glance-api.conf

1. [DEFAULT]
2. # Show more verbose log output (sets INFO log level output)
3. verbose = True
4.  
5. # Show debugging output in logs (sets DEBUG log level output)
6. debug = False
7.  
8. # Which backend store should Glance use by default is not specified
9. # in a request to add a new image to Glance? Default: 'file'
10. # Available choices are 'file', 'swift', and 's3'
11. default_store = file
12.  
13. # Address to bind the API server
14. bind_host = 0.0.0.0
15.  
16. # Port the bind the API server to
17. bind_port = 9292
18.  
19. # Log to this file. Make sure you do not set the same log
20. # file for both the API and registry servers!
21. log_file = /var/log/glance/api.log
22.  
23. # Backlog requests when creating socket
24. backlog = 4096
25.  
26. # Number of Glance API worker processes to start.
27. # On machines with more than one CPU increasing this value
28. # may improve performance (especially if using SSL with
29. # compression turned on). It is typically recommended to set
30. # this value to the number of CPUs present on your machine.
31. workers = 0
32.  
33. # Role used to identify an authenticated user as administrator
34. #admin_role = admin
35.  
36. # ================= Syslog Options ============================
37.  
38. # Send logs to syslog (/dev/log) instead of to file specified
39. # by `log_file`
40. use_syslog = False
41.  
42. # Facility to use. If unset defaults to LOG_USER.
43. # syslog_log_facility = LOG_LOCAL0
44.  
45. # ================= SSL Options ===============================
46.  
47. # Certificate file to use when starting API server securely
48. # cert_file = /path/to/certfile
49.  
50. # Private key file to use when starting API server securely
51. # key_file = /path/to/keyfile
52.  
53. # ================= Security Options ==========================
54.  
55. # AES key for encrypting store 'location' metadata, including
56. # -- if used -- Swift or S3 credentials
57. # Should be set to a random string of length 16, 24 or 32 bytes
58. # metadata_encryption_key = <16, 24 or 32 char registry metadata key>
59.  
60. # ============ Registry Options ===============================
61.  
62. # Address to find the registry server
63. registry_host = 0.0.0.0
64.  
65. # Port the registry server is listening on
66. registry_port = 9191
67.  
68. # What protocol to use when connecting to the registry server?
69. # Set to https for secure HTTP communication
70. registry_client_protocol = http
71.  
72. # The path to the key file to use in SSL connections to the
73. # registry server, if any. Alternately, you may set the
74. # GLANCE_CLIENT_KEY_FILE environ variable to a filepath of the key file
75. # registry_client_key_file = /path/to/key/file
76.  
77. # The path to the cert file to use in SSL connections to the
78. # registry server, if any. Alternately, you may set the
79. # GLANCE_CLIENT_CERT_FILE environ variable to a filepath of the cert file
80. # registry_client_cert_file = /path/to/cert/file
81.  
82. # The path to the certifying authority cert file to use in SSL connections
83. # to the registry server, if any. Alternately, you may set the
84. # GLANCE_CLIENT_CA_FILE environ variable to a filepath of the CA cert file
85. # registry_client_ca_file = /path/to/ca/file
86.  
87. # ============ Notification System Options =====================
88.  
89. # Notifications can be sent when images are create, updated or deleted.
90. # There are three methods of sending notifications, logging (via the
91. # log_file directive), rabbit (via a rabbitmq queue), qpid (via a Qpid
92. # message queue), or noop (no notifications sent, the default)
93. notifier_strategy = noop
94.  
95. # Configuration options if sending notifications via rabbitmq (these are
96. # the defaults)
97. rabbit_host = localhost
98. rabbit_port = 5672
99. rabbit_use_ssl = false
100. rabbit_userid = guest
101. rabbit_password = guest
102. rabbit_virtual_host = /
103. rabbit_notification_exchange = glance
104. rabbit_notification_topic = glance_notifications
105.  
106. # Configuration options if sending notifications via Qpid (these are
107. # the defaults)
108. qpid_notification_exchange = glance
109. qpid_notification_topic = glance_notifications
110. qpid_host = localhost
111. qpid_port = 5672
112. qpid_username =
113. qpid_password =
114. qpid_sasl_mechanisms =
115. qpid_reconnect_timeout = 0
116. qpid_reconnect_limit = 0
117. qpid_reconnect_interval_min = 0
118. qpid_reconnect_interval_max = 0
119. qpid_reconnect_interval = 0
120. qpid_heartbeat = 5
121. # Set to 'ssl' to enable SSL
122. qpid_protocol = tcp
123. qpid_tcp_nodelay = True
124.  
125. # ============ Filesystem Store Options ========================
126.  
127. # Directory that the Filesystem backend store
128. # writes image data to
129. filesystem_store_datadir = /var/lib/glance/images/
130.  
131. # ============ Swift Store Options =============================
132.  
133. # Version of the authentication service to use
134. # Valid versions are '2' for keystone and '1' for swauth and rackspace
135. swift_store_auth_version = 2
136.  
137. # Address where the Swift authentication service lives
138. # Valid schemes are 'http://' and 'https://'
139. # If no scheme specified, default to 'https://'
140. # For swauth, use something like '127.0.0.1:8080/v1.0/'
141. swift_store_auth_address = 127.0.0.1:35357/v2.0/
142.  
143. # User to authenticate against the Swift authentication service
144. # If you use Swift authentication service, set it to 'account':'user'
145. # where 'account' is a Swift storage account and 'user'
146. # is a user in that account
147. swift_store_user = jdoe:jdoe
148.  
149. # Auth key for the user authenticating against the
150. # Swift authentication service
151. swift_store_key = a86850deb2742ec3cb41518e26aa2d89
152.  
153. # Container within the account that the account should use
154. # for storing images in Swift
155. swift_store_container = glance
156.  
157. # Do we create the container if it does not exist?
158. swift_store_create_container_on_put = False
159.  
160. # What size, in MB, should Glance start chunking image files
161. # and do a large object manifest in Swift? By default, this is
162. # the maximum object size in Swift, which is 5GB
163. swift_store_large_object_size = 5120
164.  
165. # When doing a large object manifest, what size, in MB, should
166. # Glance write chunks to Swift? This amount of data is written
167. # to a temporary disk buffer during the process of chunking
168. # the image file, and the default is 200MB
169. swift_store_large_object_chunk_size = 200
170.  
171. # Whether to use ServiceNET to communicate with the Swift storage servers.
172. # (If you aren't RACKSPACE, leave this False!)
173. #
174. # To use ServiceNET for authentication, prefix hostname of
175. # `swift_store_auth_address` with 'snet-'.
176. # Ex. https://example.com/v1.0/ -> https://snet-example.com/v1.0/
177. swift_enable_snet = False
178.  
179. # ============ S3 Store Options =============================
180.  
181. # Address where the S3 authentication service lives
182. # Valid schemes are 'http://' and 'https://'
183. # If no scheme specified, default to 'http://'
184. s3_store_host = 127.0.0.1:8080/v1.0/
185.  
186. # User to authenticate against the S3 authentication service
187. s3_store_access_key = <20-char AWS access key>
188.  
189. # Auth key for the user authenticating against the
190. # S3 authentication service
191. s3_store_secret_key = <40-char AWS secret key>
192.  
193. # Container within the account that the account should use
194. # for storing images in S3. Note that S3 has a flat namespace,
195. # so you need a unique bucket name for your glance images. An
196. # easy way to do this is append your AWS access key to "glance".
197. # S3 buckets in AWS *must* be lowercased, so remember to lowercase
198. # your AWS access key if you use it in your bucket name below!
199. s3_store_bucket = <lowercased 20-char aws access key>glance
200.  
201. # Do we create the bucket if it does not exist?
202. s3_store_create_bucket_on_put = False
203.  
204. # When sending images to S3, the data will first be written to a
205. # temporary buffer on disk. By default the platform's temporary directory
206. # will be used. If required, an alternative directory can be specified here.
207. # s3_store_object_buffer_dir = /path/to/dir
208.  
209. # ============ RBD Store Options =============================
210.  
211. # Ceph configuration file path
212. # If using cephx authentication, this file should
213. # include a reference to the right keyring
214. # in a client.<USER> section
215. rbd_store_ceph_conf = /etc/ceph/ceph.conf
216.  
217. # RADOS user to authenticate as (only applicable if using cephx)
218. rbd_store_user = glance
219.  
220. # RADOS pool in which images are stored
221. rbd_store_pool = images
222.  
223. # Images will be chunked into objects of this size (in megabytes).
224. # For best performance, this should be a power of two
225. rbd_store_chunk_size = 8
226.  
227. # ============ Delayed Delete Options =============================
228.  
229. # Turn on/off delayed delete
230. delayed_delete = False
231.  
232. # Delayed delete time in seconds
233. scrub_time = 43200
234.  
235. # Directory that the scrubber will use to remind itself of what to delete
236. # Make sure this is also set in glance-scrubber.conf
237. scrubber_datadir = /var/lib/glance/scrubber
238.  
239. # =============== Image Cache Options =============================
240.  
241. # Base directory that the Image Cache uses
242. image_cache_dir = /var/lib/glance/image-cache/
243.  
244. #[paste_deploy]
245. # flavor = keystone