2016-05-11 00:29:27 +08:00
|
|
|
---
|
|
|
|
# Variables here are applicable to all host groups NOT roles
|
|
|
|
|
|
|
|
# This sample file generated by generate_group_vars_sample.sh
|
|
|
|
|
|
|
|
# Dummy variable to avoid error because ansible does not recognize the
|
|
|
|
# file as a good configuration file when no variable in it.
|
|
|
|
dummy:
|
|
|
|
|
|
|
|
###########
|
|
|
|
# GENERAL #
|
|
|
|
###########
|
|
|
|
|
2018-04-11 23:15:29 +08:00
|
|
|
# Even though Client nodes should not have the admin key
|
|
|
|
# at their disposal, some people might want to have it
|
|
|
|
# distributed on Client nodes. Setting 'copy_admin_key' to 'true'
|
|
|
|
# will copy the admin key to the /etc/ceph/ directory
|
2017-09-02 06:52:55 +08:00
|
|
|
#copy_admin_key: false
|
2016-05-11 00:29:27 +08:00
|
|
|
|
|
|
|
#user_config: false
|
2018-03-07 21:50:27 +08:00
|
|
|
#test:
|
|
|
|
# name: "test"
|
2018-11-13 22:40:35 +08:00
|
|
|
# pg_num: "{{ osd_pool_default_pg_num }}"
|
|
|
|
# pgp_num: "{{ osd_pool_default_pg_num }}"
|
2018-03-07 21:50:27 +08:00
|
|
|
# rule_name: "replicated_rule"
|
2019-03-01 00:46:29 +08:00
|
|
|
# application: "rbd"
|
2018-04-25 23:33:35 +08:00
|
|
|
# type: 1
|
2018-03-07 21:50:27 +08:00
|
|
|
# erasure_profile: ""
|
2018-03-26 04:36:27 +08:00
|
|
|
# expected_num_objects: ""
|
2018-11-22 00:28:00 +08:00
|
|
|
# size: "{{ osd_pool_default_size }}"
|
2019-03-09 16:33:46 +08:00
|
|
|
# min_size: "{{ osd_pool_default_min_size }}"
|
2018-03-07 21:50:27 +08:00
|
|
|
#test2:
|
|
|
|
# name: "test2"
|
2018-11-13 22:40:35 +08:00
|
|
|
# pg_num: "{{ osd_pool_default_pg_num }}"
|
|
|
|
# pgp_num: "{{ osd_pool_default_pg_num }}"
|
2018-03-07 21:50:27 +08:00
|
|
|
# rule_name: "replicated_rule"
|
2019-03-01 00:46:29 +08:00
|
|
|
# application: "rbd"
|
2018-04-25 23:33:35 +08:00
|
|
|
# type: 1
|
2018-03-07 21:50:27 +08:00
|
|
|
# erasure_profile: ""
|
2018-03-26 04:36:27 +08:00
|
|
|
# expected_num_objects: ""
|
2018-11-22 00:28:00 +08:00
|
|
|
# size: "{{ osd_pool_default_size }}"
|
2019-03-09 16:33:46 +08:00
|
|
|
# min_size: "{{ osd_pool_default_min_size }}"
|
2016-05-11 00:29:27 +08:00
|
|
|
#pools:
|
2018-03-07 21:50:27 +08:00
|
|
|
# - "{{ test }}"
|
|
|
|
# - "{{ test2 }}"
|
2016-05-11 00:29:27 +08:00
|
|
|
|
2017-12-12 18:25:26 +08:00
|
|
|
# Generate a keyring using ceph-authtool CLI or python.
|
|
|
|
# Eg:
|
|
|
|
# $ ceph-authtool --gen-print-key
|
2017-12-12 18:28:36 +08:00
|
|
|
# or
|
2019-02-01 21:32:14 +08:00
|
|
|
# $ python2 -c "import os ; import struct ; import time; import base64 ; key = os.urandom(16) ; header = struct.pack('<hiih',1,int(time.time()),0,len(key)) ; print(base64.b64encode(header + key))"
|
2018-04-04 22:22:36 +08:00
|
|
|
#
|
|
|
|
# To use a particular secret, you have to add 'key' to the dict below, so something like:
|
|
|
|
# - { name: client.test, key: "AQAin8tUMICVFBAALRHNrV0Z4MXupRw4v9JQ6Q==" ...
|
2018-06-25 21:12:56 +08:00
|
|
|
|
2016-05-11 00:29:27 +08:00
|
|
|
#keys:
|
2019-07-15 15:57:06 +08:00
|
|
|
# - { name: client.test, caps: { mon: "allow r", osd: "allow class-read object_prefix rbd_children, allow rwx pool=test, osd blacklist" }, mode: "{{ ceph_keyring_permissions }}" }
|
|
|
|
# - { name: client.test2, caps: { mon: "allow r", osd: "allow class-read object_prefix rbd_children, allow rwx pool=test2, osd blacklist" }, mode: "{{ ceph_keyring_permissions }}" }
|
2016-05-11 00:29:27 +08:00
|
|
|
|
2019-05-20 21:58:10 +08:00
|
|
|
#ceph_nfs_ceph_user: { name: client.rgw.nfs0, key: 'SECRET==', caps: { mon: "allow rw", osd: "allow rwx" }, mode: "{{ ceph_keyring_permissions }}" }
|