Barbican
- OpenStack Charmers
- Cloud
| Channel | Revision | Published | Runs on |
|---|---|---|---|
| latest/edge | 199 | 20 Nov 2024 | |
| latest/edge | 198 | 20 Nov 2024 | |
| latest/edge | 197 | 20 Nov 2024 | |
| latest/edge | 196 | 20 Nov 2024 | |
| latest/edge | 186 | 21 Aug 2024 | |
| latest/edge | 185 | 21 Aug 2024 | |
| latest/edge | 184 | 21 Aug 2024 | |
| latest/edge | 183 | 21 Aug 2024 | |
| latest/edge | 145 | 16 Aug 2023 | |
| latest/edge | 144 | 16 Aug 2023 | |
| latest/edge | 142 | 16 Aug 2023 | |
| latest/edge | 141 | 16 Aug 2023 | |
| latest/edge | 139 | 16 Aug 2023 | |
| latest/edge | 138 | 16 Aug 2023 | |
| latest/edge | 136 | 16 Aug 2023 | |
| latest/edge | 135 | 16 Aug 2023 | |
| latest/edge | 115 | 07 Apr 2023 | |
| latest/edge | 114 | 07 Apr 2023 | |
| latest/edge | 113 | 07 Apr 2023 | |
| latest/edge | 112 | 07 Apr 2023 | |
| latest/edge | 69 | 01 Jun 2022 | |
| yoga/stable | 157 | 08 Sep 2023 | |
| zed/stable | 158 | 09 Sep 2023 | |
| zed/stable | 153 | 08 Sep 2023 | |
| zed/stable | 151 | 08 Sep 2023 | |
| zed/stable | 149 | 08 Sep 2023 | |
| xena/stable | 155 | 08 Sep 2023 | |
| wallaby/stable | 156 | 08 Sep 2023 | |
| victoria/stable | 160 | 14 Sep 2023 | |
| ussuri/stable | 162 | 14 Sep 2023 | |
| train/candidate | 96 | 28 Nov 2022 | |
| train/edge | 161 | 14 Sep 2023 | |
| stein/candidate | 96 | 28 Nov 2022 | |
| stein/edge | 161 | 14 Sep 2023 | |
| rocky/candidate | 96 | 28 Nov 2022 | |
| rocky/edge | 161 | 14 Sep 2023 | |
| 2024.1/candidate | 182 | 30 May 2024 | |
| 2024.1/candidate | 181 | 30 May 2024 | |
| 2024.1/candidate | 180 | 30 May 2024 | |
| 2024.1/candidate | 179 | 30 May 2024 | |
| 2024.1/candidate | 145 | 24 Jan 2024 | |
| 2024.1/candidate | 142 | 24 Jan 2024 | |
| 2024.1/candidate | 138 | 24 Jan 2024 | |
| 2024.1/candidate | 136 | 24 Jan 2024 | |
| 2023.2/stable | 165 | 30 Nov 2023 | |
| 2023.2/stable | 166 | 30 Nov 2023 | |
| 2023.2/stable | 169 | 30 Nov 2023 | |
| 2023.2/stable | 163 | 30 Nov 2023 | |
| 2023.2/stable | 168 | 30 Nov 2023 | |
| 2023.2/stable | 167 | 30 Nov 2023 | |
| 2023.2/stable | 170 | 30 Nov 2023 | |
| 2023.2/stable | 164 | 30 Nov 2023 | |
| 2023.1/stable | 159 | 09 Sep 2023 | |
| 2023.1/stable | 154 | 08 Sep 2023 | |
| 2023.1/stable | 152 | 08 Sep 2023 | |
| 2023.1/stable | 150 | 08 Sep 2023 |
juju deploy barbican --channel yoga/stable
Deploy universal operators easily with Juju, the Universal Operator Lifecycle Manager.
Platform:
-
action-managed-upgrade | boolean
If True enables openstack upgrades for this charm via juju actions. You will still need to set openstack-origin to the new repository but instead of an upgrade running automatically across all units, it will wait for you to execute the openstack-upgrade action for this charm on each unit. If False it will revert to existing behavior of upgrading all units on config change.
-
debug | boolean
Enable debug logging
-
dns-ha | boolean
Use DNS HA with MAAS 2.0. Note if this is set do not set vip settings below.
-
haproxy-client-timeout | int
Client timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 90000ms is used.
-
haproxy-connect-timeout | int
Connect timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 9000ms is used.
-
haproxy-queue-timeout | int
Queue timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 9000ms is used.
-
haproxy-server-timeout | int
Server timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 90000ms is used.
-
hmac-key-length | int
Default: 32
The length for generating an HMAC
-
label-hmac | string
Default: primaryhmac
This is the label for the primary HMAC (keyed-hash message authentication code) stored in the HSM that is used by Barbican to wrap other HMACs that are provided to projects.
Note the assocated action 'generate-hmac' is used to create an HMAC when initialising a system.
-
label-mkek | string
Default: primarymkek
This is the label for the primary MKEK (Master Key Encryption Key) stored in the HSM that is used by Barbican to wrap other encryption keys that are provided to projects.
Note the assocated action 'generate-mkek' is used to create an MKEK when initialising a system.
-
max-allowed-request-size | int
Default: 25000
Maximum allowed http request size against the barbican-api.
-
max-allowed-secret-size | int
Default: 20000
Maximum allowed secret size in bytes.
-
mkek-key-length | int
Default: 32
The length for generating an MKEK
-
openstack-origin | string
Default: yoga
Repository from which to install OpenStack.
May be one of the following:
distro (default) ppa:somecustom/ppa (PPA name must include OpenStack Release) deb url sources entry|key id or a supported Ubuntu Cloud Archive pocket.
Supported Ubuntu Cloud Archive pockets include:
cloud:trusty-liberty cloud:trusty-juno cloud:trusty-kilo cloud:trusty-liberty cloud:trusty-mitaka
Note that updating this setting to a source that is known to provide a later version of OpenStack will trigger a software upgrade.
-
os-admin-hostname | string
The hostname or address of the admin endpoints created in the keystone identity provider. . This value will be used for admin endpoints. For example, an os-admin-hostname set to 'api-admin.example.com' with ssl enabled will create the following endpoint for neutron-api: . https://api-admin.example.com:9696/
-
os-admin-network | string
The IP address and netmask of the OpenStack Admin network (e.g., 192.168.0.0/24) . This network will be used for admin endpoints.
-
os-internal-hostname | string
The hostname or address of the internal endpoints created in the keystone identity provider. . This value will be used for internal endpoints. For example, an os-internal-hostname set to 'api-internal.example.com' with ssl enabled will create the following endpoint for neutron-api: . https://api-internal.example.com:9696/
-
os-internal-network | string
The IP address and netmask of the OpenStack Internal network (e.g., 192.168.0.0/24) . This network will be used for internal endpoints.
-
os-public-hostname | string
The hostname or address of the public endpoints created in the keystone identity provider. . This value will be used for public endpoints. For example, an os-public-hostname set to 'api-public.example.com' with ssl enabled will create the following endpoint for neutron-api: . https://api-public.example.com:9696/
-
os-public-network | string
The IP address and netmask of the OpenStack Public network (e.g., 192.168.0.0/24) . This network will be used for public endpoints.
-
region | string
Default: RegionOne
OpenStack Region
-
require-hsm-plugin | boolean
If True (the default) then the barbcian-worker process won't be fully functional until an HSM is associated with the charm. The charm will remain in the blocked state until an HSM is available.
-
ssl_ca | string
TLS CA to use to communicate with other components in a deployment. . NOTE: This configuration option will take precedence over any certificates received over the
certificatesrelation. -
ssl_cert | string
TLS certificate to install and use for any listening services. . NOTE: This configuration option will take precedence over any certificates received over the
certificatesrelation. -
ssl_key | string
TLS key to use with certificate specified as
ssl_cert. . NOTE: This configuration option will take precedence over any certificates received over thecertificatesrelation. -
use-internal-endpoints | boolean
Default: True
Openstack mostly defaults to using public endpoints for internal communication between services. If set to True this option will configure services to use internal endpoints where possible.
-
use-syslog | boolean
Setting this to True will allow supporting services to log to syslog.
-
vip | string
Virtual IP(s) to use to front API services in HA configuration.
If multiple networks are being used, a VIP should be provided for each network, separated by spaces.
-
vip_cidr | int
Default: 24
Default CIDR netmask to use for HA vip when it cannot be automatically determined.
-
vip_iface | string
Default: eth0
Default network interface to use for HA vip when it cannot be automatically determined.
-
worker-multiplier | float
The CPU core multiplier to use when configuring worker processes. By default, the number of workers for each daemon is set to twice the number of CPU cores a service unit has. This default value will be capped to 4 workers unless this configuration option is set.