COMPUTED VALUES: bootstrap: enabled: true ks_user: admin script: | #NOTE(portdirect): The Orchestration service automatically assigns the # 'heat_stack_user' role to users that it creates during stack deployment. # By default, this role restricts API operations. To avoid conflicts, do # not add this role to actual users. openstack role create --or-show heat_stack_user conf: api_audit_map: DEFAULT: target_endpoint_type: None path_keywords: abandon: None actions: None build_info: None detail: None events: event functions: None metadata: server outputs: output preview: None resource_types: resource_type resources: resource restore: None services: None signal: None snapshots: snapshot software_configs: software_config software_deployments: software_deployment stacks: stack template: None template_versions: template_version validate: None service_endpoints: orchestration:service/orchestration heat: DEFAULT: auth_encryption_key: Qc4T7TLLqP7nOC0SPhApbjc965xucNui default_deployment_signal_transport: HEAT_SIGNAL default_software_config_transport: POLL_SERVER_HEAT host: heat-engine num_engine_workers: 2 region_name_for_services: RegionOne rpc_response_timeout: 600 server_keystone_endpoint_type: public trusts_delegated_roles: "" clients: endpoint_type: internalURL clients_heat: endpoint_type: publicURL clients_keystone: endpoint_type: publicURL database: connection_recycle_time: 600 max_overflow: 50 max_pool_size: 5 max_retries: -1 pool_timeout: 30 ec2authtoken: auth_uri: http://keystone-api.openstack.svc.cluster.local:5000 heat_api: bind_port: null workers: 2 heat_api_cfn: bind_port: null workers: 2 heat_api_cloudwatch: bind_port: null workers: 2 keystone_authtoken: auth_type: password auth_uri: http://keystone-api.openstack.svc.cluster.local:5000/ auth_url: http://keystone-api.openstack.svc.cluster.local:5000/ auth_version: v3 memcache_secret_key: N0Y5IeIaDT0Xkufz39ENsigN43V13TUC memcache_security_strategy: ENCRYPT memcached_servers: memcached.openstack.svc.cluster.local:11211 password: wlCZiQkeKnKtj0oHf40hViKQmmA2ewm0 project_domain_name: service project_name: service region_name: RegionOne service_type: orchestration user_domain_name: service username: heat-RegionOne oslo_messaging_notifications: driver: noop oslo_messaging_rabbit: rabbit_ha_queues: true oslo_middleware: enable_proxy_headers_parsing: true oslo_policy: policy_file: /etc/heat/policy.yaml paste_deploy: api_paste_config: /etc/heat/api-paste.ini trustee: auth_type: password auth_url: http://keystone-api.openstack.svc.cluster.local:5000 auth_version: v3 password: T5835EjnP1GJkPtv2MAKysPLMrQQqy2U region_name: RegionOne user_domain_name: service username: heat-trustee-RegionOne heat_api_cfn_uwsgi: uwsgi: add-header: 'Connection: close' buffer-size: 65535 chunked-input-limit: 4096000 die-on-term: true enable-threads: true exit-on-reload: false hook-master-start: unix_signal:15 gracefully_kill_them_all http-auto-chunked: true http-raw-body: true http-socket: 0.0.0.0:8000 lazy-apps: true log-x-forwarded-for: true master: true need-app: true processes: 2 procname-prefix-spaced: 'heat-api-cfn:' route-user-agent: '^kube-probe.* donotlog:' socket-timeout: 10 thunder-lock: true worker-reload-mercy: 80 wsgi-file: /var/lib/openstack/bin/heat-wsgi-api-cfn heat_api_uwsgi: uwsgi: add-header: 'Connection: close' buffer-size: 65535 chunked-input-limit: "4096000" die-on-term: true enable-threads: true exit-on-reload: false hook-master-start: unix_signal:15 gracefully_kill_them_all http-auto-chunked: true http-raw-body: true http-socket: 0.0.0.0:8004 lazy-apps: true log-x-forwarded-for: true master: true need-app: true processes: 2 procname-prefix-spaced: 'heat-api:' route-user-agent: '^kube-probe.* donotlog:' socket-timeout: 10 thunder-lock: true worker-reload-mercy: 80 wsgi-file: /var/lib/openstack/bin/heat-wsgi-api logging: formatter_context: class: oslo_log.formatters.ContextFormatter datefmt: '%Y-%m-%d %H:%M:%S' formatter_default: datefmt: '%Y-%m-%d %H:%M:%S' format: '%(message)s' formatters: keys: - context - default handler_null: args: () class: logging.NullHandler formatter: default handler_stderr: args: (sys.stderr,) class: StreamHandler formatter: context handler_stdout: args: (sys.stdout,) class: StreamHandler formatter: context handlers: keys: - stdout - stderr - "null" logger_amqp: handlers: stderr level: WARNING qualname: amqp logger_amqplib: handlers: stderr level: WARNING qualname: amqplib logger_boto: handlers: stderr level: WARNING qualname: boto logger_eventletwsgi: handlers: stderr level: WARNING qualname: eventlet.wsgi.server logger_heat: handlers: - stdout level: INFO qualname: heat logger_root: handlers: "null" level: WARNING logger_sqlalchemy: handlers: stderr level: WARNING qualname: sqlalchemy loggers: keys: - root - heat paste: app:apicfnv1app: heat.app_factory: heat.api.cfn.v1:API paste.app_factory: heat.common.wsgi:app_factory app:apicwapp: heat.app_factory: heat.api.cloudwatch:API paste.app_factory: heat.common.wsgi:app_factory app:apiv1app: heat.app_factory: heat.api.openstack.v1:API paste.app_factory: heat.common.wsgi:app_factory filter:audit: audit_map_file: /etc/heat/api_audit_map.conf paste.filter_factory: keystonemiddleware.audit:filter_factory filter:authpassword: paste.filter_factory: heat.common.auth_password:filter_factory filter:authtoken: paste.filter_factory: keystonemiddleware.auth_token:filter_factory filter:authurl: paste.filter_factory: heat.common.auth_url:filter_factory filter:cfnversionnegotiation: heat.filter_factory: heat.api.cfn:version_negotiation_filter paste.filter_factory: heat.common.wsgi:filter_factory filter:context: paste.filter_factory: heat.common.context:ContextMiddleware_filter_factory filter:cors: oslo_config_project: heat paste.filter_factory: oslo_middleware.cors:filter_factory filter:custombackendauth: paste.filter_factory: heat.common.custom_backend_auth:filter_factory filter:cwversionnegotiation: heat.filter_factory: heat.api.cloudwatch:version_negotiation_filter paste.filter_factory: heat.common.wsgi:filter_factory filter:ec2authtoken: paste.filter_factory: heat.api.aws.ec2token:EC2Token_filter_factory filter:faultwrap: heat.filter_factory: heat.api.openstack:faultwrap_filter paste.filter_factory: heat.common.wsgi:filter_factory filter:http_proxy_to_wsgi: paste.filter_factory: oslo_middleware:HTTPProxyToWSGI.factory filter:osprofiler: paste.filter_factory: osprofiler.web:WsgiMiddleware.factory filter:request_id: paste.filter_factory: oslo_middleware.request_id:RequestId.factory filter:versionnegotiation: heat.filter_factory: heat.api.openstack:version_negotiation_filter paste.filter_factory: heat.common.wsgi:filter_factory pipeline:heat-api: pipeline: cors request_id faultwrap http_proxy_to_wsgi versionnegotiation osprofiler authurl authtoken audit context apiv1app pipeline:heat-api-cfn: pipeline: cors http_proxy_to_wsgi cfnversionnegotiation osprofiler ec2authtoken authtoken audit context apicfnv1app pipeline:heat-api-cfn-standalone: pipeline: cors http_proxy_to_wsgi cfnversionnegotiation ec2authtoken context apicfnv1app pipeline:heat-api-cloudwatch: pipeline: cors versionnegotiation osprofiler ec2authtoken authtoken audit context apicwapp pipeline:heat-api-cloudwatch-standalone: pipeline: cors versionnegotiation ec2authtoken context apicwapp pipeline:heat-api-custombackend: pipeline: cors request_id faultwrap versionnegotiation context custombackendauth apiv1app pipeline:heat-api-standalone: pipeline: cors request_id faultwrap http_proxy_to_wsgi versionnegotiation authurl authpassword context apiv1app policy: {} rabbitmq: policies: - apply-to: all definition: ha-mode: all ha-sync-mode: automatic message-ttl: 70000 name: ha_ttl_heat pattern: ^(?!(amq\.|reply_)).* priority: 0 vhost: heat rally_tests: run_tempest: false templates: - name: /tmp/rally-jobs/default.yaml template: | heat_template_version: 2014-10-16 - name: /tmp/rally-jobs/random_strings.yaml template: | heat_template_version: 2014-10-16 description: Test template for rally create-update-delete scenario resources: test_string_one: type: OS::Heat::RandomString properties: length: 20 test_string_two: type: OS::Heat::RandomString properties: length: 20 - name: /tmp/rally-jobs/resource_group_with_constraint.yaml template: | heat_template_version: 2013-05-23 description: Template for testing caching. parameters: count: type: number default: 40 delay: type: number default: 0.1 resources: rg: type: OS::Heat::ResourceGroup properties: count: get_param: count resource_def: type: OS::Heat::TestResource properties: constraint_prop_secs: get_param: delay - name: /tmp/rally-jobs/resource_group_with_outputs.yaml template: | heat_template_version: 2013-05-23 parameters: attr_wait_secs: type: number default: 0.5 resources: rg: type: OS::Heat::ResourceGroup properties: count: 10 resource_def: type: OS::Heat::TestResource properties: attr_wait_secs: get_param: attr_wait_secs outputs: val1: value: get_attr: - rg - resource.0.output val2: value: get_attr: - rg - resource.1.output val3: value: get_attr: - rg - resource.2.output val4: value: get_attr: - rg - resource.3.output val5: value: get_attr: - rg - resource.4.output val6: value: get_attr: - rg - resource.5.output val7: value: get_attr: - rg - resource.6.output val8: value: get_attr: - rg - resource.7.output val9: value: get_attr: - rg - resource.8.output val10: value: get_attr: - rg - resource.9.output - name: /tmp/rally-jobs/updated_random_strings_replace.yaml template: | heat_template_version: 2014-10-16 description: | Test template for create-update-delete-stack scenario in rally. The template deletes one resource from the stack defined by random-strings.yaml.template and re-creates it with the updated parameters (so-called update-replace). That happens because some parameters cannot be changed without resource re-creation. The template allows to measure performance of update-replace operation. resources: test_string_one: type: OS::Heat::RandomString properties: length: 20 test_string_two: type: OS::Heat::RandomString properties: length: 40 tests: HeatStacks.create_and_delete_stack: - args: template_path: /tmp/rally-jobs/resource_group_with_constraint.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 HeatStacks.create_and_list_stack: - args: template_path: /tmp/rally-jobs/default.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 HeatStacks.create_check_delete_stack: - args: template_path: /tmp/rally-jobs/random_strings.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 HeatStacks.create_snapshot_restore_delete_stack: - args: template_path: /tmp/rally-jobs/random_strings.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 HeatStacks.create_stack_and_list_output: - args: template_path: /tmp/rally-jobs/resource_group_with_outputs.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 HeatStacks.create_stack_and_list_output_via_API: - args: template_path: /tmp/rally-jobs/resource_group_with_outputs.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 HeatStacks.create_update_delete_stack: - args: template_path: /tmp/rally-jobs/random_strings.yaml updated_template_path: /tmp/rally-jobs/updated_random_strings_replace.yaml runner: concurrency: 1 times: 1 type: constant sla: failure_rate: max: 0 dependencies: dynamic: common: local_image_registry: jobs: - heat-image-repo-sync services: - endpoint: node service: local_image_registry static: api: jobs: - heat-db-sync - heat-rabbit-init - heat-ks-user - heat-domain-ks-user - heat-ks-endpoints - heat-bootstrap services: - endpoint: internal service: oslo_db - endpoint: internal service: oslo_messaging - endpoint: internal service: identity bootstrap: services: - endpoint: internal service: identity cfn: jobs: - heat-db-sync - heat-rabbit-init - heat-ks-user - heat-domain-ks-user - heat-ks-endpoints - heat-bootstrap services: - endpoint: internal service: oslo_db - endpoint: internal service: oslo_messaging - endpoint: internal service: identity cloudwatch: jobs: - heat-db-sync - heat-rabbit-init - heat-ks-user - heat-domain-ks-user - heat-ks-endpoints - heat-bootstrap services: - endpoint: internal service: oslo_db - endpoint: internal service: oslo_messaging - endpoint: internal service: identity db_drop: services: - endpoint: internal service: oslo_db db_init: services: - endpoint: internal service: oslo_db db_sync: jobs: - heat-db-init services: - endpoint: internal service: oslo_db engine: jobs: - heat-db-sync - heat-rabbit-init - heat-ks-user - heat-domain-ks-user - heat-ks-endpoints - heat-bootstrap services: - endpoint: internal service: oslo_db - endpoint: internal service: oslo_messaging - endpoint: internal service: identity engine_cleaner: jobs: - heat-db-sync - heat-ks-user - heat-domain-ks-user - heat-ks-endpoints services: - endpoint: internal service: oslo_db - endpoint: internal service: oslo_messaging - endpoint: internal service: identity image_repo_sync: services: - endpoint: internal service: local_image_registry ks_endpoints: jobs: - heat-ks-service services: - endpoint: internal service: identity ks_service: services: - endpoint: internal service: identity ks_user: services: - endpoint: internal service: identity purge_deleted: jobs: - heat-db-sync - heat-ks-user - heat-domain-ks-user - heat-ks-endpoints services: - endpoint: internal service: oslo_db - endpoint: internal service: oslo_messaging - endpoint: internal service: identity rabbit_init: services: - endpoint: internal service: oslo_messaging tests: services: - endpoint: internal service: identity - endpoint: internal service: orchestration trusts: jobs: - heat-ks-user - heat-domain-ks-user services: - endpoint: internal service: identity endpoints: cloudformation: host_fqdn_override: default: null public: host: cloudformation.199-204-45-65.nip.io hosts: default: heat-cfn public: cloudformation name: heat-cfn path: default: /v1 port: api: default: 8000 public: 443 service: 8000 scheme: default: http public: https service: http cloudwatch: host_fqdn_override: default: null hosts: default: heat-cloudwatch public: cloudwatch name: heat-cloudwatch path: default: null port: api: default: 8003 public: 80 service: 8003 scheme: default: http service: http type: null cluster_domain_suffix: cluster.local fluentd: host_fqdn_override: default: null hosts: default: fluentd-logging name: fluentd namespace: null path: default: null port: metrics: default: 24220 service: default: 24224 scheme: http identity: auth: admin: password: Lmyik5usQ6Dw01vWVdxW2EDnfZxlvJgY project_domain_name: default project_name: admin region_name: RegionOne user_domain_name: default username: admin-RegionOne heat: password: wlCZiQkeKnKtj0oHf40hViKQmmA2ewm0 project_domain_name: service project_name: service region_name: RegionOne role: admin user_domain_name: service username: heat-RegionOne heat_stack_user: domain_name: heat password: uZrVIytbH2sUoQhVld1Zwp8QCVbUJeHa region_name: RegionOne role: admin username: heat-stack-user-RegionOne heat_trustee: password: T5835EjnP1GJkPtv2MAKysPLMrQQqy2U project_domain_name: service project_name: service region_name: RegionOne role: admin user_domain_name: service username: heat-trustee-RegionOne test: password: password project_domain_name: service project_name: test region_name: RegionOne role: admin user_domain_name: service username: heat-test host_fqdn_override: default: null public: host: identity.199-204-45-65.nip.io hosts: default: keystone-api internal: keystone-api name: keystone path: default: / public: /v3 port: api: default: 5000 internal: 5000 public: 443 scheme: default: http public: https ingress: hosts: default: ingress name: ingress namespace: null port: ingress: default: 80 kube_dns: host_fqdn_override: default: null hosts: default: kube-dns name: kubernetes-dns namespace: kube-system path: default: null port: dns: default: 53 protocol: UDP scheme: http local_image_registry: host_fqdn_override: default: null hosts: default: localhost internal: docker-registry node: localhost name: docker-registry namespace: docker-registry port: registry: node: 5000 oci_image_registry: auth: enabled: false heat: password: password username: heat host_fqdn_override: default: null hosts: default: localhost name: oci-image-registry namespace: oci-image-registry port: registry: default: null orchestration: host_fqdn_override: default: null public: host: orchestration.199-204-45-65.nip.io hosts: default: heat-api public: heat name: heat path: default: /v1/%(project_id)s port: api: default: 8004 public: 443 service: 8004 scheme: default: http public: https service: http oslo_cache: auth: memcache_secret_key: N0Y5IeIaDT0Xkufz39ENsigN43V13TUC host_fqdn_override: default: null hosts: default: memcached port: memcache: default: 11211 oslo_db: auth: admin: password: Ood17hBND4vZ3venfjFNeSWq1Znix4H3 secret: tls: internal: mariadb-tls-direct username: root heat: password: f3pqxRtiOpLjwSHGKl4ebsa3RG6xk7fw username: heat keystone: password: 9IpNRtdna07h0b4noAfvNKgzZb4qtr2L host_fqdn_override: default: null hosts: default: percona-xtradb-haproxy path: /heat port: mysql: default: 3306 scheme: mysql+pymysql oslo_messaging: auth: admin: password: pmX6yAqoMrGLgvvphHqsmKl_ralEaIH8 secret: tls: internal: rabbitmq-tls-direct username: default_user_oMXpTcbUZ2hk_c4qkoz heat: password: 6GqkZ4eQbec2m1Tf4cRGqx232YKvAMld username: heat keystone: password: L7ia5pVFxXSQqtF8nUgD6LTfpiS8TOWX user: password: pmX6yAqoMrGLgvvphHqsmKl_ralEaIH8 username: default_user_oMXpTcbUZ2hk_c4qkoz host_fqdn_override: default: null hosts: default: rabbitmq-heat path: /heat port: amqp: default: 5672 http: default: 15672 scheme: rabbit helm-toolkit: global: {} helm3_hook: true images: local_registry: active: false exclude: - dep_check - image_repo_sync pull_policy: IfNotPresent tags: bootstrap: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 db_drop: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 db_init: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 dep_check: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 heat_api: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 heat_cfn: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 heat_cloudwatch: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 heat_db_sync: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 heat_engine: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 heat_engine_cleaner: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 heat_purge_deleted: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 image_repo_sync: docker.io/docker:17.07.0 ks_endpoints: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 ks_service: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 ks_user: harbor.atmosphere.dev/ghcr.io/vexxhost/heat:2024.2@sha256:ef012d1df4d8ef7fbec685d63188a153e8b49063ceef28e3d4da800c0dfb24a7 rabbit_init: harbor.atmosphere.dev/docker.io/library/rabbitmq:3.13.3-management test: docker.io/xrally/xrally-openstack:2.0.0 jobs: engine_cleaner: cron: '*/5 * * * *' history: failed: 1 success: 3 starting_deadline: 600 purge_deleted: cron: 20 */24 * * * history: failed: 1 success: 3 purge_age: 60 labels: api: node_selector_key: openstack-control-plane node_selector_value: enabled cfn: node_selector_key: openstack-control-plane node_selector_value: enabled cloudwatch: node_selector_key: openstack-control-plane node_selector_value: enabled engine: node_selector_key: openstack-control-plane node_selector_value: enabled job: node_selector_key: openstack-control-plane node_selector_value: enabled test: node_selector_key: openstack-control-plane node_selector_value: enabled manifests: certificates: false configmap_bin: true configmap_etc: true cron_job_engine_cleaner: true cron_job_purge_deleted: true deployment_api: true deployment_cfn: true deployment_cloudwatch: false deployment_engine: true ingress_api: false ingress_cfn: false ingress_cloudwatch: false job_bootstrap: true job_db_drop: false job_db_init: true job_db_sync: true job_image_repo_sync: true job_ks_endpoints: true job_ks_service: true job_ks_user: true job_ks_user_domain: true job_ks_user_trustee: true job_rabbit_init: true network_policy: false pdb_api: true pdb_cfn: true pdb_cloudwatch: false pod_rally_test: true secret_db: true secret_ingress_tls: true secret_keystone: true secret_rabbitmq: true secret_registry: true service_api: true service_cfn: true service_cloudwatch: false service_ingress_api: false service_ingress_cfn: false service_ingress_cloudwatch: false statefulset_engine: false network: api: external_policy_local: false ingress: annotations: nginx.ingress.kubernetes.io/rewrite-target: / classes: cluster: nginx-cluster namespace: nginx public: true node_port: enabled: false port: 30004 cfn: ingress: annotations: nginx.ingress.kubernetes.io/rewrite-target: / classes: cluster: nginx-cluster namespace: nginx public: true node_port: enabled: false port: 30800 cloudwatch: ingress: annotations: nginx.ingress.kubernetes.io/rewrite-target: / classes: cluster: nginx-cluster namespace: nginx public: true node_port: enabled: false port: 30003 network_policy: heat: egress: - {} ingress: - {} pod: affinity: anti: topologyKey: default: kubernetes.io/hostname type: default: preferredDuringSchedulingIgnoredDuringExecution weight: default: 10 labels: include_app_kubernetes_io: false lifecycle: disruption_budget: api: min_available: 0 cfn: min_available: 0 cloudwatch: min_available: 0 termination_grace_period: api: timeout: 30 cfn: timeout: 30 cloudwatch: timeout: 30 engine: timeout: 30 upgrades: deployments: pod_replacement_strategy: RollingUpdate revision_history: 3 rolling_update: max_surge: 3 max_unavailable: 1 mounts: heat_api: heat_api: volumeMounts: null volumes: null init_container: null heat_bootstrap: heat_bootstrap: volumeMounts: null volumes: null init_container: null heat_cfn: heat_cfn: volumeMounts: null volumes: null init_container: null heat_cloudwatch: heat_cloudwatch: volumeMounts: null volumes: null init_container: null heat_db_sync: heat_db_sync: volumeMounts: null volumes: null heat_engine: heat_engine: volumeMounts: null volumes: null init_container: null heat_engine_cleaner: heat_engine_cleaner: volumeMounts: null volumes: null init_container: null heat_purge_deleted: heat_purge_deleted: volumeMounts: null volumes: null init_container: null heat_tests: heat_tests: volumeMounts: null volumes: null init_container: null heat_trusts: heat_trusts: volumeMounts: null volumes: null init_container: null replicas: api: 1 cfn: 1 cloudwatch: 1 engine: 1 resources: api: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi cfn: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi cloudwatch: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi enabled: false engine: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi jobs: bootstrap: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi db_drop: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi db_init: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi db_sync: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi engine_cleaner: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi image_repo_sync: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi ks_endpoints: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi ks_service: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi ks_user: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi purge_deleted: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 124Mi rabbit_init: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi tests: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi trusts: limits: cpu: 2000m memory: 1024Mi requests: cpu: 100m memory: 128Mi security_context: engine_cleaner: container: heat_engine_cleaner: allowPrivilegeEscalation: false readOnlyRootFilesystem: true pod: runAsUser: 42424 heat: container: heat_api: allowPrivilegeEscalation: false readOnlyRootFilesystem: true heat_cfn: allowPrivilegeEscalation: false readOnlyRootFilesystem: true heat_cloudwatch: allowPrivilegeEscalation: false readOnlyRootFilesystem: true heat_engine: allowPrivilegeEscalation: false readOnlyRootFilesystem: true pod: runAsUser: 42424 ks_user: container: heat_ks_domain_user: allowPrivilegeEscalation: false readOnlyRootFilesystem: true pod: runAsUser: 42424 trusts: container: heat_trusts: allowPrivilegeEscalation: false readOnlyRootFilesystem: true pod: runAsUser: 42424 tolerations: heat: enabled: false tolerations: - effect: NoSchedule key: node-role.kubernetes.io/master operator: Exists - effect: NoSchedule key: node-role.kubernetes.io/control-plane operator: Exists release_group: null secrets: identity: admin: heat-keystone-admin heat: heat-keystone-user heat_stack_user: heat-keystone-stack-user heat_trustee: heat-keystone-trustee test: heat-keystone-test oci_image_registry: heat: heat-oci-image-registry oslo_db: admin: heat-db-admin heat: heat-db-user oslo_messaging: admin: heat-rabbitmq-admin heat: heat-rabbitmq-user tls: cloudformation: cfn: internal: heat-tls-cfn public: cloudformation-tls-public orchestration: api: internal: heat-tls-api public: heat-tls-public tls: identity: false oslo_db: false oslo_messaging: false