--- # You can override vars by using host or group vars ########### # GENERAL # ########### fetch_directory: fetch/ mon_group_name: mons # ACTIVATE BOTH FSID AND MONITOR_SECRET VARIABLES FOR NON-VAGRANT DEPLOYMENT fsid: "{{ cluster_uuid.stdout }}" monitor_secret: "{{ monitor_keyring.stdout }}" cephx: true # CephFS pool_default_pg_num: 128 cephfs_data: cephfs_data cephfs_metadata: cephfs_metadata cephfs: cephfs # Secure your cluster # This will set the following flags on all the pools: # * nosizechange # * nopgchange # * nodelete secure_cluster: false secure_cluster_flags: - nopgchange - nodelete - nosizechange # Enable the Calamari-backed REST API on a Monitor calamari: false ############# # OPENSTACK # ############# openstack_config: false openstack_glance_pool: name: images pg_num: "{{ pool_default_pg_num }}" openstack_cinder_pool: name: volumes pg_num: "{{ pool_default_pg_num }}" openstack_nova_pool: name: vms pg_num: "{{ pool_default_pg_num }}" openstack_cinder_backup_pool: name: backups pg_num: "{{ pool_default_pg_num }}" openstack_pools: - "{{ openstack_glance_pool }}" - "{{ openstack_cinder_pool }}" - "{{ openstack_nova_pool }}" - "{{ openstack_cinder_backup_pool }}" openstack_keys: - { name: client.glance, value: "mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool={{ openstack_glance_pool.name }}'" } - { name: client.cinder, value: "mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool={{ openstack_cinder_pool.name }}, allow rwx pool={{ openstack_nova_pool.name }}, allow rx pool={{ openstack_glance_pool.name }}'" } - { name: client.cinder-backup, value: "mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool={{ openstack_cinder_backup_pool.name }}'" } ########## # DOCKER # ########## mon_containerized_deployment: false mon_containerized_deployment_with_kv: false # This is currently in ceph-common defaults because it is shared with ceph-nfs #mon_containerized_default_ceph_conf_with_kv: false ceph_mon_docker_interface: "{{ monitor_interface }}" ceph_mon_docker_subnet: "{{ public_network }}"# subnet of the ceph_mon_docker_interface ceph_mon_docker_username: ceph ceph_mon_docker_imagename: daemon ceph_mon_docker_image_tag: latest ceph_mon_docker_extra_env: -e CLUSTER={{ cluster }} -e FSID={{ fsid }} -e MON_NAME={{ ansible_hostname }} ceph_docker_on_openstack: false mon_docker_privileged: false mon_docker_net_host: true ceph_config_keys: [] # DON'T TOUCH ME