Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 342FC200C79 for ; Fri, 19 May 2017 16:17:31 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 32A5E160BD1; Fri, 19 May 2017 14:17:31 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 51377160BBE for ; Fri, 19 May 2017 16:17:30 +0200 (CEST) Received: (qmail 18327 invoked by uid 500); 19 May 2017 14:17:29 -0000 Mailing-List: contact dev-help@brooklyn.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@brooklyn.apache.org Delivered-To: mailing list dev@brooklyn.apache.org Received: (qmail 18314 invoked by uid 99); 19 May 2017 14:17:28 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd4-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 19 May 2017 14:17:28 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd4-us-west.apache.org (ASF Mail Server at spamd4-us-west.apache.org) with ESMTP id 1D052C05B0 for ; Fri, 19 May 2017 14:17:28 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd4-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 1.681 X-Spam-Level: * X-Spam-Status: No, score=1.681 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=2, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, WEIRD_PORT=0.001] autolearn=disabled Authentication-Results: spamd4-us-west.apache.org (amavisd-new); dkim=pass (1024-bit key) header.d=cloudsoftcorp.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd4-us-west.apache.org [10.40.0.11]) (amavisd-new, port 10024) with ESMTP id XFbYUmAkxVRl for ; Fri, 19 May 2017 14:17:26 +0000 (UTC) Received: from mail-it0-f54.google.com (mail-it0-f54.google.com [209.85.214.54]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id C659B5FB32 for ; Fri, 19 May 2017 14:17:25 +0000 (UTC) Received: by mail-it0-f54.google.com with SMTP id e65so47247192ita.1 for ; Fri, 19 May 2017 07:17:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudsoftcorp.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=EEgzlmKz/skUXWfkTLmGN5Flgywu5qacDu4SPMxQh4Y=; b=URfinImS77ZATBgKMonubSNX7FjNa2Y461Y90Ir3nXxGzDPtlfXTHO2gQzyXvoeHyo 8mPK918P2UdXPZCIzpSPuOJDQgALMzhSXlbwWaoKzsqHHmAJu7jXdUAwrimZ1CuO/sZR f5STV3mxCQFP6V+4vGCk2HUNdNIcSO4dMAxcw= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=EEgzlmKz/skUXWfkTLmGN5Flgywu5qacDu4SPMxQh4Y=; b=A6fS275AiONh9KzTchalSw09G/BxCV5tyJLxtwMStvsglR9NjmeoUMSJn/XZOSVOYo iA571JxAFkv0hmtTSwYgBa06PJ+2T0RL9LGVXAu571IJ+ff9whIoWfZYFQ4do0sj1xTI 0mEMgLtJsKLJQJanr0txbn7fhIseGBaOblbWinT92nPGcNW/fdlpQ/X99PicvQRHAQ5b JDAqCKo6VE9cYrKsT7VjlXKHHT06JzX0s9b2BIzW1K48aEGLM9Pgi50aoYVkoiJjH2MX 7whsI4m3lcd851ZpiYMub1O3zjRqlg0Cf3Wn01tgitcGIOhSivaByCTszzL+X6HTJIVJ qIoA== X-Gm-Message-State: AODbwcACLXia6NzeKN+OVhvKoh+Y96YqVve++cRUODd1/lVC7i2CJsui MRbTm/FQ34xd2viawWSRjdc8IYPXctDOP2yNCMF+JjQl+eCvMLuSYiL6SLo/7GyIG1BTOYpYJZR V4FbKmMmUz+t4b02c+w== X-Received: by 10.36.48.5 with SMTP id q5mr29185610itq.15.1495203444836; Fri, 19 May 2017 07:17:24 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Andrew Kennedy Date: Fri, 19 May 2017 14:17:14 +0000 Message-ID: Subject: Re: Help with Openstack To: dev@brooklyn.apache.org Content-Type: multipart/alternative; boundary="001a1140ab5e326276054fe12e79" X-Legal-Virus-Advice: Whilst all reasonable care has been taken to avoid the transmission of viruses, it is the responsibility of the recipient to ensure that the onward transmission, opening or use of this message and any attachments will not adversely affect its systems or data. No responsibility is accepted by Cloudsoft Corporation Limited in this regard and the recipient should carry out such virus and other checks as it considers appropriate. X-Legal-Confidentiality: This e-mail message is confidential and for use by the addressee only. If the message is received by anyone other than the addressee, please return the message to the sender by replying to it and then delete the message from your computer. Internet e-mails are not necessarily secure. Cloudsoft Corporation Limited does not accept responsibility for changes made to this message after it was sent. X-Legal-Company-Info: Cloudsoft Corporation Limited. Registered in Scotland. Number: SC349230. Registered Office: 13 Dryden Place, Edinburgh, EH9 1RP. archived-at: Fri, 19 May 2017 14:17:31 -0000 --001a1140ab5e326276054fe12e79 Content-Type: text/plain; charset="UTF-8" Hi Graham. You could certainly create a BYON location that referenced the instance created by Ansible, as described at http://brooklyn.apache.org/v/latest/locations/index.html#byon you simple export the host IP address and required credentials into a BOM file that describes the new location, and deploy it using the `br deploy` CLI command, or via the REST API and `curl` perhaps. You could also create an AnsibleEntity, which would then provision a VM somewhere and run the `ansible-playbook` commands required on it, but this may be a chicken-and-egg type of situation for you - it is more designed for the use case where we provision a VM, install ansible on it and then use a playbook to install something else on that machine. We are currently developing a policy that can create locations from entities, which sounds like it would also be useful, I will update this thread with the details shortly, when the PR is available. Andrew. On Fri, 19 May 2017 at 14:17 Graham Ashby wrote: > Well, after much talk over here, our OpenStack servers only support V3 > authentication. We're using the Mitaka release. Older instances that > support the v2.0 authentication API are all EOL. > > Which leads me to plan B. I have an Ansible playbook that provisions a > new instance. Is there some way to hook that (using an AnsibleEntry) into > a location? I imagine I'd need a way to somehow export the host name and > external IP address into something that the Location could use. And I'd > need a Location that could call an Entity to get whatever it needs. > > Is this possible? > > Thanks > Graham > > > > From: Geoff Macartney > To: Brooklyn dev > Date: 05/03/2017 10:22 AM > Subject: Re: Help with Openstack > > > > hi Graham > > as far as I understand you'll need to stick to the v2 API to use Apache > Brooklyn, as that is what is currently supported by the underlying jclouds > library. > > As it happens this was a topic of conversation this very morning on the > jclouds mailing list [1], so there may be some progress on this in the > near > but not immediate future. > > [1] > > https://lists.apache.org/thread.html/b1162446800011a8343e67a7cda55a5033754881529c74fafa47109b@%3Cdev.jclouds.apache.org%3E > > > regards > Geoff > > > > On Wed, 3 May 2017 at 14:16 Graham Ashby wrote: > > > I need some help with deploying to openstack... > > > > For some reason, our openstack-nova identity endpoint has to be the v3 > > version: > > endpoint: https://canhdc-controller.canlab.ibm.com:5000/v3 > > > > When I try to deploy, I get an exception: > > org.jclouds.http.HttpResponseException: command: POST > > https://canhdc-controller.canlab.ibm.com:5000/v3/tokens HTTP/1.1 failed > > with response: HTTP/1.1 404 Not Found; content: [{"error": {"message": > > "The resource could not be found.", "code": 404, "title": "Not Found"}} > > > > Do I need to somehow tell jclouds to use the v3 api? Or am I stuck > > needing to use the v2.0 api? > > > > Also, our https endpoint is self signed, so I need to set OS_CACERT to > > make the openstack CLI work. > > > > For reference, here's the appropriate bit of my yaml: > > > > jclouds:openstack-nova: > > endpoint: https://canhdc-controller.canlab.ibm.com:5000/v3 > > identity: "fa4c7f59767d487682a7798550b946bd:graham.ashby@ca.ibm.com" > > credential: ******** > > displayName: hdc-canada > > > > imageId: Lobby/e3b40a4f-4e82-41b3-857c-68799c4a9009 > > hardwareId: Lobby/m1.small > > keyPair: openstack-gsa-gen > > keyPairName: openstack-gsa-gen > > loginUser: cloudusr > > loginUser.privateKeyFile: /home/cloudusr/.ssh/openstack-gsa-gen.pem > > > > jclouds.openstack-nova.cacert: /opt/brooklyn/ca-1/hdc.pem > > jclouds.openstack-nova.openIptables: true > > jclouds.openstack-nova.selinux.disabled: true > > jclouds.openstack-nova.auto-create-floating-ips: true > > jclouds.openstack-nova.auto-generate-keypairs: false > > > > > > > > > -- Andrew Kennedy ; Founder clocker.io project ; @grkvlt ; Cloudsoft --001a1140ab5e326276054fe12e79--