79 # The hostname/IP of the pydev process listening for debug connections |
80 # The hostname/IP of the pydev process listening for debug connections |
80 # (string value) |
81 # (string value) |
81 #pydev_worker_debug_host = <None> |
82 #pydev_worker_debug_host = <None> |
82 |
83 |
83 # The port on which a pydev process is listening for connections. |
84 # The port on which a pydev process is listening for connections. |
84 # (integer value) |
85 # (port value) |
|
86 # Minimum value: 0 |
|
87 # Maximum value: 65535 |
85 #pydev_worker_debug_port = 5678 |
88 #pydev_worker_debug_port = 5678 |
86 |
89 |
87 # AES key for encrypting store 'location' metadata. This includes, if |
90 # AES key for encrypting store 'location' metadata. This includes, if |
88 # used, Swift or S3 credentials. Should be set to a random string of |
91 # used, Swift or S3 credentials. Should be set to a random string of |
89 # length 16, 24 or 32 bytes (string value) |
92 # length 16, 24 or 32 bytes (string value) |
90 #metadata_encryption_key = <None> |
93 #metadata_encryption_key = <None> |
91 |
94 |
92 # Digest algorithm which will be used for digital signature; the |
95 # Digest algorithm which will be used for digital signature. Use the |
93 # default is sha1 the default in Kilo for a smooth upgrade process, |
|
94 # and it will be updated with sha256 in next release(L). Use the |
|
95 # command "openssl list-message-digest-algorithms" to get the |
96 # command "openssl list-message-digest-algorithms" to get the |
96 # available algorithms supported by the version of OpenSSL on the |
97 # available algorithms supported by the version of OpenSSL on the |
97 # platform. Examples are "sha1", "sha256", "sha512", etc. (string |
98 # platform. Examples are "sha1", "sha256", "sha512", etc. (string |
98 # value) |
99 # value) |
99 #digest_algorithm = sha1 |
100 #digest_algorithm = sha256 |
100 |
101 |
101 # The path to the sqlite file database that will be used for image |
102 # The path to the sqlite file database that will be used for image |
102 # cache management. (string value) |
103 # cache management. (string value) |
103 #image_cache_sqlite_db = cache.db |
104 #image_cache_sqlite_db = cache.db |
104 |
105 |
105 # The driver to use for image cache management. (string value) |
106 # The driver to use for image cache management. (string value) |
106 #image_cache_driver = sqlite |
107 #image_cache_driver = sqlite |
107 |
108 |
108 # The upper limit (the maximum size of accumulated cache in bytes) |
109 # The upper limit (the maximum size of accumulated cache in bytes) |
109 # beyond which pruner, if running, starts cleaning the images cache. |
110 # beyond which the cache pruner, if running, starts cleaning the image |
110 # (integer value) |
111 # cache. (integer value) |
111 #image_cache_max_size = 10737418240 |
112 #image_cache_max_size = 10737418240 |
112 |
113 |
113 # The amount of time to let an image remain in the cache without being |
114 # The amount of time to let an incomplete image remain in the cache, |
114 # accessed. (integer value) |
115 # before the cache cleaner, if running, will remove the incomplete |
|
116 # image. (integer value) |
115 #image_cache_stall_time = 86400 |
117 #image_cache_stall_time = 86400 |
116 |
118 |
117 # Base directory that the Image Cache uses. (string value) |
119 # Base directory that the image cache uses. (string value) |
118 #image_cache_dir = <None> |
120 #image_cache_dir = <None> |
119 |
121 |
120 # Address to find the registry server. (string value) |
122 # Address to find the registry server. (string value) |
121 #registry_host = 0.0.0.0 |
123 #registry_host = 0.0.0.0 |
122 |
124 |
123 # Port the registry server is listening on. (integer value) |
125 # Port the registry server is listening on. (port value) |
|
126 # Minimum value: 0 |
|
127 # Maximum value: 65535 |
124 #registry_port = 9191 |
128 #registry_port = 9191 |
125 |
129 |
126 # Whether to pass through the user token when making requests to the |
130 # Whether to pass through the user token when making requests to the |
127 # registry. (boolean value) |
131 # registry. To prevent failures with token expiration during big files |
128 # WARNING: DO NOT CHANGE THIS VALUE. Setting use_user_token to False |
132 # upload, it is recommended to set this parameter to False. If |
129 # allows for unintended privilege escalation within the Glance API server. |
133 # "use_user_token" is not in effect, then admin credentials can be |
130 # See https://wiki.openstack.org/wiki/OSSN/OSSN-0060 |
134 # specified. (boolean value) |
|
135 # This option is deprecated for removal. |
|
136 # Its value may be silently ignored in the future. |
|
137 # Reason: This option was considered harmful and has been deprecated |
|
138 # in M release. It will be removed in O release. For more information |
|
139 # read OSSN-0060. Related functionality with uploading big images has |
|
140 # been implemented with Keystone trusts support. |
131 #use_user_token = true |
141 #use_user_token = true |
132 |
142 |
133 # The administrators user name. If "use_user_token" is not in effect, |
143 # The administrators user name. If "use_user_token" is not in effect, |
134 # then admin credentials can be specified. (string value) |
144 # then admin credentials can be specified. (string value) |
|
145 # This option is deprecated for removal. |
|
146 # Its value may be silently ignored in the future. |
|
147 # Reason: This option was considered harmful and has been deprecated |
|
148 # in M release. It will be removed in O release. For more information |
|
149 # read OSSN-0060. Related functionality with uploading big images has |
|
150 # been implemented with Keystone trusts support. |
135 admin_user = %SERVICE_USER% |
151 admin_user = %SERVICE_USER% |
136 |
152 |
137 # The administrators password. If "use_user_token" is not in effect, |
153 # The administrators password. If "use_user_token" is not in effect, |
138 # then admin credentials can be specified. (string value) |
154 # then admin credentials can be specified. (string value) |
|
155 # This option is deprecated for removal. |
|
156 # Its value may be silently ignored in the future. |
|
157 # Reason: This option was considered harmful and has been deprecated |
|
158 # in M release. It will be removed in O release. For more information |
|
159 # read OSSN-0060. Related functionality with uploading big images has |
|
160 # been implemented with Keystone trusts support. |
139 admin_password = %SERVICE_PASSWORD% |
161 admin_password = %SERVICE_PASSWORD% |
140 |
162 |
141 # The tenant name of the administrative user. If "use_user_token" is |
163 # The tenant name of the administrative user. If "use_user_token" is |
142 # not in effect, then admin tenant name can be specified. (string |
164 # not in effect, then admin tenant name can be specified. (string |
143 # value) |
165 # value) |
|
166 # This option is deprecated for removal. |
|
167 # Its value may be silently ignored in the future. |
|
168 # Reason: This option was considered harmful and has been deprecated |
|
169 # in M release. It will be removed in O release. For more information |
|
170 # read OSSN-0060. Related functionality with uploading big images has |
|
171 # been implemented with Keystone trusts support. |
144 admin_tenant_name = %SERVICE_TENANT_NAME% |
172 admin_tenant_name = %SERVICE_TENANT_NAME% |
145 |
173 |
146 # The URL to the keystone service. If "use_user_token" is not in |
174 # The URL to the keystone service. If "use_user_token" is not in |
147 # effect and using keystone auth, then URL of keystone can be |
175 # effect and using keystone auth, then URL of keystone can be |
148 # specified. (string value) |
176 # specified. (string value) |
|
177 # This option is deprecated for removal. |
|
178 # Its value may be silently ignored in the future. |
|
179 # Reason: This option was considered harmful and has been deprecated |
|
180 # in M release. It will be removed in O release. For more information |
|
181 # read OSSN-0060. Related functionality with uploading big images has |
|
182 # been implemented with Keystone trusts support. |
149 auth_url = http://127.0.0.1:5000/v2.0/ |
183 auth_url = http://127.0.0.1:5000/v2.0/ |
150 |
184 |
151 # The strategy to use for authentication. If "use_user_token" is not |
185 # The strategy to use for authentication. If "use_user_token" is not |
152 # in effect, then auth strategy can be specified. (string value) |
186 # in effect, then auth strategy can be specified. (string value) |
153 #auth_strategy = noauth |
187 # This option is deprecated for removal. |
|
188 # Its value may be silently ignored in the future. |
|
189 # Reason: This option was considered harmful and has been deprecated |
|
190 # in M release. It will be removed in O release. For more information |
|
191 # read OSSN-0060. Related functionality with uploading big images has |
|
192 # been implemented with Keystone trusts support. |
|
193 auth_strategy = keystone |
154 |
194 |
155 # The region for the authentication service. If "use_user_token" is |
195 # The region for the authentication service. If "use_user_token" is |
156 # not in effect and using keystone auth, then region name can be |
196 # not in effect and using keystone auth, then region name can be |
157 # specified. (string value) |
197 # specified. (string value) |
|
198 # This option is deprecated for removal. |
|
199 # Its value may be silently ignored in the future. |
|
200 # Reason: This option was considered harmful and has been deprecated |
|
201 # in M release. It will be removed in O release. For more information |
|
202 # read OSSN-0060. Related functionality with uploading big images has |
|
203 # been implemented with Keystone trusts support. |
158 #auth_region = <None> |
204 #auth_region = <None> |
159 |
205 |
160 # |
206 # |
161 # From oslo.log |
207 # From oslo.log |
162 # |
208 # |
163 |
209 |
164 # Print debugging output (set logging level to DEBUG instead of |
210 # If set to true, the logging level will be set to DEBUG instead of |
165 # default WARNING level). (boolean value) |
211 # the default INFO level. (boolean value) |
166 #debug = false |
212 #debug = false |
167 |
213 |
168 # Print more verbose output (set logging level to INFO instead of |
214 # If set to false, the logging level will be set to WARNING instead of |
169 # default WARNING level). (boolean value) |
215 # the default INFO level. (boolean value) |
170 #verbose = false |
216 # This option is deprecated for removal. |
|
217 # Its value may be silently ignored in the future. |
|
218 #verbose = true |
171 |
219 |
172 # The name of a logging configuration file. This file is appended to |
220 # The name of a logging configuration file. This file is appended to |
173 # any existing logging configuration files. For details about logging |
221 # any existing logging configuration files. For details about logging |
174 # configuration files, see the Python logging module documentation. |
222 # configuration files, see the Python logging module documentation. |
175 # (string value) |
223 # Note that when logging configuration files are used then all logging |
|
224 # configuration is set in the configuration file and other logging |
|
225 # configuration options are ignored (for example, |
|
226 # logging_context_format_string). (string value) |
176 # Deprecated group/name - [DEFAULT]/log_config |
227 # Deprecated group/name - [DEFAULT]/log_config |
177 #log_config_append = <None> |
228 #log_config_append = <None> |
178 |
229 |
179 # DEPRECATED. A logging.Formatter log message format string which may |
230 # Defines the format string for %%(asctime)s in log records. Default: |
180 # use any of the available logging.LogRecord attributes. This option |
231 # %(default)s . This option is ignored if log_config_append is set. |
181 # is deprecated. Please use logging_context_format_string and |
232 # (string value) |
182 # logging_default_format_string instead. (string value) |
|
183 #log_format = <None> |
|
184 |
|
185 # Format string for %%(asctime)s in log records. Default: %(default)s |
|
186 # . (string value) |
|
187 #log_date_format = %Y-%m-%d %H:%M:%S |
233 #log_date_format = %Y-%m-%d %H:%M:%S |
188 |
234 |
189 # (Optional) Name of log file to output to. If no default is set, |
235 # (Optional) Name of log file to send logging output to. If no default |
190 # logging will go to stdout. (string value) |
236 # is set, logging will go to stderr as defined by use_stderr. This |
|
237 # option is ignored if log_config_append is set. (string value) |
191 # Deprecated group/name - [DEFAULT]/logfile |
238 # Deprecated group/name - [DEFAULT]/logfile |
192 #log_file = <None> |
239 #log_file = <None> |
193 |
240 |
194 # (Optional) The base directory used for relative --log-file paths. |
241 # (Optional) The base directory used for relative log_file paths. |
195 # (string value) |
242 # This option is ignored if log_config_append is set. (string value) |
196 # Deprecated group/name - [DEFAULT]/logdir |
243 # Deprecated group/name - [DEFAULT]/logdir |
197 #log_dir = <None> |
244 #log_dir = <None> |
198 |
245 |
199 # Use syslog for logging. Existing syslog format is DEPRECATED during |
246 # Uses logging handler designed to watch file system. When log file is |
200 # I, and will change in J to honor RFC5424. (boolean value) |
247 # moved or removed this handler will open a new log file with |
|
248 # specified path instantaneously. It makes sense only if log_file |
|
249 # option is specified and Linux platform is used. This option is |
|
250 # ignored if log_config_append is set. (boolean value) |
|
251 #watch_log_file = false |
|
252 |
|
253 # Use syslog for logging. Existing syslog format is DEPRECATED and |
|
254 # will be changed later to honor RFC5424. This option is ignored if |
|
255 # log_config_append is set. (boolean value) |
201 #use_syslog = false |
256 #use_syslog = false |
202 |
257 |
203 # (Optional) Enables or disables syslog rfc5424 format for logging. If |
258 # Syslog facility to receive log lines. This option is ignored if |
204 # enabled, prefixes the MSG part of the syslog message with APP-NAME |
259 # log_config_append is set. (string value) |
205 # (RFC5424). The format without the APP-NAME is deprecated in I, and |
|
206 # will be removed in J. (boolean value) |
|
207 #use_syslog_rfc_format = false |
|
208 |
|
209 # Syslog facility to receive log lines. (string value) |
|
210 #syslog_log_facility = LOG_USER |
260 #syslog_log_facility = LOG_USER |
211 |
261 |
212 # Log output to standard error. (boolean value) |
262 # Log output to standard error. This option is ignored if |
|
263 # log_config_append is set. (boolean value) |
213 #use_stderr = true |
264 #use_stderr = true |
214 |
265 |
215 # Format string to use for log messages with context. (string value) |
266 # Format string to use for log messages with context. (string value) |
216 #logging_context_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [%(request_id)s %(user_identity)s] %(instance)s%(message)s |
267 #logging_context_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [%(request_id)s %(user_identity)s] %(instance)s%(message)s |
217 |
268 |
218 # Format string to use for log messages without context. (string |
269 # Format string to use for log messages when context is undefined. |
219 # value) |
270 # (string value) |
220 #logging_default_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [-] %(instance)s%(message)s |
271 #logging_default_format_string = %(asctime)s.%(msecs)03d %(process)d %(levelname)s %(name)s [-] %(instance)s%(message)s |
221 |
272 |
222 # Data to append to log format when level is DEBUG. (string value) |
273 # Additional data to append to log message when logging level for the |
|
274 # message is DEBUG. (string value) |
223 #logging_debug_format_suffix = %(funcName)s %(pathname)s:%(lineno)d |
275 #logging_debug_format_suffix = %(funcName)s %(pathname)s:%(lineno)d |
224 |
276 |
225 # Prefix each line of exception output with this format. (string |
277 # Prefix each line of exception output with this format. (string |
226 # value) |
278 # value) |
227 #logging_exception_prefix = %(asctime)s.%(msecs)03d %(process)d TRACE %(name)s %(instance)s |
279 #logging_exception_prefix = %(asctime)s.%(msecs)03d %(process)d ERROR %(name)s %(instance)s |
228 |
280 |
229 # List of logger=LEVEL pairs. (list value) |
281 # Defines the format string for %(user_identity)s that is used in |
230 #default_log_levels = amqp=WARN,amqplib=WARN,boto=WARN,qpid=WARN,sqlalchemy=WARN,suds=INFO,oslo.messaging=INFO,iso8601=WARN,requests.packages.urllib3.connectionpool=WARN,urllib3.connectionpool=WARN,websocket=WARN,requests.packages.urllib3.util.retry=WARN,urllib3.util.retry=WARN,keystonemiddleware=WARN,routes.middleware=WARN,stevedore=WARN |
282 # logging_context_format_string. (string value) |
|
283 #logging_user_identity_format = %(user)s %(tenant)s %(domain)s %(user_domain)s %(project_domain)s |
|
284 |
|
285 # List of package logging levels in logger=LEVEL pairs. This option is |
|
286 # ignored if log_config_append is set. (list value) |
|
287 #default_log_levels = amqp=WARN,amqplib=WARN,boto=WARN,qpid=WARN,sqlalchemy=WARN,suds=INFO,oslo.messaging=INFO,iso8601=WARN,requests.packages.urllib3.connectionpool=WARN,urllib3.connectionpool=WARN,websocket=WARN,requests.packages.urllib3.util.retry=WARN,urllib3.util.retry=WARN,keystonemiddleware=WARN,routes.middleware=WARN,stevedore=WARN,taskflow=WARN,keystoneauth=WARN,oslo.cache=INFO,dogpile.core.dogpile=INFO |
231 |
288 |
232 # Enables or disables publication of error events. (boolean value) |
289 # Enables or disables publication of error events. (boolean value) |
233 #publish_errors = false |
290 #publish_errors = false |
234 |
291 |
|
292 # The format for an instance that is passed with the log message. |
|
293 # (string value) |
|
294 #instance_format = "[instance: %(uuid)s] " |
|
295 |
|
296 # The format for an instance UUID that is passed with the log message. |
|
297 # (string value) |
|
298 #instance_uuid_format = "[instance: %(uuid)s] " |
|
299 |
235 # Enables or disables fatal status of deprecations. (boolean value) |
300 # Enables or disables fatal status of deprecations. (boolean value) |
236 #fatal_deprecations = false |
301 #fatal_deprecations = false |
237 |
302 |
238 # The format for an instance that is passed with the log message. |
|
239 # (string value) |
|
240 #instance_format = "[instance: %(uuid)s] " |
|
241 |
|
242 # The format for an instance UUID that is passed with the log message. |
|
243 # (string value) |
|
244 #instance_uuid_format = "[instance: %(uuid)s] " |
|
245 |
|
246 |
303 |
247 [glance_store] |
304 [glance_store] |
248 |
305 |
249 # |
306 # |
250 # From glance.store |
307 # From glance.store |
251 # |
308 # |
252 |
309 |
253 # List of stores enabled (list value) |
310 # List of stores enabled. Valid stores are: cinder, file, http, rbd, |
|
311 # sheepdog, swift, s3, vsphere (list value) |
254 #stores = file,http |
312 #stores = file,http |
255 |
313 |
256 # Default scheme to use to store image data. The scheme must be |
314 # Default scheme to use to store image data. The scheme must be |
257 # registered by one of the stores defined by the 'stores' config |
315 # registered by one of the stores defined by the 'stores' config |
258 # option. (string value) |
316 # option. (string value) |
402 |
472 |
403 # The name of the directory where the glance images will be stored in |
473 # The name of the directory where the glance images will be stored in |
404 # the VMware datastore. (string value) |
474 # the VMware datastore. (string value) |
405 #vmware_store_image_dir = /openstack_glance |
475 #vmware_store_image_dir = /openstack_glance |
406 |
476 |
407 # Allow to perform insecure SSL requests to ESX/VC. (boolean value) |
477 # If true, the ESX/vCenter server certificate is not verified. If |
408 #vmware_api_insecure = false |
478 # false, then the default CA truststore is used for verification. This |
|
479 # option is ignored if "vmware_ca_file" is set. (boolean value) |
|
480 # Deprecated group/name - [DEFAULT]/vmware_api_insecure |
|
481 #vmware_insecure = false |
|
482 |
|
483 # Specify a CA bundle file to use in verifying the ESX/vCenter server |
|
484 # certificate. (string value) |
|
485 #vmware_ca_file = <None> |
409 |
486 |
410 # A list of datastores where the image can be stored. This option may |
487 # A list of datastores where the image can be stored. This option may |
411 # be specified multiple times for specifying multiple datastores. |
488 # be specified multiple times for specifying multiple datastores. The |
412 # Either one of vmware_datastore_name or vmware_datastores is |
489 # datastore name should be specified after its datacenter path, |
413 # required. The datastore name should be specified after its |
490 # seperated by ":". An optional weight may be given after the |
414 # datacenter path, seperated by ":". An optional weight may be given |
491 # datastore name, seperated again by ":". Thus, the required format |
415 # after the datastore name, seperated again by ":". Thus, the required |
492 # becomes <datacenter_path>:<datastore_name>:<optional_weight>. When |
416 # format becomes <datacenter_path>:<datastore_name>:<optional_weight>. |
493 # adding an image, the datastore with highest weight will be selected, |
417 # When adding an image, the datastore with highest weight will be |
494 # unless there is not enough free space available in cases where the |
418 # selected, unless there is not enough free space available in cases |
495 # image size is already known. If no weight is given, it is assumed to |
419 # where the image size is already known. If no weight is given, it is |
496 # be zero and the directory will be considered for selection last. If |
420 # assumed to be zero and the directory will be considered for |
497 # multiple datastores have the same weight, then the one with the most |
421 # selection last. If multiple datastores have the same weight, then |
498 # free space available is selected. (multi valued) |
422 # the one with the most free space available is selected. (multi |
|
423 # valued) |
|
424 #vmware_datastores = |
499 #vmware_datastores = |
425 |
500 |
426 # Info to match when looking for cinder in the service catalog. Format |
501 # Info to match when looking for cinder in the service catalog. Format |
427 # is : separated values of the form: |
502 # is : separated values of the form: |
428 # <service_type>:<service_name>:<endpoint_type> (string value) |
503 # <service_type>:<service_name>:<endpoint_type> (string value) |
429 #cinder_catalog_info = volume:cinder:publicURL |
504 #cinder_catalog_info = volumev2::publicURL |
430 |
505 |
431 # Override service catalog lookup with template for cinder endpoint |
506 # Override service catalog lookup with template for cinder endpoint |
432 # e.g. http://localhost:8776/v1/%(project_id)s (string value) |
507 # e.g. http://localhost:8776/v2/%(tenant)s (string value) |
433 #cinder_endpoint_template = <None> |
508 #cinder_endpoint_template = <None> |
434 |
509 |
435 # Region name of this node (string value) |
510 # Region name of this node. If specified, it will be used to locate |
436 #os_region_name = <None> |
511 # OpenStack services for stores. (string value) |
|
512 # Deprecated group/name - [DEFAULT]/os_region_name |
|
513 #cinder_os_region_name = <None> |
437 |
514 |
438 # Location of ca certicates file to use for cinder client requests. |
515 # Location of ca certicates file to use for cinder client requests. |
439 # (string value) |
516 # (string value) |
440 #cinder_ca_certificates_file = <None> |
517 #cinder_ca_certificates_file = <None> |
441 |
518 |
442 # Number of cinderclient retries on failed http calls (integer value) |
519 # Number of cinderclient retries on failed http calls (integer value) |
443 #cinder_http_retries = 3 |
520 #cinder_http_retries = 3 |
444 |
521 |
|
522 # Time period of time in seconds to wait for a cinder volume |
|
523 # transition to complete. (integer value) |
|
524 #cinder_state_transition_timeout = 300 |
|
525 |
445 # Allow to perform insecure SSL requests to cinder (boolean value) |
526 # Allow to perform insecure SSL requests to cinder (boolean value) |
446 #cinder_api_insecure = false |
527 #cinder_api_insecure = false |
447 |
528 |
448 # Version of the authentication service to use. Valid versions are 2 |
529 # The address where the Cinder authentication service is listening. If |
449 # for keystone and 1 for swauth and rackspace. (deprecated) (string |
530 # <None>, the cinder endpoint in the service catalog is used. (string |
450 # value) |
531 # value) |
451 #swift_store_auth_version = 2 |
532 #cinder_store_auth_address = <None> |
|
533 |
|
534 # User name to authenticate against Cinder. If <None>, the user of |
|
535 # current context is used. (string value) |
|
536 #cinder_store_user_name = <None> |
|
537 |
|
538 # Password for the user authenticating against Cinder. If <None>, the |
|
539 # current context auth token is used. (string value) |
|
540 #cinder_store_password = <None> |
|
541 |
|
542 # Project name where the image is stored in Cinder. If <None>, the |
|
543 # project in current context is used. (string value) |
|
544 #cinder_store_project_name = <None> |
|
545 |
|
546 # Path to the rootwrap configuration file to use for running commands |
|
547 # as root. (string value) |
|
548 #rootwrap_config = /etc/glance/rootwrap.conf |
452 |
549 |
453 # If True, swiftclient won't check for a valid SSL certificate when |
550 # If True, swiftclient won't check for a valid SSL certificate when |
454 # authenticating. (boolean value) |
551 # authenticating. (boolean value) |
455 #swift_store_auth_insecure = false |
552 #swift_store_auth_insecure = false |
456 |
553 |