trigger to process osdpl resource
base URL for docker images
base URL for repo with helm charts & other binaries
version of OpenStack to deploy
Preset of features to deploy
timeout and sizing parameters
domain name used for public endpoints
internal k8s domain name
Default storage class with local volumes, used by services with built in clustering mechanism like mariadb, etcd, redis.
Default storage class with persistence, for example ceph. Used by services that require persistence on filesystem level like backups for mariadb.
settings passed to every helm chart
list of helm chart repositories
symbolic name to reference this repo
helm charts repo url
JSON of values passed to all charts
version of charts to install for infra components
JSON of values passed to all infra charts
version of charts to install for openstack components
JSON of values passed to all openstack charts
All property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.*::.* All property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Volume group used by lvm backend. Default to cinder-vol
Additional Properties of any type are allowed.
Type: objectAdditional Properties of any type are allowed.
Type: objectPhysical interface used for live migration.
Backend for nova images can be ceph, local or lvm
Enable ephemeral disk encryption, only available with lvm backend.
Cipher-mode string to be used.
Encryption key length in bits.
Volume group used when images backend is lvm. Default to nova-vol
Physical interface used for tunnel traffic
Additional Properties of any type are allowed.
Type: objectTrigger to enable sriov on the node.
Additional Properties of any type are allowed.
Type: objectThe name of sriov NIC
The number of VF to activate
The pre init hooks
Each additional property must conform to the following schema
Type: objectThe init hook for specific NIC.
The name of neutron physnet for SRIOV NIC.
The NIC MTU
Additional Properties of any type are allowed.
Type: objectTrigger to enable dpdk on the node.
The dpdk driver to use for NICs
The name of dpdk bridge
IP address to assign to the bridge.
The name of ovs port created for corresponding NIC
The PCI id of NIC
The name of bridge to plug NIC
The name of dpdk bond.
The name of bridge to plug bond.
Bond openvswitch options, for example bond_mode=active-backup
The name of ovs port created for corresponding NIC
The PCI id of NIC
The page size to use, default 2Mi
The amount of hugepages, default 1Gi
Enable BGPVPN plugin/service
All property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectAll property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectAll property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectAll property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectAll property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectAll property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectAll property whose name matches the following regular expression must respect the following conditions
Property name regular expression:.* Additional Properties of any type are allowed.
Type: objectValues of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Values of policies to override.
Set of backeds are going to be used by glance as multi backends.
Section to configure cinder backends.
Section to configure rbd (Ceph) backends
Enforce signature validation for images on upload. Upload of images without signature
metadata is rejected. When image signature is not valid compute service will not allow
to start instance and block storage service will not allow to create volumes.
Enable certificate validation when verifying signatures.
Enable periodic cleanup of database for Barbican.
Cron schedule for periodic cleanup.
Number of days to keep deleted entries. When set to 0 all entries from shadow tables
are deleted.
Enable periodic cleanup of database for Masakari.
Cron schedule for periodic cleanup.
Number of days to keep deleted entries. When set to 0 all entries from shadow tables
are deleted.
The batch size for each iteration.
Enable periodic cleanup of database for Nova.
Cron schedule for periodic cleanup.
Number of days to keep deleted entries. When set to 0 all entries from shadow tables
are deleted.
The batch size for each iteration.
Enable periodic cleanup of database for Cinder.
Cron schedule for periodic cleanup.
Number of days to keep deleted entries. When set to 0 all entries from shadow tables
are deleted.
Enable periodic cleanup of database for Glance.
Cron schedule for periodic cleanup.
Number of days to keep deleted entries. When set to 0 all entries from shadow tables
are deleted.
The batch size for each iteration.
Enable periodic cleanup of database for Heat.
Cron schedule for periodic cleanup.
Number of days to keep deleted entries. When set to 0 all entries from shadow tables
are deleted.
Number of stacks to delete at a time (per transaction).
Enable periodic cleanup of expired alarm history data for Aodh
Cron schedule for periodic cleanup
Number of days that alarm histories are kept in the database for (<= 0 means forever)
Indicates whether cron job will launch backup jobs. When set to true suspend flag in cron job will be switched to false.
Unix style cron expression indicates how often to run backup cron job. Default is '0 1 * * *' - every day at 01:00.
Type of backup. Possible values: incremental or full. incremental: If newest full backup is older then fullbackupcycle seconds, perform full backup, else perform incremental backup to the newest full. full: perform always only full backup. Default is incremental.
How many full backups to keep.
Number of seconds that defines a period between 2 full backups. During this period incremental backups will be performed. The parameter is taken into account only if backuptype is set to 'incremental', otherwise it is ignored. For example with fullbackup_cycle set to 604800 seconds full backup will be taken every week and if cron is set to 0 0 * * *, incremental backup will be performed on daily basis.
Which telemetry mode is going to be used for telemetry.
CA certificate
API server certificate
API server private key
Indicates if simple_crypto backend is enabled
Specifies the app role ID
Specifies the secret ID created for the app role
URL of the Vault server
Vault Namespace to use for all requests to Vault. This is available only in Vault Enterprise and is supported only since OpenStack Victoria release.
Mountpoint of KV store in Vault to use.
Specifies whether to use SSL
The path to CA cert file
List of enabled openstack and auxiliary services
Physical interface used for live migration.
Backend for nova images can be ceph or local
Enable ephemeral disk encryption, only available with lvm backend.
Cipher-mode string to be used.
Encryption key length in bits.
Volume group used when images backend is lvm. Default to nova-vol
The default theme name.
Custom theme name
Link to archive with theme
The sha256 checksumm of arhive with theme
Theme description showed to user
OpenStack region name
Project name for admin of OpenStack deployment
Domain name for admin of OpenStack deployment
Project domain name for admin of OpenStack deployment
Domain ID for admin of OpenStack deployment
Trigger to enable keycloak integration
Url for keycloak
Client identifier used in calls to the statically configured OpenID Connect Provider
Override for URL where OpenID Connect Provider metadata can be found
The redirect_uri for this OpenID Connect client
Require a valid SSL server certificate when communicating with the OP
Require a valid SSL server certificate when communicating with the Authorization Server
Define one or more regular expressions that specify URLs (or domains) allowed for post logout and other redirects such as the "return_to" value on refresh token requests
Used to request specific scopes
Enable domain specific keystone configuration
The list of domain specific configuration options.
Enable domain specific keystone configuration
Domain name
Domain specific configuration options.
Physical interface used for tunnel traffic
The list with the IP addresses of DNS servers reachable from Virtual Networks
Neutron backend
Enable distributed routers
Ordered list of network_types to allocate as tenant networks
Neutron physnet name
Physical interface mapped with physnet
OVS bridge name to map with physnet.
Network types allowed on particular physnet
Range of vlans allowed on physnet
enable floating network creation
The name of floating network
name of physical network to associate
The name of floating subnet
IP address range ie: 1.2.3.0/24
start IP address ie: 1.2.3.100
end IP address ie: 1.2.3.200
IP address of subnet gateway
The name of public router
Switch name
Netmiko device type
IP address of switch
Credential username
Credential password
SSH private key for switch.
Enable secret
RAW config for device.
Enable BGPVPN plugin/service
IP address or interface used for BGP peerings
IP address or interface used to send VPN traffic
IP addresses of BGP peers, when not specified will be picked from secret
Autonomous System number
UDP port toward which send VXLAN traffic
The object describes RouteReflector settings
Enable BGPVPN route reflector on controller nodes
BGP sessions allowed from neighbors in this subnet
Enable IPsec authentication and encryption of tenant traffic
Array of components need to be set up with dedicated rabbitmq server for migration
name of physical interface to bind PXE services
name of baremetal provisioning/cleaning network
name of baremetal network
name of physical network to associate
type of provisioning/cleaning baremetal network
the vlan number of cleaning network in case of VLAN segmentation is used
the MTU for cleaning network
baremetal subnet name
the cidr of baremetal network
the start range of allocation pool for baremetal network
the end range of allocation pool for baremetal network
the gateway for baremetal network
base URL for ironic agent images
IP address range ie: 1.2.3.0/24
start IP address ie: 1.2.3.100
end IP address ie: 1.2.3.200
enable StackLight operations support system
The option is no longer handled, the username is autogenerated.
The option is no longer handled, the password is autogenerated.
Service logging level
Service logging level
Service logging level
Service logging level
Service logging level
Service logging level
Service logging level
Service logging level
Service logging level