官方文档安装在 on the controller node,本文档使用新的节点安装
Heat编排服务组件
The Orchestration service consists of the following components:
heat command-line client
A CLI that communicates with the heat-api to run AWS CloudFormation APIs. End developers can directly use the Orchestration REST API.
heat-api component
An OpenStack-native REST API that processes API requests by sending them to the heat-engine over Remote Procedure Call (RPC).
heat-api-cfn component
An AWS Query API that is compatible with AWS CloudFormation. It processes API requests by sending them to the heat-engine over RPC.
heat-engine
Orchestrates the launching of templates and provides events back to the API consumer.
1、创建数据库
root@storage:~# apt-get install mysql-server -y
root@storage:~# mysql -uroot -p
Enter password: zoomtech
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 5
Server version: 5.7.13-0ubuntu0.16.04.2 (Ubuntu)
Copyright (c) 2000, 2016, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
mysql> CREATE DATABASE heat;
Query OK, 1 row affected (0.00 sec)
mysql> GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'localhost' \
-> IDENTIFIED BY 'heat';
Query OK, 0 rows affected, 1 warning (0.00 sec)
mysql> GRANT ALL PRIVILEGES ON heat.* TO 'heat'@'%' \
-> IDENTIFIED BY 'heat';
Query OK, 0 rows affected, 1 warning (0.00 sec)
mysql> exit
Bye
2、向Keystone注册Heat服务
安装OpenStack和Keystone客户端
root@storage:~# apt install python-openstackclient -y
root@storage:~# apt-get install python-keystoneclient -y
准备admin用户身份环境
root@storage:~# cat admin-openrc
export OS_PROJECT_DOMAIN_NAME=default
export OS_USER_DOMAIN_NAME=default
export OS_PROJECT_NAME=admin
export OS_USERNAME=admin
export OS_PASSWORD=nova
export OS_AUTH_URL=http://controller:35357/v3
export OS_IDENTITY_API_VERSION=3
export OS_IMAGE_API_VERSION=2
root@storage:~# . admin-openrc
创建heat用户
root@storage:~# openstack user create --domain default --password-prompt heat
User Password: heat
Repeat User Password: heat
+-----------+----------------------------------+
| Field | Value |
+-----------+----------------------------------+
| domain_id | 336cb165bf0b49668e2d63d31d5d0501 |
| enabled | True |
| id | 748b4048ebb94b16920205f85e420f5f |
| name | heat |
+-----------+----------------------------------+
给heat添加admin角色
root@storage:~# openstack role add --project service --user heat admin
root@storage:~# vim /etc/heat/heat.conf
[DEFAULT]
#In the [DEFAULT] and [oslo_messaging_rabbit] sections, configure RabbitMQ message queue access:
rpc_backend = rabbit
auth_strategy = keystone
#In the [DEFAULT] section, configure the metadata and wait condition URLs:
heat_metadata_server_url = http://controller:8000
heat_waitcondition_server_url = http://controller:8000/v1/waitcondition
#In the [DEFAULT] section, configure the stack domain and administrative credentials:
stack_domain_admin = heat_domain_admin
stack_domain_admin_password = $heat_passwd
stack_user_domain_name = heat
#Replace heat with the password you chose for the heat_domain_admin user in the Identity service.
[oslo_messaging_rabbit]
rabbit_host = controller
rabbit_userid = openstack
rabbit_password = nova
#Replace nova with the password you chose for the openstack account in RabbitMQ.
[database]
connection = mysql+pymysql://heat:heat@localhost/heat
#Replace heat with the password you chose for the Orchestration database.
#Replace mysql node "storage" with your heat node.
#In the [keystone_authtoken], [trustee], [clients_keystone], and [ec2authtoken] sections, configure Identity service access:
[keystone_authtoken]
auth_uri = http://controller:5000
auth_url = http://controller:35357
memcached_servers = controller:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = heat
password = heat
#Replace heat with the password you chose for the heat user in the Identity service.
[trustee]
auth_plugin = password
auth_url = http://controller:35357
username = heat
password = heat
user_domain_name = default
[clients_keystone]
auth_uri = http://controller:35357
[ec2authtoken]
auth_uri = http://controller:5000
同步数据库
root@storage:/etc/heat# su -s /bin/sh -c "heat-manage db_sync" heat
启动服务
root@storage:~# service heat-api restart
root@storage:~# service heat-api-cfn restart
root@storage:~# service heat-engine restart
服务验证:三个服务的进程
root@storage:~# ps -A | grep heat
48413 ? 00:00:02 heat-engine
48733 ? 00:00:00 heat-api
48786 ? 00:00:01 heat-api-cfn
root@storage:~# ps aux | grep heat
root 39866 0.0 0.0 16192 6208 pts/1 S+ Aug17 0:00 mysql -u heat -p -h localhost
heat 48265 1.3 0.1 166400 127360 ? Ss 11:04 0:03 /usr/bin/python /usr/bin/heat-engine --config-file=/etc/heat/heat.conf --log-file=/var/log
/heat/heat-engine.log
heat 48628 0.0 0.1 158080 102528 ? S 11:05 0:00 /usr/bin/python /usr/bin/heat-api --config-file=/etc/heat/heat.conf --log-file=/var/log/he
at/heat-api.log
heat 48786 0.5 0.1 157568 117376 ? Ss 11:05 0:01 /usr/bin/python /usr/bin/heat-api-cfn --config-file=/etc/heat/heat.conf --log-file=/var/lo
g/heat/heat-api-cfn.log
查询端口:heat服务工作在8000和8004端口
root@storage:~# netstat -ltunp | grep 8000
tcp 0 0 0.0.0.0:8000 0.0.0.0:* LISTEN 46595/python
root@storage:~# netstat -ltunp | grep 8004
tcp 0 0 0.0.0.0:8004 0.0.0.0:* LISTEN 46434/python
查询heat日志,确认服务是否正常运行
root@storage:~# tail -n 10 /var/log/heat/heat-api.log
2016-08-18 09:59:02.676 46434 INFO heat.common.wsgi [-] Started child 46575
2016-08-18 09:59:02.678 46575 INFO eventlet.wsgi.server [-] (46575) wsgi starting up on http://0.0.0.0:8004
2016-08-18 09:59:02.678 46434 INFO heat.common.wsgi [-] Started child 46576
2016-08-18 09:59:02.681 46576 INFO eventlet.wsgi.server [-] (46576) wsgi starting up on http://0.0.0.0:8004
2016-08-18 09:59:02.681 46434 INFO heat.common.wsgi [-] Started child 46577
2016-08-18 09:59:02.683 46577 INFO eventlet.wsgi.server [-] (46577) wsgi starting up on http://0.0.0.0:8004
2016-08-18 09:59:02.684 46434 INFO heat.common.wsgi [-] Started child 46578
2016-08-18 09:59:02.685 46578 INFO eventlet.wsgi.server [-] (46578) wsgi starting up on http://0.0.0.0:8004
2016-08-18 09:59:02.686 46434 INFO heat.common.wsgi [-] Started child 46579
2016-08-18 09:59:02.688 46579 INFO eventlet.wsgi.server [-] (46579) wsgi starting up on http://0.0.0.0:8004
root@storage:~# tail -n 10 /var/log/heat/heat-api-cfn.log
2016-08-17 16:54:14.711 38821 WARNING keystonemiddleware.auth_token [-] Configuring admin URI using auth fragments was deprecated in the Kilo release, and will be removed in the N release, use 'identity_uri\ instead.
2016-08-17 16:54:14.711 38821 WARNING keystonemiddleware.auth_token [-] Configuring auth_uri to point to the public identity endpoint is required; clients may not be able to authenticate against an admin endpoint
2016-08-17 16:54:14.715 38821 INFO heat.api.cfn [-] Starting Heat API on 0.0.0.0:8000
2016-08-17 16:54:14.716 38821 WARNING oslo_reports.guru_meditation_report [-] Guru mediation now registers SIGUSR1 and SIGUSR2 by default for backward compatibility. SIGUSR1 will no longer be registered in a future release, so please use SIGUSR2 to generate reports.
2016-08-17 16:54:14.717 38821 INFO heat.common.wsgi [-] Starting single process server
2016-08-17 16:54:14.717 38821 INFO eventlet.wsgi.server [-] (38821) wsgi starting up on http://0.0.0.0:8000
2016-08-18 09:59:12.225 46595 INFO heat.api.cfn [-] Starting Heat API on 0.0.0.0:8000
2016-08-18 09:59:12.226 46595 WARNING oslo_reports.guru_meditation_report [-] Guru mediation now registers SIGUSR1 and SIGUSR2 by default for backward compatibility. SIGUSR1 will no longer be registered in a future release, so please use SIGUSR2 to generate reports.
2016-08-18 09:59:12.227 46595 INFO heat.common.wsgi [-] Starting single process server
2016-08-18 09:59:12.227 46595 INFO eventlet.wsgi.server [-] (46595) wsgi starting up on http://0.0.0.0:8000
root@storage:~# tail /var/log/heat/heat-engine.log
2016-08-18 11:06:54.708 48290 INFO heat.engine.service [req-dab8b000-ec0e-4208-986f-568d79ba2b44 - - - - -] Service 6e4d85aa-a0c4-42ba-93bb-f3e045f7c876 is updated
2016-08-18 11:06:54.708 48322 INFO heat.engine.service [req-4f6ad467-2e80-407f-92ab-7adc888f8b13 - - - - -] Service 1b9829bd-6540-4534-a0cb-8ff78578e0b9 is updated
2016-08-18 11:06:54.708 48329 INFO heat.engine.service [req-3f5e440b-e308-46bc-9e82-450d189cba53 - - - - -] Service 012ed06b-cc22-49d5-ad8f-27ad3af38691 is updated
2016-08-18 11:06:54.708 48352 INFO heat.engine.service [req-111f1975-3118-44db-93f2-1ad828342e07 - - - - -] Service 61883e3c-265d-495b-8f36-241d6909e491 is updated
2016-08-18 11:06:54.708 48284 INFO heat.engine.service [req-2d808b38-8746-409f-8c1f-225ee5fdf83f - - - - -] Service b531cd81-60d3-4841-a738-e74f49ca1606 is updated
2016-08-18 11:06:54.753 48317 INFO heat.engine.service [req-324789aa-0dee-4f76-ad80-a360155d49fe - - - - -] Service a37cf2eb-d7af-4d2d-97bc-0d71858cf318 is updated
2016-08-18 11:06:54.783 48345 INFO heat.engine.service [req-b5607198-0b7d-4138-adfa-6cef3ae673b4 - - - - -] Service 36b200b2-2eaf-42e7-8910-315728834961 is updated
2016-08-18 11:06:54.783 48298 INFO heat.engine.service [req-37254e4e-e2bc-4a2e-8437-e982167ac392 - - - - -] Service 85978b07-1189-4ded-a46a-6a9fc23f386f is updated
2016-08-18 11:06:54.783 48422 INFO heat.engine.service [req-79b2feb3-657c-4ec1-8add-5d8b15910e1b - - - - -] Service 37a99d3b-6309-42de-b922-152673f8caa6 is updated
2016-08-18 11:06:54.783 48299 INFO heat.engine.service [req-77caaa7d-f263-448a-b4a6-060da57cc81a - - - - -] Service a9a02e13-bc27-4d9e-833a-6e1cbb68fcdb is updated
root@storage:~/heat# openstack service list
+----------------------------------+----------+----------------+
| ID | Name | Type |
+----------------------------------+----------+----------------+
| 3cb8f6fab4e54437a4ecf4007a9fc0a6 | cinder | volume |
| 440962187ab0433b9e27ac8b7f181a7c | keystone | identity |
| 87cee2d4b1d445c9bc8715b1b83bbf6c | nova | compute |
| b4020f307f8a47bab274adb8d00dd954 | cinderv2 | volumev2 |
| c6960664ab714336b085a59fff5ae68a | swift | object-store |
| c75b4f0612f64e31bf4710ee1cbb0066 | glance | p_w_picpath |
| cfb21a0c73704d51848ce208bce62cec | heat-cfn | cloudformation |
| d4de96e73e184eaea59776fd549900d3 | neutron | network |
| ef1a98be03014f3a86e891569b074d16 | heat | orchestration |
| f95cb598c8134a6a834f7d435c433985 | swift | object-store |
+----------------------------------+----------+----------------+
root@storage:~#
root@storage:~# openstack orchestration service list
创建template
root@storage:~/heat# cat demo-template.yml
heat_template_version: 2015-10-15
description: Launch a basic instance with CirrOS p_w_picpath using the
``m1.tiny`` flavor, ``mykey`` key, and one network.
parameters:
NetID:
type: string
description: Network ID to use for the instance.
resources:
server:
type: OS::Nova::Server
properties:
p_w_picpath: { get_parm: Image_ID }
flavor: zoom.medium
key_name: key
networks:
- network: { get_param: Net_ID }
outputs:
instance_name:
description: Name of the instance.
value: { get_attr: [ server, name ] }
instance_ip:
description: IP address of the instance.
value: { get_attr: [ server, first_address ] }
创建Stack
root@storage:~/heat# vim create_stack.sh
IMAGE_ID=$(nova p_w_picpath-list | awk '/ Ubuntu16.04-server-clouding-powerpc64el / { print $2 }')
NET_ID=$(openstack network list | awk '/ private / { print $2 }')
heat stack-create Ubuntu-clouding.stack -f demo-template.yml \
-P Image_ID=$IMAGE_ID \
-P Net_ID=$NET_ID \
#openstack stack create -t demo-template.yml --parameter "NetID=$NET_ID" --parameter "Net_ID=$IMAGE_ID" stack