~brad-marshall/charms/trusty/openstack-dashboard/add-haproxy-nrpe-fix-servicegroups
» Revision
38
: templates/juno/local_settings.py
« back to all changes in this revision
Viewing changes to templates/juno/local_settings.py
- browse files at revision 38
- compare with another revision
- download diff
- download tarball
- view history from revision 38
- Committer: james.page at ubuntu
- Date: 2014-10-06 13:43:41 UTC
- mfrom: (37.1.1 openstack-dashboard)
- Revision ID: james.page@ubuntu.com-20141006134341-98ugj6a4uu6f7axj
[james-page,r=gnuoy] Update template for juno
- files added:
- templates/juno
added
removed
templates/juno/local_settings.py
1
import os
2
3
from django.utils.translation import ugettext_lazy as _
4
{% if use_syslog %}
5
from logging.handlers import SysLogHandler
6
{% endif %}
7
8
from openstack_dashboard import exceptions
9
10
DEBUG = {{ debug }}
11
TEMPLATE_DEBUG = DEBUG
12
13
# Required for Django 1.5.
14
# If horizon is running in production (DEBUG is False), set this
15
# with the list of host/domain names that the application can serve.
16
# For more information see:
17
# https://docs.djangoproject.com/en/dev/ref/settings/#allowed-hosts
18
#ALLOWED_HOSTS = ['horizon.example.com', ]
19
20
# Set SSL proxy settings:
21
# For Django 1.4+ pass this header from the proxy after terminating the SSL,
22
# and don't forget to strip it from the client's request.
23
# For more information see:
24
# https://docs.djangoproject.com/en/1.4/ref/settings/#secure-proxy-ssl-header
25
# SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTOCOL', 'https')
26
27
# If Horizon is being served through SSL, then uncomment the following two
28
# settings to better secure the cookies from security exploits
29
#CSRF_COOKIE_SECURE = True
30
#SESSION_COOKIE_SECURE = True
31
32
# Overrides for OpenStack API versions. Use this setting to force the
33
# OpenStack dashboard to use a specific API version for a given service API.
34
# NOTE: The version should be formatted as it appears in the URL for the
35
# service API. For example, The identity service APIs have inconsistent
36
# use of the decimal point, so valid options would be "2.0" or "3".
37
# OPENSTACK_API_VERSIONS = {
38
# "data_processing": 1.1,
39
# "identity": 3,
40
# "volume": 2
41
# }
42
43
# Set this to True if running on multi-domain model. When this is enabled, it
44
# will require user to enter the Domain name in addition to username for login.
45
# OPENSTACK_KEYSTONE_MULTIDOMAIN_SUPPORT = False
46
47
# Overrides the default domain used when running on single-domain model
48
# with Keystone V3. All entities will be created in the default domain.
49
# OPENSTACK_KEYSTONE_DEFAULT_DOMAIN = 'Default'
50
51
# Set Console type:
52
# valid options would be "AUTO"(default), "VNC", "SPICE", "RDP" or None
53
# Set to None explicitly if you want to deactivate the console.
54
# CONSOLE_TYPE = "AUTO"
55
56
# Default OpenStack Dashboard configuration.
57
HORIZON_CONFIG = {
58
'dashboards': ('project', 'admin', 'settings',),
59
'default_dashboard': 'project',
60
'user_home': 'openstack_dashboard.views.get_user_home',
61
'ajax_queue_limit': 10,
62
'auto_fade_alerts': {
63
'delay': 3000,
64
'fade_duration': 1500,
65
'types': ['alert-success', 'alert-info']
66
},
67
'help_url': "http://docs.openstack.org",
68
'exceptions': {'recoverable': exceptions.RECOVERABLE,
69
'not_found': exceptions.NOT_FOUND,
70
'unauthorized': exceptions.UNAUTHORIZED},
71
'angular_modules': [],
72
'js_files': [],
73
}
74
75
# Specify a regular expression to validate user passwords.
76
# HORIZON_CONFIG["password_validator"] = {
77
# "regex": '.*',
78
# "help_text": _("Your password does not meet the requirements.")
79
# }
80
81
# Disable simplified floating IP address management for deployments with
82
# multiple floating IP pools or complex network requirements.
83
# HORIZON_CONFIG["simple_ip_management"] = False
84
85
# Turn off browser autocompletion for forms including the login form and
86
# the database creation workflow if so desired.
87
# HORIZON_CONFIG["password_autocomplete"] = "off"
88
89
LOCAL_PATH = os.path.dirname(os.path.abspath(__file__))
90
91
# Set custom secret key:
92
# You can either set it to a specific value or you can let horizon generate a
93
# default secret key that is unique on this machine, e.i. regardless of the
94
# amount of Python WSGI workers (if used behind Apache+mod_wsgi): However, there
95
# may be situations where you would want to set this explicitly, e.g. when
96
# multiple dashboard instances are distributed on different machines (usually
97
# behind a load-balancer). Either you have to make sure that a session gets all
98
# requests routed to the same dashboard instance or you set the same SECRET_KEY
99
# for all of them.
100
101
SECRET_KEY = "{{ secret }}"
102
103
# We recommend you use memcached for development; otherwise after every reload
104
# of the django development server, you will have to login again. To use
105
# memcached set CACHES to something like
106
CACHES = {
107
'default': {
108
'BACKEND': 'django.core.cache.backends.memcached.MemcachedCache',
109
'LOCATION': '127.0.0.1:11211',
110
}
111
}
112
113
#CACHES = {
114
# 'default': {
115
# 'BACKEND': 'django.core.cache.backends.locmem.LocMemCache'
116
# }
117
#}
118
119
# Send email to the console by default
120
EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
121
# Or send them to /dev/null
122
#EMAIL_BACKEND = 'django.core.mail.backends.dummy.EmailBackend'
123
124
# Configure these for your outgoing email host
125
# EMAIL_HOST = 'smtp.my-company.com'
126
# EMAIL_PORT = 25
127
# EMAIL_HOST_USER = 'djangomail'
128
# EMAIL_HOST_PASSWORD = 'top-secret!'
129
130
# For multiple regions uncomment this configuration, and add (endpoint, title).
131
# AVAILABLE_REGIONS = [
132
# ('http://cluster1.example.com:5000/v2.0', 'cluster1'),
133
# ('http://cluster2.example.com:5000/v2.0', 'cluster2'),
134
# ]
135
136
OPENSTACK_HOST = "{{ service_host }}"
137
OPENSTACK_KEYSTONE_URL = "{{ service_protocol }}://%s:{{ service_port }}/v2.0" % OPENSTACK_HOST
138
OPENSTACK_KEYSTONE_DEFAULT_ROLE = "{{ default_role }}"
139
140
# Disable SSL certificate checks (useful for self-signed certificates):
141
# OPENSTACK_SSL_NO_VERIFY = True
142
143
# The CA certificate to use to verify SSL connections
144
# OPENSTACK_SSL_CACERT = '/path/to/cacert.pem'
145
146
# The OPENSTACK_KEYSTONE_BACKEND settings can be used to identify the
147
# capabilities of the auth backend for Keystone.
148
# If Keystone has been configured to use LDAP as the auth backend then set
149
# can_edit_user to False and name to 'ldap'.
150
#
151
# TODO(tres): Remove these once Keystone has an API to identify auth backend.
152
OPENSTACK_KEYSTONE_BACKEND = {
153
'name': 'native',
154
'can_edit_user': True,
155
'can_edit_group': True,
156
'can_edit_project': True,
157
'can_edit_domain': True,
158
'can_edit_role': True
159
}
160
161
#Setting this to True, will add a new "Retrieve Password" action on instance,
162
#allowing Admin session password retrieval/decryption.
163
#OPENSTACK_ENABLE_PASSWORD_RETRIEVE = False
164
165
# The Xen Hypervisor has the ability to set the mount point for volumes
166
# attached to instances (other Hypervisors currently do not). Setting
167
# can_set_mount_point to True will add the option to set the mount point
168
# from the UI.
169
OPENSTACK_HYPERVISOR_FEATURES = {
170
'can_set_mount_point': False,
171
'can_set_password': False,
172
}
173
174
# The OPENSTACK_CINDER_FEATURES settings can be used to enable optional
175
# services provided by cinder that is not exposed by its extension API.
176
OPENSTACK_CINDER_FEATURES = {
177
'enable_backup': False,
178
}
179
180
# The OPENSTACK_NEUTRON_NETWORK settings can be used to enable optional
181
# services provided by neutron. Options currently available are load
182
# balancer service, security groups, quotas, VPN service.
183
OPENSTACK_NEUTRON_NETWORK = {
184
'enable_router': True,
185
'enable_quotas': True,
186
'enable_ipv6': True,
187
'enable_distributed_router': False,
188
'enable_ha_router': False,
189
'enable_lb': {{ neutron_network_lb }},
190
'enable_firewall': {{ neutron_network_firewall }},
191
'enable_vpn': {{ neutron_network_vpn }},
192
# The profile_support option is used to detect if an external router can be
193
# configured via the dashboard. When using specific plugins the
194
# profile_support can be turned on if needed.
195
'profile_support': None,
196
#'profile_support': 'cisco',
197
# Set which provider network types are supported. Only the network types
198
# in this list will be available to choose from when creating a network.
199
# Network types include local, flat, vlan, gre, and vxlan.
200
'supported_provider_types': ['*'],
201
}
202
203
# The OPENSTACK_IMAGE_BACKEND settings can be used to customize features
204
# in the OpenStack Dashboard related to the Image service, such as the list
205
# of supported image formats.
206
# OPENSTACK_IMAGE_BACKEND = {
207
# 'image_formats': [
208
# ('', _('Select format')),
209
# ('aki', _('AKI - Amazon Kernel Image')),
210
# ('ami', _('AMI - Amazon Machine Image')),
211
# ('ari', _('ARI - Amazon Ramdisk Image')),
212
# ('iso', _('ISO - Optical Disk Image')),
213
# ('qcow2', _('QCOW2 - QEMU Emulator')),
214
# ('raw', _('Raw')),
215
# ('vdi', _('VDI')),
216
# ('vhd', _('VHD')),
217
# ('vmdk', _('VMDK'))
218
# ]
219
# }
220
221
# The IMAGE_CUSTOM_PROPERTY_TITLES settings is used to customize the titles for
222
# image custom property attributes that appear on image detail pages.
223
IMAGE_CUSTOM_PROPERTY_TITLES = {
224
"architecture": _("Architecture"),
225
"kernel_id": _("Kernel ID"),
226
"ramdisk_id": _("Ramdisk ID"),
227
"image_state": _("Euca2ools state"),
228
"project_id": _("Project ID"),
229
"image_type": _("Image Type")
230
}
231
232
# The IMAGE_RESERVED_CUSTOM_PROPERTIES setting is used to specify which image
233
# custom properties should not be displayed in the Image Custom Properties
234
# table.
235
IMAGE_RESERVED_CUSTOM_PROPERTIES = []
236
237
# OPENSTACK_ENDPOINT_TYPE specifies the endpoint type to use for the endpoints
238
# in the Keystone service catalog. Use this setting when Horizon is running
239
# external to the OpenStack environment. The default is 'publicURL'.
240
#OPENSTACK_ENDPOINT_TYPE = "publicURL"
241
242
# SECONDARY_ENDPOINT_TYPE specifies the fallback endpoint type to use in the
243
# case that OPENSTACK_ENDPOINT_TYPE is not present in the endpoints
244
# in the Keystone service catalog. Use this setting when Horizon is running
245
# external to the OpenStack environment. The default is None. This
246
# value should differ from OPENSTACK_ENDPOINT_TYPE if used.
247
#SECONDARY_ENDPOINT_TYPE = "publicURL"
248
249
# The number of objects (Swift containers/objects or images) to display
250
# on a single page before providing a paging element (a "more" link)
251
# to paginate results.
252
API_RESULT_LIMIT = 1000
253
API_RESULT_PAGE_SIZE = 20
254
255
# The timezone of the server. This should correspond with the timezone
256
# of your entire OpenStack installation, and hopefully be in UTC.
257
TIME_ZONE = "UTC"
258
259
# When launching an instance, the menu of available flavors is
260
# sorted by RAM usage, ascending. If you would like a different sort order,
261
# you can provide another flavor attribute as sorting key. Alternatively, you
262
# can provide a custom callback method to use for sorting. You can also provide
263
# a flag for reverse sort. For more info, see
264
# http://docs.python.org/2/library/functions.html#sorted
265
# CREATE_INSTANCE_FLAVOR_SORT = {
266
# 'key': 'name',
267
# # or
268
# 'key': my_awesome_callback_method,
269
# 'reverse': False,
270
# }
271
272
# The Horizon Policy Enforcement engine uses these values to load per service
273
# policy rule files. The content of these files should match the files the
274
# OpenStack services are using to determine role based access control in the
275
# target installation.
276
277
# Path to directory containing policy.json files
278
#POLICY_FILES_PATH = os.path.join(ROOT_PATH, "conf")
279
# Map of local copy of service policy files
280
#POLICY_FILES = {
281
# 'identity': 'keystone_policy.json',
282
# 'compute': 'nova_policy.json',
283
# 'volume': 'cinder_policy.json',
284
# 'image': 'glance_policy.json',
285
# 'orchestration': 'heat_policy.json',
286
# 'network': 'neutron_policy.json',
287
#}
288
289
# Trove user and database extension support. By default support for
290
# creating users and databases on database instances is turned on.
291
# To disable these extensions set the permission here to something
292
# unusable such as ["!"].
293
# TROVE_ADD_USER_PERMS = []
294
# TROVE_ADD_DATABASE_PERMS = []
295
296
LOGGING = {
297
'version': 1,
298
# When set to True this will disable all logging except
299
# for loggers specified in this configuration dictionary. Note that
300
# if nothing is specified here and disable_existing_loggers is True,
301
# django.db.backends will still log unless it is disabled explicitly.
302
'disable_existing_loggers': False,
303
'handlers': {
304
'null': {
305
'level': 'DEBUG',
306
'class': 'django.utils.log.NullHandler',
307
},
308
'console': {
309
# Set the level to "DEBUG" for verbose output logging.
310
'level': 'INFO',
311
'class': 'logging.StreamHandler',
312
},
313
{% if use_syslog %}
314
'syslog': {
315
'level': 'INFO',
316
'class': 'logging.handlers.SysLogHandler',
317
},
318
{% endif %}
319
},
320
'loggers': {
321
# Logging from django.db.backends is VERY verbose, send to null
322
# by default.
323
'django.db.backends': {
324
'handlers': ['null'],
325
'propagate': False,
326
},
327
'requests': {
328
'handlers': ['null'],
329
'propagate': False,
330
},
331
'horizon': {
332
{% if use_syslog %}
333
'handlers': ['syslog'],
334
{% else %}
335
'handlers': ['console'],
336
{% endif %}
337
'propagate': False,
338
},
339
'openstack_dashboard': {
340
{% if use_syslog %}
341
'handlers': ['syslog'],
342
{% else %}
343
'handlers': ['console'],
344
{% endif %}
345
'propagate': False,
346
},
347
'novaclient': {
348
{% if use_syslog %}
349
'handlers': ['syslog'],
350
{% else %}
351
'handlers': ['console'],
352
{% endif %}
353
'propagate': False,
354
},
355
'cinderclient': {
356
{% if use_syslog %}
357
'handlers': ['syslog'],
358
{% else %}
359
'handlers': ['console'],
360
{% endif %}
361
'propagate': False,
362
},
363
'keystoneclient': {
364
{% if use_syslog %}
365
'handlers': ['syslog'],
366
{% else %}
367
'handlers': ['console'],
368
{% endif %}
369
'propagate': False,
370
},
371
'glanceclient': {
372
{% if use_syslog %}
373
'handlers': ['syslog'],
374
{% else %}
375
'handlers': ['console'],
376
{% endif %}
377
'propagate': False,
378
},
379
'neutronclient': {
380
{% if use_syslog %}
381
'handlers': ['syslog'],
382
{% else %}
383
'handlers': ['console'],
384
{% endif %}
385
'propagate': False,
386
},
387
'heatclient': {
388
{% if use_syslog %}
389
'handlers': ['syslog'],
390
{% else %}
391
'handlers': ['console'],
392
{% endif %}
393
'propagate': False,
394
},
395
'ceilometerclient': {
396
{% if use_syslog %}
397
'handlers': ['syslog'],
398
{% else %}
399
'handlers': ['console'],
400
{% endif %}
401
'propagate': False,
402
},
403
'troveclient': {
404
{% if use_syslog %}
405
'handlers': ['syslog'],
406
{% else %}
407
'handlers': ['console'],
408
{% endif %}
409
'propagate': False,
410
},
411
'swiftclient': {
412
{% if use_syslog %}
413
'handlers': ['syslog'],
414
{% else %}
415
'handlers': ['console'],
416
{% endif %}
417
'propagate': False,
418
},
419
'openstack_auth': {
420
{% if use_syslog %}
421
'handlers': ['syslog'],
422
{% else %}
423
'handlers': ['console'],
424
{% endif %}
425
'propagate': False,
426
},
427
'nose.plugins.manager': {
428
{% if use_syslog %}
429
'handlers': ['syslog'],
430
{% else %}
431
'handlers': ['console'],
432
{% endif %}
433
'propagate': False,
434
},
435
'django': {
436
{% if use_syslog %}
437
'handlers': ['syslog'],
438
{% else %}
439
'handlers': ['console'],
440
{% endif %}
441
'propagate': False,
442
},
443
'iso8601': {
444
'handlers': ['null'],
445
'propagate': False,
446
},
447
'scss': {
448
'handlers': ['null'],
449
'propagate': False,
450
},
451
}
452
}
453
454
# 'direction' should not be specified for all_tcp/udp/icmp.
455
# It is specified in the form.
456
SECURITY_GROUP_RULES = {
457
'all_tcp': {
458
'name': _('All TCP'),
459
'ip_protocol': 'tcp',
460
'from_port': '1',
461
'to_port': '65535',
462
},
463
'all_udp': {
464
'name': _('All UDP'),
465
'ip_protocol': 'udp',
466
'from_port': '1',
467
'to_port': '65535',
468
},
469
'all_icmp': {
470
'name': _('All ICMP'),
471
'ip_protocol': 'icmp',
472
'from_port': '-1',
473
'to_port': '-1',
474
},
475
'ssh': {
476
'name': 'SSH',
477
'ip_protocol': 'tcp',
478
'from_port': '22',
479
'to_port': '22',
480
},
481
'smtp': {
482
'name': 'SMTP',
483
'ip_protocol': 'tcp',
484
'from_port': '25',
485
'to_port': '25',
486
},
487
'dns': {
488
'name': 'DNS',
489
'ip_protocol': 'tcp',
490
'from_port': '53',
491
'to_port': '53',
492
},
493
'http': {
494
'name': 'HTTP',
495
'ip_protocol': 'tcp',
496
'from_port': '80',
497
'to_port': '80',
498
},
499
'pop3': {
500
'name': 'POP3',
501
'ip_protocol': 'tcp',
502
'from_port': '110',
503
'to_port': '110',
504
},
505
'imap': {
506
'name': 'IMAP',
507
'ip_protocol': 'tcp',
508
'from_port': '143',
509
'to_port': '143',
510
},
511
'ldap': {
512
'name': 'LDAP',
513
'ip_protocol': 'tcp',
514
'from_port': '389',
515
'to_port': '389',
516
},
517
'https': {
518
'name': 'HTTPS',
519
'ip_protocol': 'tcp',
520
'from_port': '443',
521
'to_port': '443',
522
},
523
'smtps': {
524
'name': 'SMTPS',
525
'ip_protocol': 'tcp',
526
'from_port': '465',
527
'to_port': '465',
528
},
529
'imaps': {
530
'name': 'IMAPS',
531
'ip_protocol': 'tcp',
532
'from_port': '993',
533
'to_port': '993',
534
},
535
'pop3s': {
536
'name': 'POP3S',
537
'ip_protocol': 'tcp',
538
'from_port': '995',
539
'to_port': '995',
540
},
541
'ms_sql': {
542
'name': 'MS SQL',
543
'ip_protocol': 'tcp',
544
'from_port': '1433',
545
'to_port': '1433',
546
},
547
'mysql': {
548
'name': 'MYSQL',
549
'ip_protocol': 'tcp',
550
'from_port': '3306',
551
'to_port': '3306',
552
},
553
'rdp': {
554
'name': 'RDP',
555
'ip_protocol': 'tcp',
556
'from_port': '3389',
557
'to_port': '3389',
558
},
559
}
560
561
# Deprecation Notice:
562
#
563
# The setting FLAVOR_EXTRA_KEYS has been deprecated.
564
# Please load extra spec metadata into the Glance Metadata Definition Catalog.
565
#
566
# The sample quota definitions can be found in:
567
# <glance_source>/etc/metadefs/compute-quota.json
568
#
569
# The metadata definition catalog supports CLI and API:
570
# $glance --os-image-api-version 2 help md-namespace-import
571
# $glance-manage db_load_metadefs <directory_with_definition_files>
572
#
573
# See Metadata Definitions on: http://docs.openstack.org/developer/glance/
574
575
# Indicate to the Sahara data processing service whether or not
576
# automatic floating IP allocation is in effect. If it is not
577
# in effect, the user will be prompted to choose a floating IP
578
# pool for use in their cluster. False by default. You would want
579
# to set this to True if you were running Nova Networking with
580
# auto_assign_floating_ip = True.
581
# SAHARA_AUTO_IP_ALLOCATION_ENABLED = False
582
583
###############################################################################
584
# Ubuntu Settings
585
###############################################################################
586
587
{% if ubuntu_theme %}
588
# Enable the Ubuntu theme if it is present.
589
try:
590
from ubuntu_theme import *
591
except ImportError:
592
pass
593
{% endif %}
594
595
# Default Ubuntu apache configuration uses /horizon as the application root.
596
# Configure auth redirects here accordingly.
597
{% if webroot == "/" %}
598
LOGIN_URL='/auth/login/'
599
LOGOUT_URL='/auth/logout/'
600
{% else %}
601
LOGIN_URL='{{ webroot }}/auth/login/'
602
LOGOUT_URL='{{ webroot }}/auth/logout/'
603
{% endif %}
604
LOGIN_REDIRECT_URL='{{ webroot }}'
605
606
# By default, validation of the HTTP Host header is disabled. Production
607
# installations should have this set accordingly. For more information
608
# see https://docs.djangoproject.com/en/dev/ref/settings/.
609
ALLOWED_HOSTS = '*'
Loggerhead is a web-based interface for Breezy
Version: 2.0.1