client certificate |
|
1151 # (string value) |
|
1152 #certfile=<None> |
|
1153 |
|
1154 # Required if Keystone server requires client certificate |
|
1155 # (string value) |
|
1156 #keyfile=<None> |
|
1157 |
|
1158 # A PEM encoded Certificate Authority to use when verifying |
|
1159 # HTTPs connections. Defaults to system CAs. (string value) |
|
1160 #cafile=<None> |
|
1161 |
|
1162 # Verify HTTPS connections. (boolean value) |
|
1163 #insecure=false |
|
1164 |
|
1165 # Directory used to cache files related to PKI tokens (string |
|
1166 # value) |
|
1167 signing_dir=/var/lib/heat/keystone-signing |
|
1168 |
|
1169 # Optionally specify a list of memcached server(s) to use for |
|
1170 # caching. If left undefined, tokens will instead be cached |
|
1171 # in-process. (list value) |
|
1172 # Deprecated group/name - [DEFAULT]/memcache_servers |
|
1173 #memcached_servers=<None> |
|
1174 |
|
1175 # In order to prevent excessive effort spent validating |
|
1176 # tokens, the middleware caches previously-seen tokens for a |
|
1177 # configurable duration (in seconds). Set to -1 to disable |
|
1178 # caching completely. (integer value) |
|
1179 #token_cache_time=300 |
|
1180 |
|
1181 # Determines the frequency at which the list of revoked tokens |
|
1182 # is retrieved from the Identity service (in seconds). A high |
|
1183 # number of revocation events combined with a low cache |
|
1184 # duration may significantly reduce performance. (integer |
|
1185 # value) |
|
1186 #revocation_cache_time=10 |
|
1187 |
|
1188 # (optional) if defined, indicate whether token data should be |
|
1189 # authenticated or authenticated and encrypted. Acceptable |
|
1190 # values are MAC or ENCRYPT. If MAC, token data is |
|
1191 # authenticated (with HMAC) in the cache. If ENCRYPT, token |
|
1192 # data is encrypted and authenticated in the cache. If the |
|
1193 # value is not one of these options or empty, auth_token will |
|
1194 # raise an exception on initialization. (string value) |
|
1195 #memcache_security_strategy=<None> |
|
1196 |
|
1197 # (optional, mandatory if memcache_security_strategy is |
|
1198 # defined) this string is used for key derivation. (string |
|
1199 # value) |
|
1200 #memcache_secret_key=<None> |
|
1201 |
|
1202 # (optional) number of seconds memcached server is considered |
|
1203 # dead before it is tried again. (integer value) |
|
1204 #memcache_pool_dead_retry=300 |
|
1205 |
|
1206 # (optional) max total number of open connections to every |
|
1207 # memcached server. (integer value) |
|
1208 #memcache_pool_maxsize=10 |
|
1209 |
|
1210 # (optional) socket timeout in seconds for communicating with |
|
1211 # a memcache server. (integer value) |
|
1212 #memcache_pool_socket_timeout=3 |
|
1213 |
|
1214 # (optional) number of seconds a connection to memcached is |
|
1215 # held unused in the pool before it is closed. (integer value) |
|
1216 #memcache_pool_unused_timeout=60 |
|
1217 |
|
1218 # (optional) number of seconds that an operation will wait to |
|
1219 # get a memcache client connection from the pool. (integer |
|
1220 # value) |
|
1221 #memcache_pool_conn_get_timeout=10 |
|
1222 |
|
1223 # (optional) use the advanced (eventlet safe) memcache client |
|
1224 # pool. The advanced pool will only work under python 2.x. |
|
1225 # (boolean value) |
|
1226 #memcache_use_advanced_pool=false |
|
1227 |
|
1228 # (optional) indicate whether to set the X-Service-Catalog |
|
1229 # header. If False, middleware will not ask for service |
|
1230 # catalog on token validation and will not set the X-Service- |
|
1231 # Catalog header. (boolean value) |
|
1232 #include_service_catalog=true |
|
1233 |
|
1234 # Used to control the use and type of token binding. Can be |
|
1235 # set to: "disabled" to not check token binding. "permissive" |
|
1236 # (default) to validate binding information if the bind type |
|
1237 # is of a form known to the server and ignore it if not. |
|
1238 # "strict" like "permissive" but if the bind type is unknown |
|
1239 # the token will be rejected. "required" any form of token |
|
1240 # binding is needed to be allowed. Finally the name of a |
|
1241 # binding method that must be present in tokens. (string |
|
1242 # value) |
|
1243 #enforce_token_bind=permissive |
|
1244 |
|
1245 # If true, the revocation list will be checked for cached |
|
1246 # tokens. This requires that PKI tokens are configured on the |
|
1247 # Keystone server. (boolean value) |
|
1248 #check_revocations_for_cached=false |
|
1249 |
|
1250 # Hash algorithms to use for hashing PKI tokens. This may be a |
|
1251 # single algorithm or multiple. The algorithms are those |
|
1252 # supported by Python standard hashlib.new(). The hashes will |
|
1253 # be tried in the order given, so put the preferred one first |
|
1254 # for performance. The result of the first hash will be stored |
|
1255 # in the cache. This will typically be set to multiple values |
|
1256 # only while migrating from a less secure algorithm to a more |
|
1257 # secure one. Once all the old tokens are expired this option |
|
1258 # should be set to a single value for better performance. |
|
1259 # (list value) |
|
1260 #hash_algorithms=md5 |
|
1261 |
1114 |
1262 |
1115 |
1263 [matchmaker_redis] |
1116 [matchmaker_redis] |
1264 |
1117 |
1265 # |
1118 # |
1266 # Options defined in oslo.messaging |
1119 # From oslo.messaging |
1267 # |
1120 # |
1268 |
1121 |
1269 # Host to locate redis. (string value) |
1122 # Host to locate redis. (string value) |
1270 #host=127.0.0.1 |
1123 #host = 127.0.0.1 |
1271 |
1124 |
1272 # Use this port to connect to redis host. (integer value) |
1125 # Use this port to connect to redis host. (integer value) |
1273 #port=6379 |
1126 #port = 6379 |
1274 |
1127 |
1275 # Password for Redis server (optional). (string value) |
1128 # Password for Redis server (optional). (string value) |
1276 #password=<None> |
1129 #password = <None> |
1277 |
1130 |
1278 |
1131 |
1279 [matchmaker_ring] |
1132 [matchmaker_ring] |
1280 |
1133 |
1281 # |
1134 # |
1282 # Options defined in oslo.messaging |
1135 # From oslo.messaging |
1283 # |
1136 # |
1284 |
1137 |
1285 # Matchmaker ring file (JSON). (string value) |
1138 # Matchmaker ring file (JSON). (string value) |
1286 # Deprecated group/name - [DEFAULT]/matchmaker_ringfile |
1139 # Deprecated group/name - [DEFAULT]/matchmaker_ringfile |
1287 #ringfile=/etc/oslo/matchmaker_ring.json |
1140 #ringfile = /etc/oslo/matchmaker_ring.json |
1288 |
1141 |
1289 |
1142 |
1290 [oslo_messaging_amqp] |
1143 [oslo_messaging_amqp] |
1291 |
1144 |
1292 # |
1145 # |
1293 # Options defined in oslo.messaging |
1146 # From oslo.messaging |
1294 # |
1147 # |
1295 # NOTE: Options in this group are supported when using oslo.messaging >=1.5.0. |
1148 |
1296 |
1149 # address prefix used when sending to a specific server (string value) |
1297 # address prefix used when sending to a specific server |
1150 # Deprecated group/name - [amqp1]/server_request_prefix |
1298 # (string value) |
1151 #server_request_prefix = exclusive |
1299 #server_request_prefix=exclusive |
1152 |
1300 |
1153 # address prefix used when broadcasting to all servers (string value) |
1301 # address prefix used when broadcasting to all servers (string |
1154 # Deprecated group/name - [amqp1]/broadcast_prefix |
|
1155 #broadcast_prefix = broadcast |
|
1156 |
|
1157 # address prefix when sending to any server in group (string value) |
|
1158 # Deprecated group/name - [amqp1]/group_request_prefix |
|
1159 #group_request_prefix = unicast |
|
1160 |
|
1161 # Name for the AMQP container (string value) |
|
1162 # Deprecated group/name - [amqp1]/container_name |
|
1163 #container_name = <None> |
|
1164 |
|
1165 # Timeout for inactive connections (in seconds) (integer value) |
|
1166 # Deprecated group/name - [amqp1]/idle_timeout |
|
1167 #idle_timeout = 0 |
|
1168 |
|
1169 # Debug: dump AMQP frames to stdout (boolean value) |
|
1170 # Deprecated group/name - [amqp1]/trace |
|
1171 #trace = false |
|
1172 |
|
1173 # CA certificate PEM file for verifing server certificate (string value) |
|
1174 # Deprecated group/name - [amqp1]/ssl_ca_file |
|
1175 #ssl_ca_file = |
|
1176 |
|
1177 # Identifying certificate PEM file to present to clients (string value) |
|
1178 # Deprecated group/name - [amqp1]/ssl_cert_file |
|
1179 #ssl_cert_file = |
|
1180 |
|
1181 # Private key PEM file used to sign cert_file certificate (string value) |
|
1182 # Deprecated group/name - [amqp1]/ssl_key_file |
|
1183 #ssl_key_file = |
|
1184 |
|
1185 # Password for decrypting ssl_key_file (if encrypted) (string value) |
|
1186 # Deprecated group/name - [amqp1]/ssl_key_password |
|
1187 #ssl_key_password = <None> |
|
1188 |
|
1189 # Accept clients using either SSL or plain TCP (boolean value) |
|
1190 # Deprecated group/name - [amqp1]/allow_insecure_clients |
|
1191 #allow_insecure_clients = false |
|
1192 |
|
1193 |
|
1194 [oslo_messaging_qpid] |
|
1195 |
|
1196 # |
|
1197 # From oslo.messaging |
|
1198 # |
|
1199 |
|
1200 # Use durable queues in AMQP. (boolean value) |
|
1201 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
|
1202 #amqp_durable_queues = false |
|
1203 |
|
1204 # Auto-delete queues in AMQP. (boolean value) |
|
1205 # Deprecated group/name - [DEFAULT]/amqp_auto_delete |
|
1206 #amqp_auto_delete = false |
|
1207 |
|
1208 # Size of RPC connection pool. (integer value) |
|
1209 # Deprecated group/name - [DEFAULT]/rpc_conn_pool_size |
|
1210 #rpc_conn_pool_size = 30 |
|
1211 |
|
1212 # Qpid broker hostname. (string value) |
|
1213 # Deprecated group/name - [DEFAULT]/qpid_hostname |
|
1214 #qpid_hostname = localhost |
|
1215 |
|
1216 # Qpid broker port. (integer value) |
|
1217 # Deprecated group/name - [DEFAULT]/qpid_port |
|
1218 #qpid_port = 5672 |
|
1219 |
|
1220 # Qpid HA cluster host:port pairs. (list value) |
|
1221 # Deprecated group/name - [DEFAULT]/qpid_hosts |
|
1222 #qpid_hosts = $qpid_hostname:$qpid_port |
|
1223 |
|
1224 # Username for Qpid connection. (string value) |
|
1225 # Deprecated group/name - [DEFAULT]/qpid_username |
|
1226 #qpid_username = |
|
1227 |
|
1228 # Password for Qpid connection. (string value) |
|
1229 # Deprecated group/name - [DEFAULT]/qpid_password |
|
1230 #qpid_password = |
|
1231 |
|
1232 # Space separated list of SASL mechanisms to use for auth. (string value) |
|
1233 # Deprecated group/name - [DEFAULT]/qpid_sasl_mechanisms |
|
1234 #qpid_sasl_mechanisms = |
|
1235 |
|
1236 # Seconds between connection keepalive heartbeats. (integer value) |
|
1237 # Deprecated group/name - [DEFAULT]/qpid_heartbeat |
|
1238 #qpid_heartbeat = 60 |
|
1239 |
|
1240 # Transport to use, either 'tcp' or 'ssl'. (string value) |
|
1241 # Deprecated group/name - [DEFAULT]/qpid_protocol |
|
1242 #qpid_protocol = tcp |
|
1243 |
|
1244 # Whether to disable the Nagle algorithm. (boolean value) |
|
1245 # Deprecated group/name - [DEFAULT]/qpid_tcp_nodelay |
|
1246 #qpid_tcp_nodelay = true |
|
1247 |
|
1248 # The number of prefetched messages held by receiver. (integer value) |
|
1249 # Deprecated group/name - [DEFAULT]/qpid_receiver_capacity |
|
1250 #qpid_receiver_capacity = 1 |
|
1251 |
|
1252 # The qpid topology version to use. Version 1 is what was originally used by |
|
1253 # impl_qpid. Version 2 includes some backwards-incompatible changes that allow |
|
1254 # broker federation to work. Users should update to version 2 when they are |
|
1255 # able to take everything down, as it requires a clean break. (integer value) |
|
1256 # Deprecated group/name - [DEFAULT]/qpid_topology_version |
|
1257 #qpid_topology_version = 1 |
|
1258 |
|
1259 |
|
1260 [oslo_messaging_rabbit] |
|
1261 |
|
1262 # |
|
1263 # From oslo.messaging |
|
1264 # |
|
1265 |
|
1266 # Use durable queues in AMQP. (boolean value) |
|
1267 # Deprecated group/name - [DEFAULT]/rabbit_durable_queues |
|
1268 #amqp_durable_queues = false |
|
1269 |
|
1270 # Auto-delete queues in AMQP. (boolean value) |
|
1271 # Deprecated group/name - [DEFAULT]/amqp_auto_delete |
|
1272 #amqp_auto_delete = false |
|
1273 |
|
1274 # Size of RPC connection pool. (integer value) |
|
1275 # Deprecated group/name - [DEFAULT]/rpc_conn_pool_size |
|
1276 #rpc_conn_pool_size = 30 |
|
1277 |
|
1278 # SSL version to use (valid only if SSL enabled). Valid values are TLSv1 and |
|
1279 # SSLv23. SSLv2, SSLv3, TLSv1_1, and TLSv1_2 may be available on some |
|
1280 # distributions. (string value) |
|
1281 # Deprecated group/name - [DEFAULT]/kombu_ssl_version |
|
1282 #kombu_ssl_version = |
|
1283 |
|
1284 # SSL key file (valid only if SSL enabled). (string value) |
|
1285 # Deprecated group/name - [DEFAULT]/kombu_ssl_keyfile |
|
1286 #kombu_ssl_keyfile = |
|
1287 |
|
1288 # SSL cert file (valid only if SSL enabled). (string value) |
|
1289 # Deprecated group/name - [DEFAULT]/kombu_ssl_certfile |
|
1290 #kombu_ssl_certfile = |
|
1291 |
|
1292 # SSL certification authority file (valid only if SSL enabled). (string value) |
|
1293 # Deprecated group/name - [DEFAULT]/kombu_ssl_ca_certs |
|
1294 #kombu_ssl_ca_certs = |
|
1295 |
|
1296 # How long to wait before reconnecting in response to an AMQP consumer cancel |
|
1297 # notification. (floating point value) |
|
1298 # Deprecated group/name - [DEFAULT]/kombu_reconnect_delay |
|
1299 #kombu_reconnect_delay = 1.0 |
|
1300 |
|
1301 # The RabbitMQ broker address where a single node is used. (string value) |
|
1302 # Deprecated group/name - [DEFAULT]/rabbit_host |
|
1303 #rabbit_host = localhost |
|
1304 |
|
1305 # The RabbitMQ broker port where a single node is used. (integer value) |
|
1306 # Deprecated group/name - [DEFAULT]/rabbit_port |
|
1307 #rabbit_port = 5672 |
|
1308 |
|
1309 # RabbitMQ HA cluster host:port pairs. (list value) |
|
1310 # Deprecated group/name - [DEFAULT]/rabbit_hosts |
|
1311 #rabbit_hosts = $rabbit_host:$rabbit_port |
|
1312 |
|
1313 # Connect over SSL for RabbitMQ. (boolean value) |
|
1314 # Deprecated group/name - [DEFAULT]/rabbit_use_ssl |
|
1315 #rabbit_use_ssl = false |
|
1316 |
|
1317 # The RabbitMQ userid. (string value) |
|
1318 # Deprecated group/name - [DEFAULT]/rabbit_userid |
|
1319 #rabbit_userid = guest |
|
1320 |
|
1321 # The RabbitMQ password. (string value) |
|
1322 # Deprecated group/name - [DEFAULT]/rabbit_password |
|
1323 #rabbit_password = guest |
|
1324 |
|
1325 # The RabbitMQ login method. (string value) |
|
1326 # Deprecated group/name - [DEFAULT]/rabbit_login_method |
|
1327 #rabbit_login_method = AMQPLAIN |
|
1328 |
|
1329 # The RabbitMQ virtual host. (string value) |
|
1330 # Deprecated group/name - [DEFAULT]/rabbit_virtual_host |
|
1331 #rabbit_virtual_host = / |
|
1332 |
|
1333 # How frequently to retry connecting with RabbitMQ. (integer value) |
|
1334 #rabbit_retry_interval = 1 |
|
1335 |
|
1336 # How long to backoff for between retries when connecting to RabbitMQ. (integer |
1302 # value) |
1337 # value) |
1303 #broadcast_prefix=broadcast |
1338 # Deprecated group/name - [DEFAULT]/rabbit_retry_backoff |
1304 |
1339 #rabbit_retry_backoff = 2 |
1305 # address prefix when sending to any server in group (string |
1340 |
1306 # value) |
1341 # Maximum number of RabbitMQ connection retries. Default is 0 (infinite retry |
1307 #group_request_prefix=unicast |
1342 # count). (integer value) |
1308 |
1343 # Deprecated group/name - [DEFAULT]/rabbit_max_retries |
1309 # Name for the AMQP container (string value) |
1344 #rabbit_max_retries = 0 |
1310 #container_name=<None> |
1345 |
1311 |
1346 # Use HA queues in RabbitMQ (x-ha-policy: all). If you change this option, you |
1312 # Timeout for inactive connections (in seconds) (integer |
1347 # must wipe the RabbitMQ database. (boolean value) |
1313 # value) |
1348 # Deprecated group/name - [DEFAULT]/rabbit_ha_queues |
1314 #idle_timeout=0 |
1349 #rabbit_ha_queues = false |
1315 |
1350 |
1316 # Debug: dump AMQP frames to stdout (boolean value) |
1351 # Number of seconds after which the Rabbit broker is considered down if |
1317 #trace=false |
1352 # heartbeat's keep-alive fails (0 disables the heartbeat, >0 enables it. |
1318 |
1353 # Enabling heartbeats requires kombu>=3.0.7 and amqp>=1.4.0). EXPERIMENTAL |
1319 # CA certificate PEM file for verifing server certificate |
1354 # (integer value) |
1320 # (string value) |
1355 #heartbeat_timeout_threshold = 0 |
1321 #ssl_ca_file= |
1356 |
1322 |
1357 # How often times during the heartbeat_timeout_threshold we check the |
1323 # Identifying certificate PEM file to present to clients |
1358 # heartbeat. (integer value) |
1324 # (string value) |
1359 #heartbeat_rate = 2 |
1325 #ssl_cert_file= |
1360 |
1326 |
1361 # Deprecated, use rpc_backend=kombu+memory or rpc_backend=fake (boolean value) |
1327 # Private key PEM file used to sign cert_file certificate |
1362 # Deprecated group/name - [DEFAULT]/fake_rabbit |
1328 # (string value) |
1363 #fake_rabbit = false |
1329 #ssl_key_file= |
|
1330 |
|
1331 # Password for decrypting ssl_key_file (if encrypted) (string |
|
1332 # value) |
|
1333 #ssl_key_password=<None> |
|
1334 |
|
1335 # Accept clients using either SSL or plain TCP (boolean value) |
|
1336 #allow_insecure_clients=false |
|
1337 |
1364 |
1338 |
1365 |
1339 [paste_deploy] |
1366 [paste_deploy] |
1340 |
1367 |
1341 # |
1368 # |
1342 # Options defined in heat.common.config |
1369 # From heat.common.config |
1343 # |
1370 # |
1344 |
1371 |
1345 # The flavor to use. (string value) |
1372 # The flavor to use. (string value) |
1346 #flavor=<None> |
1373 #flavor = <None> |
1347 |
1374 |
1348 # The API paste config file to use. (string value) |
1375 # The API paste config file to use. (string value) |
1349 #api_paste_config=api-paste.ini |
1376 #api_paste_config = api-paste.ini |
|
1377 |
|
1378 |
|
1379 [profiler] |
|
1380 |
|
1381 # |
|
1382 # From heat.common.config |
|
1383 # |
|
1384 |
|
1385 # If False fully disable profiling feature. (boolean value) |
|
1386 #profiler_enabled = false |
|
1387 |
|
1388 # If False do not trace SQL requests. (boolean value) |
|
1389 #trace_sqlalchemy = false |
1350 |
1390 |
1351 |
1391 |
1352 [revision] |
1392 [revision] |
1353 |
1393 |
1354 # |
1394 # |
1355 # Options defined in heat.common.config |
1395 # From heat.common.config |
1356 # |
1396 # |
1357 |
1397 |
1358 # Heat build revision. If you would prefer to manage your |
1398 # Heat build revision. If you would prefer to manage your build revision |
1359 # build revision separately, you can move this section to a |
1399 # separately, you can move this section to a different file and add it as |
1360 # different file and add it as another config option. (string |
1400 # another config option. (string value) |
1361 # value) |
1401 #heat_revision = unknown |
1362 #heat_revision=unknown |
|
1363 |
|
1364 |
|