Glance¶
apiVersion: yaook.cloud/v1
kind: GlanceDeployment
metadata:
name: glance
spec:
keystoneRef:
name: keystone
database:
replicas: 1
proxy:
replicas: 1
backup:
schedule: "0 * * * *"
memcached: {}
api:
replicas: 1
ingress:
fqdn: "glance.yaook.cloud"
port: 32443
glanceConfig:
glance_store:
default_store: "rbd"
backends:
ceph:
keyringReference: glance-client-key
keyringUsername: glance
keyringPoolname: glance-pool
# cephConfig:
# global:
# "mon_host": "rook-ceph-mon-a.rook-ceph:6789,rook-ceph-mon-b.rook-ceph:6789,rook-ceph-mon-c.rook-ceph:6789"
region:
name: MyRegion
policy:
"context_is_admin": "role:admin"
issuerRef:
name: ca-issuer
targetRelease: train
Glance using a file based backend¶
Note that your selected Storageclass muss support ReadWriteMany Volumes
apiVersion: yaook.cloud/v1
kind: GlanceDeployment
metadata:
name: glance
spec:
keystoneRef:
name: keystone
database:
replicas: 1
proxy:
replicas: 1
backup:
schedule: "0 * * * *"
memcached: {}
api:
replicas: 1
ingress:
fqdn: "glance.yaook.cloud"
port: 32443
glanceConfig:
glance_store:
default_store: "file"
backends:
file:
storageSize: 150G
storageClassName: mycoolstorageclass
region:
name: MyRegion
policy:
"context_is_admin": "role:admin"
issuerRef:
name: ca-issuer
targetRelease: train
Specifying secrets in the configuration¶
To include confidential values in the configuration you can use glanceSecrets. This allows use to reference an external secret which is included at a specific path in the configuration
apiVersion: v1
kind: Secret
metadata:
name: mysecret
data:
mykey: "SomeValueAsBase64"
---
apiVersion: yaook.cloud/v1
kind: GlanceDeployment
metadata:
name: glance
spec:
keystoneRef:
name: keystone
database:
replicas: 1
proxy:
replicas: 1
backup:
schedule: "0 * * * *"
memcached: {}
api:
replicas: 1
ingress:
fqdn: "glance.yaook.cloud"
port: 32443
glanceConfig:
glance_store:
default_store: "rbd"
glanceSecrets:
- secretName: mysecret
items:
- key: mykey
path: /DEFAULT/transport_url
backends:
ceph:
keyringReference: glance-client-key
keyringUsername: glance
keyringPoolname: glance-pool
# cephConfig:
# global:
# "mon_host": "rook-ceph-mon-a.rook-ceph:6789,rook-ceph-mon-b.rook-ceph:6789,rook-ceph-mon-c.rook-ceph:6789"
region:
name: MyRegion
policy:
"context_is_admin": "role:admin"
targetRelease: train