Module openstack

  • License: Apache 2.0

  • Version: 4.0.7

Typedefs

typedef openstack::admin_state
  • Base type string

  • Type constraint ((self == 'up') or (self == 'down'))

typedef openstack::container_format
  • Base type string

  • Type constraint (self in ['ami', 'ari', 'aki', 'bare', 'ovf', 'ova', 'docker'])

typedef openstack::direction
  • Base type string

  • Type constraint ((self == 'ingress') or (self == 'egress'))

typedef openstack::disk_format
  • Base type string

  • Type constraint (self in ['ami', 'ari', 'aki', 'vhd', 'vhdx', 'vmdk', 'raw', 'qcow2', 'vdi', 'iso', 'ploop'])

typedef openstack::mac_addr
  • Base type string

  • Type constraint std::validate_type('pydantic.constr',self,{'regex': '^([0-9a-fA-F]{2})(:[0-9a-fA-F]{2}){5}|$', 'strict': True})

typedef openstack::protocol
  • Base type string

  • Type constraint (self in ['tcp', 'udp', 'icmp', 'sctp', 'all'])

typedef openstack::visibility
  • Base type string

  • Type constraint (self in ['public', 'private'])

Entities

entity openstack::AddressPair

Parents: std::Entity

An address pair that is added to a host port

attribute std::ipv4_network address

The address range that is allowed on this port (network interface)

attribute openstack::mac_addr? mac=null

The following implements statements select implementations for this entity:

entity openstack::EndPoint

Parents: openstack::OpenStackResource

attribute string region
attribute string internal_url
attribute string public_url
attribute string admin_url
attribute string service_id
relation openstack::Service service [1]

other end: openstack::Service.endpoint [0:1]

relation openstack::Provider provider [1]

other end: openstack::Provider.endpoints [0:*]

The following implementations are defined for this entity:

The following implements statements select implementations for this entity:

entity openstack::Flavor

Parents: openstack::OpenStackResource

A machine flavor for OpenStack VMs

attribute string name

Descriptive name of the flavor. While OpenStack does not consider the name unique, this module does.

attribute int ram

Memory in MB for the flavor

attribute int vcpus

Number of VCPUs for the flavor

attribute int disk

Size of local disk in GB

attribute string? flavor_id=null

OpenStack unique ID. You can use the reserved value “auto” to have Nova generate a UUID for the flavor in cases where you cannot simply pass null.

attribute int ephemeral=0

Ephemeral disk size in GB

attribute int swap=0

Swap space in MB

attribute float rxtx_factor=1.0

RX/TX factor

attribute bool is_public=true

Whether the flavor is publicly visible

attribute dict extra_specs={}

Set extra specs on a flavor. See https://docs.openstack.org/nova/rocky/admin/flavors.html

relation openstack::Provider provider [1]

other end: openstack::Provider.flavors [0:*]

The following implements statements select implementations for this entity:

entity openstack::FloatingIP

Parents: openstack::OpenStackResource

attribute string name
attribute std::ipv4_address address
attribute bool force_ip=false
relation openstack::Project project [1]

other end: openstack::Project.floating_ips [0:*]

relation openstack::Provider provider [1]

other end: openstack::Provider.floating_ips [0:*]

relation openstack::Network external_network [1]

other end: openstack::Network.floating_ips [0:*]

relation openstack::HostPort port [1]

other end: openstack::HostPort.floating_ips [0:*]

The following implementations are defined for this entity:

The following implements statements select implementations for this entity:

entity openstack::GroupRule

Parents: openstack::SecurityRule

relation openstack::SecurityGroup remote_group [1]

other end: openstack::SecurityGroup.remote_group_rules [0:*]

The following implements statements select implementations for this entity:

entity openstack::Host

Parents: std::Host, openstack::VMAttributes

attribute bool purged=false

Set whether this Host should exist or not.

attribute bool purge_on_delete=false

Purge this Host when it is deleted from the configuration model.

relation openstack::VirtualMachine vm [1]

other end: openstack::VirtualMachine.host [0:1]

relation openstack::Subnet subnet [0:1]
relation ssh::Key key_pair [1]
relation openstack::Project project [1]
relation openstack::Provider provider [1]
relation openstack::SecurityGroup security_groups [0:*]

The following implementations are defined for this entity:

The following implements statements select implementations for this entity:

entity openstack::HostPort

Parents: openstack::Port

A port attached to a VM

attribute string name

The name of the host port.

attribute bool portsecurity=true

Enable or disable port security (security groups and spoofing filters)

attribute bool dhcp=true

Enable dhcp for this port or not for this port

attribute int port_index=0

The index of the port. This determines the order of the interfaces on the virtual machine. 0 means no specific order.

attribute int retries=20

A hostport can only be attached to a VM when it is in an active state. The handler will skip this port when the VM is not ready. To speed up deployments, the handler can retry this number of times before skipping the resource.

attribute int wait=5

The number of seconds to wait between retries.

relation openstack::Subnet subnet [1]

other end: openstack::Subnet.host_ports [0:*]

relation openstack::VirtualMachine vm [1]

other end: openstack::VirtualMachine.ports [0:*]

relation openstack::FloatingIP floating_ips [0:*]

other end: openstack::FloatingIP.port [1]

The following implements statements select implementations for this entity:

entity openstack::IPrule

Parents: openstack::SecurityRule

attribute std::ipv4_network remote_prefix

The following implements statements select implementations for this entity:

entity openstack::Image

Parents: openstack::OpenStackResource

A machine image for OpenStack VMs

attribute string name

Name for the flavor. Inmanta treats image names as unique per provider.

attribute string uri

a link to the download location of the image.

attribute openstack::container_format? container_format='bare'

Must be one of [null, ami, ari, aki, bare, ovf, ova, docker].

attribute openstack::disk_format? disk_format='qcow2'

Must be one of [null, ami, ari, aki, vhd, vhdx, vmdk, raw, qcow2, vdi, iso, ploop].

attribute std::uuid? image_id=null

uuid to identify the image. Auto set by OpenStack if not set.

attribute openstack::visibility visibility='public'

Whether the image is visible across all projects. Can either be public or private. Shared and community are currently not implemented.

attribute bool protected=false

Whether the image can be deleted or not. Inmanta will never delete protected images.

attribute dict metadata={}

Various metadata passed as a dict.

attribute bool skip_on_deploy=true

When set, inmanta will not wait for the image to be deployed and mark it as skipped.

attribute bool purge_on_delete=false

When set to true, the image will be removed when no longer present in the model.

relation openstack::Provider provider [1]

other end: openstack::Provider.images [0:*]

The following implements statements select implementations for this entity:

entity openstack::Network

Parents: openstack::OpenStackResource

A neutron network owned by a project

attribute string name
attribute bool external=false
attribute string physical_network=''
attribute string network_type=''
attribute int segmentation_id=0
attribute bool shared=false
attribute bool? vlan_transparent=null
relation openstack::Provider provider [1]

other end: openstack::Provider.networks [0:*]

relation openstack::Project project [1]

other end: openstack::Project.networks [0:*]

relation openstack::Subnet subnets [0:*]

other end: openstack::Subnet.network [1]

relation openstack::Router routers [0:*]

other end: openstack::Router.ext_gateway [0:1]

relation openstack::FloatingIP floating_ips [0:*]

other end: openstack::FloatingIP.external_network [1]

The following implements statements select implementations for this entity:

entity openstack::OpenStackResource

Parents: std::PurgeableResource, std::ManagedResource

Base class for all openstack resources

attribute bool send_event=true

Forced to default true. This means that all resources that subscribe to this resource will run their process events / reload.

The following implementations are defined for this entity:

entity openstack::Port

Parents: openstack::OpenStackResource

A port on a network

attribute std::ipv4_address address
relation openstack::Provider provider [1]

other end: openstack::Provider.ports [0:*]

relation openstack::Project project [1]

other end: openstack::Project.ports [0:*]

relation openstack::AddressPair allowed_address_pairs [0:*]
entity openstack::Project

Parents: openstack::OpenStackResource

A project / tenant in openstack

attribute string name
attribute bool enabled=true
attribute string description=''
relation openstack::Provider provider [1]

other end: openstack::Provider.projects [0:*]

relation openstack::Role roles [0:*]

Each user can have multiple roles

other end: openstack::Role.project [1]

relation openstack::Network networks [0:*]

other end: openstack::Network.project [1]

relation openstack::Port ports [0:*]

other end: openstack::Port.project [1]

relation openstack::Subnet subnets [0:*]

other end: openstack::Subnet.project [1]

relation openstack::Router routers [0:*]

other end: openstack::Router.project [1]

relation openstack::SecurityGroup security_groups [0:*]

other end: openstack::SecurityGroup.project [1]

relation openstack::FloatingIP floating_ips [0:*]

other end: openstack::FloatingIP.project [1]

The following implements statements select implementations for this entity:

entity openstack::Provider

Parents: std::Entity

The configuration for accessing an Openstack based IaaS

attribute string name
attribute string connection_url
attribute bool verify_cert=true

Indicates whether the SSL/TLS certificate should be verified.

attribute string username
attribute string password
attribute string tenant
attribute string token=''
attribute string admin_url=''
attribute bool auto_agent=true
relation openstack::Project projects [0:*]

other end: openstack::Project.provider [1]

relation openstack::User users [0:*]

other end: openstack::User.provider [1]

relation openstack::Role roles [0:*]

other end: openstack::Role.provider [1]

relation openstack::Service services [0:*]

other end: openstack::Service.provider [1]

relation openstack::EndPoint endpoints [0:*]

other end: openstack::EndPoint.provider [1]

relation openstack::Network networks [0:*]

other end: openstack::Network.provider [1]

relation openstack::Port ports [0:*]

other end: openstack::Port.provider [1]

relation openstack::Subnet subnets [0:*]

other end: openstack::Subnet.provider [1]

relation openstack::Router routers [0:*]

other end: openstack::Router.provider [1]

relation openstack::SecurityGroup security_groups [0:*]

other end: openstack::SecurityGroup.provider [1]

relation openstack::FloatingIP floating_ips [0:*]

other end: openstack::FloatingIP.provider [1]

relation openstack::VirtualMachine virtual_machines [0:*]

other end: openstack::VirtualMachine.provider [1]

relation openstack::Flavor flavors [0:*]

other end: openstack::Flavor.provider [1]

relation openstack::Image images [0:*]

other end: openstack::Image.provider [1]

The following implementations are defined for this entity:

The following implements statements select implementations for this entity:

entity openstack::Role

Parents: openstack::OpenStackResource

A role in openstack. A role defines membership of a user in a project. This entity is used to connect users to projects. With this, it implicitly defines the role.

attribute string role_id
attribute string role
relation openstack::Provider provider [1]

other end: openstack::Provider.roles [0:*]

relation openstack::Project project [1]

Each user can have multiple roles

other end: openstack::Project.roles [0:*]

relation openstack::User user [1]

other end: openstack::User.roles [0:*]

The following implementations are defined for this entity:

The following implements statements select implementations for this entity:

entity openstack::Route

Parents: std::Entity

A routing rule to add

attribute std::ipv4_network destination
attribute std::ipv4_address nexthop
relation openstack::Router router [0:1]

other end: openstack::Router.routes [0:*]

The following implements statements select implementations for this entity:

entity openstack::Router

Parents: openstack::OpenStackResource

A router

attribute openstack::admin_state admin_state='up'
attribute string name
attribute bool ha=false
attribute bool distributed=false
relation openstack::Provider provider [1]

other end: openstack::Provider.routers [0:*]

relation openstack::Project project [1]

other end: openstack::Project.routers [0:*]

relation openstack::RouterPort ports [0:*]

other end: openstack::RouterPort.router [1]

relation openstack::Subnet subnets [0:*]

other end: openstack::Subnet.router [0:1]

relation openstack::Network ext_gateway [0:1]

other end: openstack::Network.routers [0:*]

relation openstack::Route routes [0:*]

other end: openstack::Route.router [0:1]

The following implements statements select implementations for this entity:

entity openstack::RouterPort

Parents: openstack::Port

A port attached to a router

attribute string name
relation openstack::Subnet subnet [1]

other end: openstack::Subnet.routers [0:*]

relation openstack::Router router [1]

other end: openstack::Router.ports [0:*]

The following implements statements select implementations for this entity:

entity openstack::SecurityGroup

Parents: openstack::OpenStackResource

attribute string description=''
attribute string name
attribute bool manage_all=true
attribute int retries=10

A security group can only be deleted when it is no longer in use. The API confirms the delete of a virtual machine for example, but it might still be in progress. This results in a failure to delete the security group. To speed up deployments, the handler can retry this number of times before skipping the resource.

attribute int wait=5

The number of seconds to wait between retries.

relation openstack::Provider provider [1]

other end: openstack::Provider.security_groups [0:*]

relation openstack::Project project [1]

other end: openstack::Project.security_groups [0:*]

relation openstack::VirtualMachine virtual_machines [0:*]

other end: openstack::VirtualMachine.security_groups [0:*]

relation openstack::GroupRule remote_group_rules [0:*]

other end: openstack::GroupRule.remote_group [1]

relation openstack::SecurityRule rules [0:*]

other end: openstack::SecurityRule.group [1]

The following implementations are defined for this entity:

The following implements statements select implementations for this entity:

entity openstack::SecurityRule

Parents: std::Entity

A filter rule in the a security group

attribute openstack::protocol ip_protocol

The type of ip protocol to allow. Currently this support tcp/udp/icmp/sctp or all

attribute std::port port_min=0
attribute std::port port_max=0
attribute std::port port=0
attribute openstack::direction direction
relation openstack::SecurityGroup group [1]

other end: openstack::SecurityGroup.rules [0:*]

entity openstack::Service

Parents: openstack::OpenStackResource

attribute string name
attribute string type
attribute string description
relation openstack::Provider provider [1]

other end: openstack::Provider.services [0:*]

relation openstack::EndPoint endpoint [0:1]

other end: openstack::EndPoint.service [1]

The following implements statements select implementations for this entity:

entity openstack::Subnet

Parents: openstack::OpenStackResource

A neutron network subnet

attribute std::ipv4_network network_address
attribute bool dhcp
attribute string name
attribute string allocation_start=''
attribute string allocation_end=''
attribute std::ipv4_address[] dns_servers=List()
attribute std::ipv4_address? gateway_ip=null

The gateway IP to set on this subnet. If set to null, the first IP in the subnet will be used as the gateway_ip. Example: 192.168.0.1 will be used for the network 192.168.0.0/24.

attribute bool disable_gateway_ip=false

When set to true, no gateway IP will be set for the subnet. As such, the gateway_ip parameter will be ignored.

relation openstack::RouterPort routers [0:*]

other end: openstack::RouterPort.subnet [1]

relation openstack::HostPort host_ports [0:*]

other end: openstack::HostPort.subnet [1]

relation openstack::Provider provider [1]

other end: openstack::Provider.subnets [0:*]

relation openstack::Project project [1]

other end: openstack::Project.subnets [0:*]

relation openstack::Network network [1]

other end: openstack::Network.subnets [0:*]

relation openstack::Router router [0:1]

other end: openstack::Router.subnets [0:*]

The following implements statements select implementations for this entity:

entity openstack::User

Parents: openstack::OpenStackResource

A user in openstack. A handler for this entity type is loaded by agents.

attribute string name

The name of the user. The name of the user has to be unique on a specific IaaS. The handler will use this name to query for the exact user and its ID.

attribute string email

The email address of the user to use.

attribute bool enabled=true

Enable or disable this user

attribute string password=''

The password for this user. The handler will always reset back to this password. The handler will ignore this attribute when an empty string is set.

relation openstack::Provider provider [1]

other end: openstack::Provider.users [0:*]

relation openstack::Role roles [0:*]

other end: openstack::Role.user [1]

The following implements statements select implementations for this entity:

entity openstack::VMAttributes

Parents: std::Entity

Entity with vm attributes that can be used for a virtual machine and a host

attribute string flavor

The name of the flavor

attribute string image

The uuid of the image

attribute string user_data

The user_data script to pass

attribute dict metadata={}

A dict of metadata items

attribute dict personality={}

A dict of files (personality)

attribute bool config_drive=false

Attach a configuration drive to the vm

entity openstack::VirtualMachine

Parents: openstack::OpenStackResource, openstack::VMAttributes

attribute string name
relation openstack::HostPort ports [0:*]

other end: openstack::HostPort.vm [1]

relation openstack::SecurityGroup security_groups [0:*]

other end: openstack::SecurityGroup.virtual_machines [0:*]

relation openstack::HostPort eth0_port [1]
relation ssh::Key key_pair [1]
relation openstack::Project project [1]
relation openstack::Provider provider [1]

other end: openstack::Provider.virtual_machines [0:*]

relation openstack::Host host [0:1]

other end: openstack::Host.vm [1]

The following implements statements select implementations for this entity:

Implementations

implementation openstack::agentConfig
implementation openstack::endPoint
implementation openstack::eth0Port
implementation openstack::fipAddr
implementation openstack::fipName
implementation openstack::openstackVM
implementation openstack::providerRequire
implementation openstack::roleImpl
implementation openstack::sg

Plugins

openstack.find_flavor(provider: 'openstack::Provider', vcpus: 'number', ram: 'number', pinned: 'bool' = False) 'string'

Find the flavor that matches the closest to the resources requested.

Parameters:
  • vcpus – The number of virtual cpus in the flavor

  • ram – The amount of ram in gigabyte

  • pinned – Wether the CPUs need to be pinned (#vcpu == #pcpu)

openstack.find_image(provider: 'openstack::Provider', os: 'std::OS', name: 'string' = None) 'string'

Search for an image that matches the given operating system. This plugin uses the os_distro and os_version tags of an image and the name and version attributes of the OS parameter.

If multiple images match, the most recent image is returned.

Parameters:
  • provider – The provider to query for an image

  • os – The operating system and version (using os_distro and os_version metadata)

  • name – An optional string that the image name should contain

Resources

class openstack.EndPoint

An endpoint for a service

class openstack.Flavor

A flavor is an available hardware configuration for a server.

class openstack.FloatingIP

A floating ip

class openstack.HostPort

A port in a router

class openstack.Image
class openstack.Network

This class represents a network in neutron

class openstack.Project

This class represents a project in keystone

class openstack.Role

A role that adds a user to a project

class openstack.Router

This class represent a router in neutron

class openstack.RouterPort

A port in a router

class openstack.SecurityGroup

A security group in an OpenStack tenant

class openstack.Service

A service for which endpoints can be registered

class openstack.Subnet

This class represent a subnet in neutron

class openstack.User

A user in keystone

class openstack.VirtualMachine

A virtual machine managed by a hypervisor or IaaS

Handlers

class openstack.FlavorHandler
class openstack.ImageHandler
class openstack.VirtualMachineHandler
class openstack.NetworkHandler
class openstack.RouterHandler
class openstack.SubnetHandler
class openstack.RouterPortHandler
class openstack.HostPortHandler
class openstack.SecurityGroupHandler
class openstack.FloatingIPHandler
class openstack.ProjectHandler
class openstack.UserHandler
class openstack.RoleHandler

creates roles and user, project, role assocations

class openstack.ServiceHandler
class openstack.EndpointHandler