API tools faq
paste
Guest User

Untitled

a guest
Feb 13th, 2017
63
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 27.44 KB | None | 0 0
raw download clone embed print report
  1. # -*- coding: utf-8 -*-
  2.  
  3. import os
  4.  
  5. from django.utils.translation import ugettext_lazy as _
  6.  
  7. from horizon.utils import secret_key
  8.  
  9. from openstack_dashboard import exceptions
  10. from openstack_dashboard.settings import HORIZON_CONFIG
  11.  
  12. DEBUG = True
  13. TEMPLATE_DEBUG = DEBUG
  14. COMPRESS_ENABLED = False
  15. COMPRESS_OFFLINE = False
  16.  
  17.  
  18. # WEBROOT is the location relative to Webserver root
  19. # should end with a slash.
  20. WEBROOT = '/'
  21. #LOGIN_URL = WEBROOT + 'auth/login/'
  22. #LOGOUT_URL = WEBROOT + 'auth/logout/'
  23. ROOT_URLCONF = 'openstack_dashboard.public.urls'
  24.  
  25. SMTP_SERVER = "smtp.gmail.com"
  26. SMTP_FROM_ADDR = "nubeliu.billing.demo@gmail.com"
  27. SMTP_USER = "nubeliu.billing.demo@gmail.com"
  28. SMTP_PASSWORD = "nubel1u20i5b1ll1ng"
  29. SMTP_PORT = 465
  30. SMTP_SSL = "yes"
  31. SMTP_TIMEOUT = 5
  32.  
  33. ACCOUNT_MGR_CREDENTIALS_USER = "seba"
  34. ACCOUNT_MGR_CREDENTIALS_PWD = "Sebaseba"
  35. ACCOUNT_MGR_CREDENTIALS_TENANT = "admin"
  36.  
  37. # django-recaptcha installed by billing-ui requeriments.txt
  38. # You need to register a domain on https://www.google.com/recaptcha
  39. # Recaptcha will give you a public and private key. Set them here
  40. #
  41. RECAPTCHA_PUBLIC_KEY = '6LfMXBETAAAAAMn77j74BUxtXLbgUzBcSedjDPcM'
  42. RECAPTCHA_PRIVATE_KEY = '6LfMXBETAAAAAKw_Jcna5HzdxiAJ9TVEy5G3ICPv'
  43. NOCAPTCHA = True # This will always use SSL
  44.  
  45. SWIFT_DEFAULT_QUOTA = 102400
  46.  
  47. #
  48. # LOGIN_REDIRECT_URL can be used as an alternative for
  49. # HORIZON_CONFIG.user_home, if user_home is not set.
  50. # Do not set it to '/home/', as this will cause circular redirect loop
  51. #LOGIN_REDIRECT_URL = WEBROOT
  52.  
  53. # If horizon is running in production (DEBUG is False), set this
  54. # with the list of host/domain names that the application can serve.
  55. # For more information see:
  56. # https://docs.djangoproject.com/en/dev/ref/settings/#allowed-hosts
  57. #ALLOWED_HOSTS = ['horizon.example.com', ]
  58.  
  59. # Set SSL proxy settings:
  60. # Pass this header from the proxy after terminating the SSL,
  61. # and don't forget to strip it from the client's request.
  62. # For more information see:
  63. # https://docs.djangoproject.com/en/1.8/ref/settings/#secure-proxy-ssl-header
  64. #SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
  65.  
  66. # If Horizon is being served through SSL, then uncomment the following two
  67. # settings to better secure the cookies from security exploits
  68. #CSRF_COOKIE_SECURE = True
  69. #SESSION_COOKIE_SECURE = True
  70.  
  71. # The absolute path to the directory where message files are collected.
  72. # The message file must have a .json file extension. When the user logins to
  73. # horizon, the message files collected are processed and displayed to the user.
  74. #MESSAGES_PATH=None
  75.  
  76. # Overrides for OpenStack API versions. Use this setting to force the
  77. # OpenStack dashboard to use a specific API version for a given service API.
  78. # Versions specified here should be integers or floats, not strings.
  79. # NOTE: The version should be formatted as it appears in the URL for the
  80. # service API. For example, The identity service APIs have inconsistent
  81. # use of the decimal point, so valid options would be 2.0 or 3.
  82. OPENSTACK_API_VERSIONS = {
  83. # "data-processing": 1.1,
  84. "identity": 3,
  85. # "volume": 2,
  86. # "compute": 2,
  87. }
  88.  
  89. # Set this to True if running on multi-domain model. When this is enabled, it
  90. # will require user to enter the Domain name in addition to username for login.
  91. #OPENSTACK_KEYSTONE_MULTIDOMAIN_SUPPORT = False
  92.  
  93. # Overrides the default domain used when running on single-domain model
  94. # with Keystone V3. All entities will be created in the default domain.
  95. # NOTE: This value must be the ID of the default domain, NOT the name.
  96. # Also, you will most likely have a value in the keystone policy file like this
  97. # "cloud_admin": "rule:admin_required and domain_id:<your domain id>"
  98. # This value must match the domain id specified there.
  99. #OPENSTACK_KEYSTONE_DEFAULT_DOMAIN = 'default'
  100.  
  101. # Set this to True to enable panels that provide the ability for users to
  102. # manage Identity Providers (IdPs) and establish a set of rules to map
  103. # federation protocol attributes to Identity API attributes.
  104. # This extension requires v3.0+ of the Identity API.
  105. #OPENSTACK_KEYSTONE_FEDERATION_MANAGEMENT = False
  106.  
  107. # Set Console type:
  108. # valid options are "AUTO"(default), "VNC", "SPICE", "RDP", "SERIAL" or None
  109. # Set to None explicitly if you want to deactivate the console.
  110. #CONSOLE_TYPE = "AUTO"
  111.  
  112. # If provided, a "Report Bug" link will be displayed in the site header
  113. # which links to the value of this setting (ideally a URL containing
  114. # information on how to report issues).
  115. #HORIZON_CONFIG["bug_url"] = "http://bug-report.example.com"
  116.  
  117. # Show backdrop element outside the modal, do not close the modal
  118. # after clicking on backdrop.
  119. #HORIZON_CONFIG["modal_backdrop"] = "static"
  120.  
  121. # Specify a regular expression to validate user passwords.
  122. HORIZON_CONFIG["password_validator"] = {
  123. "regex": '.*',
  124. "help_text": _("Your password does not meet the requirements."),
  125. }
  126.  
  127. # Disable simplified floating IP address management for deployments with
  128. # multiple floating IP pools or complex network requirements.
  129. #HORIZON_CONFIG["simple_ip_management"] = False
  130.  
  131. # Turn off browser autocompletion for forms including the login form and
  132. # the database creation workflow if so desired.
  133. #HORIZON_CONFIG["password_autocomplete"] = "off"
  134.  
  135. # Setting this to True will disable the reveal button for password fields,
  136. # including on the login form.
  137. #HORIZON_CONFIG["disable_password_reveal"] = False
  138.  
  139. LOCAL_PATH = os.path.dirname(os.path.abspath(__file__))
  140.  
  141. # Set custom secret key:
  142. # You can either set it to a specific value or you can let horizon generate a
  143. # default secret key that is unique on this machine, e.i. regardless of the
  144. # amount of Python WSGI workers (if used behind Apache+mod_wsgi): However,
  145. # there may be situations where you would want to set this explicitly, e.g.
  146. # when multiple dashboard instances are distributed on different machines
  147. # (usually behind a load-balancer). Either you have to make sure that a session
  148. # gets all requests routed to the same dashboard instance or you set the same
  149. # SECRET_KEY for all of them.
  150. SECRET_KEY = secret_key.generate_or_read_from_file(
  151. os.path.join(LOCAL_PATH, '.secret_key_store'))
  152.  
  153. # We recommend you use memcached for development; otherwise after every reload
  154. # of the django development server, you will have to login again. To use
  155. # memcached set CACHES to something like
  156. SESSION_ENGINE = 'django.contrib.sessions.backends.cache'
  157. CACHES = {
  158. 'default': {
  159. 'BACKEND': 'django.core.cache.backends.memcached.MemcachedCache',
  160. 'LOCATION': '10.10.10.25:11211',
  161. },
  162. }
  163.  
  164. # Send email to the console by default
  165. EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
  166. # Or send them to /dev/null
  167. #EMAIL_BACKEND = 'django.core.mail.backends.dummy.EmailBackend'
  168.  
  169. # Configure these for your outgoing email host
  170. #EMAIL_HOST = 'smtp.my-company.com'
  171. #EMAIL_PORT = 25
  172. #EMAIL_HOST_USER = 'djangomail'
  173. #EMAIL_HOST_PASSWORD = 'top-secret!'
  174.  
  175. # For multiple regions uncomment this configuration, and add (endpoint, title).
  176. #AVAILABLE_REGIONS = [
  177. # ('http://cluster1.example.com:5000/v2.0', 'cluster1'),
  178. # ('http://cluster2.example.com:5000/v2.0', 'cluster2'),
  179. #]
  180.  
  181. OPENSTACK_HOST = "10.10.10.252"
  182. OPENSTACK_KEYSTONE_URL = "http://%s:5000/v3" % OPENSTACK_HOST
  183. OPENSTACK_KEYSTONE_DEFAULT_ROLE = "_member_"
  184.  
  185. # Enables keystone web single-sign-on if set to True.
  186. #WEBSSO_ENABLED = False
  187.  
  188. # Determines which authentication choice to show as default.
  189. #WEBSSO_INITIAL_CHOICE = "credentials"
  190.  
  191. # The list of authentication mechanisms which include keystone
  192. # federation protocols and identity provider/federation protocol
  193. # mapping keys (WEBSSO_IDP_MAPPING). Current supported protocol
  194. # IDs are 'saml2' and 'oidc' which represent SAML 2.0, OpenID
  195. # Connect respectively.
  196. # Do not remove the mandatory credentials mechanism.
  197. # Note: The last two tuples are sample mapping keys to a identity provider
  198. # and federation protocol combination (WEBSSO_IDP_MAPPING).
  199. #WEBSSO_CHOICES = (
  200. # ("credentials", _("Keystone Credentials")),
  201. # ("oidc", _("OpenID Connect")),
  202. # ("saml2", _("Security Assertion Markup Language")),
  203. # ("acme_oidc", "ACME - OpenID Connect"),
  204. # ("acme_saml2", "ACME - SAML2"),
  205. #)
  206.  
  207. # A dictionary of specific identity provider and federation protocol
  208. # combinations. From the selected authentication mechanism, the value
  209. # will be looked up as keys in the dictionary. If a match is found,
  210. # it will redirect the user to a identity provider and federation protocol
  211. # specific WebSSO endpoint in keystone, otherwise it will use the value
  212. # as the protocol_id when redirecting to the WebSSO by protocol endpoint.
  213. # NOTE: The value is expected to be a tuple formatted as: (<idp_id>, <protocol_id>).
  214. #WEBSSO_IDP_MAPPING = {
  215. # "acme_oidc": ("acme", "oidc"),
  216. # "acme_saml2": ("acme", "saml2"),
  217. #}
  218.  
  219. # Disable SSL certificate checks (useful for self-signed certificates):
  220. #OPENSTACK_SSL_NO_VERIFY = True
  221.  
  222. # The CA certificate to use to verify SSL connections
  223. #OPENSTACK_SSL_CACERT = '/path/to/cacert.pem'
  224.  
  225. # The OPENSTACK_KEYSTONE_BACKEND settings can be used to identify the
  226. # capabilities of the auth backend for Keystone.
  227. # If Keystone has been configured to use LDAP as the auth backend then set
  228. # can_edit_user to False and name to 'ldap'.
  229. #
  230. # TODO(tres): Remove these once Keystone has an API to identify auth backend.
  231. OPENSTACK_KEYSTONE_BACKEND = {
  232. 'name': 'native',
  233. 'can_edit_user': True,
  234. 'can_edit_group': True,
  235. 'can_edit_project': True,
  236. 'can_edit_domain': True,
  237. 'can_edit_role': True,
  238. }
  239.  
  240. # Setting this to True, will add a new "Retrieve Password" action on instance,
  241. # allowing Admin session password retrieval/decryption.
  242. #OPENSTACK_ENABLE_PASSWORD_RETRIEVE = False
  243.  
  244. # The Launch Instance user experience has been significantly enhanced.
  245. # You can choose whether to enable the new launch instance experience,
  246. # the legacy experience, or both. The legacy experience will be removed
  247. # in a future release, but is available as a temporary backup setting to ensure
  248. # compatibility with existing deployments. Further development will not be
  249. # done on the legacy experience. Please report any problems with the new
  250. # experience via the Launchpad tracking system.
  251. #
  252. # Toggle LAUNCH_INSTANCE_LEGACY_ENABLED and LAUNCH_INSTANCE_NG_ENABLED to
  253. # determine the experience to enable. Set them both to true to enable
  254. # both.
  255. #LAUNCH_INSTANCE_LEGACY_ENABLED = True
  256. #LAUNCH_INSTANCE_NG_ENABLED = False
  257.  
  258. # A dictionary of settings which can be used to provide the default values for
  259. # properties found in the Launch Instance modal.
  260. #LAUNCH_INSTANCE_DEFAULTS = {
  261. # 'config_drive': False,
  262. #}
  263.  
  264. # The Xen Hypervisor has the ability to set the mount point for volumes
  265. # attached to instances (other Hypervisors currently do not). Setting
  266. # can_set_mount_point to True will add the option to set the mount point
  267. # from the UI.
  268. OPENSTACK_HYPERVISOR_FEATURES = {
  269. 'can_set_mount_point': False,
  270. 'can_set_password': False,
  271. 'requires_keypair': False,
  272. }
  273.  
  274. # The OPENSTACK_CINDER_FEATURES settings can be used to enable optional
  275. # services provided by cinder that is not exposed by its extension API.
  276. OPENSTACK_CINDER_FEATURES = {
  277. 'enable_backup': False,
  278. }
  279.  
  280. # The OPENSTACK_NEUTRON_NETWORK settings can be used to enable optional
  281. # services provided by neutron. Options currently available are load
  282. # balancer service, security groups, quotas, VPN service.
  283. OPENSTACK_NEUTRON_NETWORK = {
  284. 'enable_router': True,
  285. 'enable_quotas': True,
  286. 'enable_ipv6': True,
  287. 'enable_distributed_router': False,
  288. 'enable_ha_router': False,
  289. 'enable_lb': True,
  290. 'enable_firewall': True,
  291. 'enable_vpn': True,
  292. 'enable_fip_topology_check': True,
  293.  
  294. # Neutron can be configured with a default Subnet Pool to be used for IPv4
  295. # subnet-allocation. Specify the label you wish to display in the Address
  296. # pool selector on the create subnet step if you want to use this feature.
  297. 'default_ipv4_subnet_pool_label': None,
  298.  
  299. # Neutron can be configured with a default Subnet Pool to be used for IPv6
  300. # subnet-allocation. Specify the label you wish to display in the Address
  301. # pool selector on the create subnet step if you want to use this feature.
  302. # You must set this to enable IPv6 Prefix Delegation in a PD-capable
  303. # environment.
  304. 'default_ipv6_subnet_pool_label': None,
  305.  
  306. # The profile_support option is used to detect if an external router can be
  307. # configured via the dashboard. When using specific plugins the
  308. # profile_support can be turned on if needed.
  309. 'profile_support': None,
  310. #'profile_support': 'cisco',
  311.  
  312. # Set which provider network types are supported. Only the network types
  313. # in this list will be available to choose from when creating a network.
  314. # Network types include local, flat, vlan, gre, and vxlan.
  315. 'supported_provider_types': ['*'],
  316.  
  317. # Set which VNIC types are supported for port binding. Only the VNIC
  318. # types in this list will be available to choose from when creating a
  319. # port.
  320. # VNIC types include 'normal', 'macvtap' and 'direct'.
  321. # Set to empty list or None to disable VNIC type selection.
  322. 'supported_vnic_types': ['*'],
  323. }
  324.  
  325. # The OPENSTACK_HEAT_STACK settings can be used to disable password
  326. # field required while launching the stack.
  327. OPENSTACK_HEAT_STACK = {
  328. 'enable_user_pass': True,
  329. }
  330.  
  331. # The OPENSTACK_IMAGE_BACKEND settings can be used to customize features
  332. # in the OpenStack Dashboard related to the Image service, such as the list
  333. # of supported image formats.
  334. #OPENSTACK_IMAGE_BACKEND = {
  335. # 'image_formats': [
  336. # ('', _('Select format')),
  337. # ('aki', _('AKI - Amazon Kernel Image')),
  338. # ('ami', _('AMI - Amazon Machine Image')),
  339. # ('ari', _('ARI - Amazon Ramdisk Image')),
  340. # ('docker', _('Docker')),
  341. # ('iso', _('ISO - Optical Disk Image')),
  342. # ('ova', _('OVA - Open Virtual Appliance')),
  343. # ('qcow2', _('QCOW2 - QEMU Emulator')),
  344. # ('raw', _('Raw')),
  345. # ('vdi', _('VDI - Virtual Disk Image')),
  346. # ('vhd', _('VHD - Virtual Hard Disk')),
  347. # ('vmdk', _('VMDK - Virtual Machine Disk')),
  348. # ],
  349. #}
  350.  
  351. # The IMAGE_CUSTOM_PROPERTY_TITLES settings is used to customize the titles for
  352. # image custom property attributes that appear on image detail pages.
  353. IMAGE_CUSTOM_PROPERTY_TITLES = {
  354. "architecture": _("Architecture"),
  355. "kernel_id": _("Kernel ID"),
  356. "ramdisk_id": _("Ramdisk ID"),
  357. "image_state": _("Euca2ools state"),
  358. "project_id": _("Project ID"),
  359. "image_type": _("Image Type"),
  360. }
  361.  
  362. # The IMAGE_RESERVED_CUSTOM_PROPERTIES setting is used to specify which image
  363. # custom properties should not be displayed in the Image Custom Properties
  364. # table.
  365. IMAGE_RESERVED_CUSTOM_PROPERTIES = []
  366.  
  367. # OPENSTACK_ENDPOINT_TYPE specifies the endpoint type to use for the endpoints
  368. # in the Keystone service catalog. Use this setting when Horizon is running
  369. # external to the OpenStack environment. The default is 'publicURL'.
  370. #OPENSTACK_ENDPOINT_TYPE = "publicURL"
  371.  
  372. # SECONDARY_ENDPOINT_TYPE specifies the fallback endpoint type to use in the
  373. # case that OPENSTACK_ENDPOINT_TYPE is not present in the endpoints
  374. # in the Keystone service catalog. Use this setting when Horizon is running
  375. # external to the OpenStack environment. The default is None. This
  376. # value should differ from OPENSTACK_ENDPOINT_TYPE if used.
  377. #SECONDARY_ENDPOINT_TYPE = "publicURL"
  378.  
  379. # The number of objects (Swift containers/objects or images) to display
  380. # on a single page before providing a paging element (a "more" link)
  381. # to paginate results.
  382. API_RESULT_LIMIT = 1000
  383. API_RESULT_PAGE_SIZE = 20
  384.  
  385. # The size of chunk in bytes for downloading objects from Swift
  386. SWIFT_FILE_TRANSFER_CHUNK_SIZE = 512 * 1024
  387.  
  388. # Specify a maximum number of items to display in a dropdown.
  389. DROPDOWN_MAX_ITEMS = 30
  390.  
  391. # The timezone of the server. This should correspond with the timezone
  392. # of your entire OpenStack installation, and hopefully be in UTC.
  393. TIME_ZONE = "UTC"
  394.  
  395. # When launching an instance, the menu of available flavors is
  396. # sorted by RAM usage, ascending. If you would like a different sort order,
  397. # you can provide another flavor attribute as sorting key. Alternatively, you
  398. # can provide a custom callback method to use for sorting. You can also provide
  399. # a flag for reverse sort. For more info, see
  400. # http://docs.python.org/2/library/functions.html#sorted
  401. #CREATE_INSTANCE_FLAVOR_SORT = {
  402. # 'key': 'name',
  403. # # or
  404. # 'key': my_awesome_callback_method,
  405. # 'reverse': False,
  406. #}
  407.  
  408. # Set this to True to display an 'Admin Password' field on the Change Password
  409. # form to verify that it is indeed the admin logged-in who wants to change
  410. # the password.
  411. #ENFORCE_PASSWORD_CHECK = False
  412.  
  413. # Modules that provide /auth routes that can be used to handle different types
  414. # of user authentication. Add auth plugins that require extra route handling to
  415. # this list.
  416. #AUTHENTICATION_URLS = [
  417. # 'openstack_auth.urls',
  418. #]
  419.  
  420. # The Horizon Policy Enforcement engine uses these values to load per service
  421. # policy rule files. The content of these files should match the files the
  422. # OpenStack services are using to determine role based access control in the
  423. # target installation.
  424.  
  425. # Path to directory containing policy.json files
  426. #POLICY_FILES_PATH = os.path.join(ROOT_PATH, "conf")
  427.  
  428. # Map of local copy of service policy files.
  429. # Please insure that your identity policy file matches the one being used on
  430. # your keystone servers. There is an alternate policy file that may be used
  431. # in the Keystone v3 multi-domain case, policy.v3cloudsample.json.
  432. # This file is not included in the Horizon repository by default but can be
  433. # found at
  434. # http://git.openstack.org/cgit/openstack/keystone/tree/etc/ \
  435. # policy.v3cloudsample.json
  436. # Having matching policy files on the Horizon and Keystone servers is essential
  437. # for normal operation. This holds true for all services and their policy files.
  438. #POLICY_FILES = {
  439. # 'identity': 'keystone_policy.json',
  440. # 'compute': 'nova_policy.json',
  441. # 'volume': 'cinder_policy.json',
  442. # 'image': 'glance_policy.json',
  443. # 'orchestration': 'heat_policy.json',
  444. # 'network': 'neutron_policy.json',
  445. # 'telemetry': 'ceilometer_policy.json',
  446. #}
  447.  
  448. # TODO: (david-lyle) remove when plugins support adding settings.
  449. # Note: Only used when trove-dashboard plugin is configured to be used by
  450. # Horizon.
  451. # Trove user and database extension support. By default support for
  452. # creating users and databases on database instances is turned on.
  453. # To disable these extensions set the permission here to something
  454. # unusable such as ["!"].
  455. #TROVE_ADD_USER_PERMS = []
  456. #TROVE_ADD_DATABASE_PERMS = []
  457.  
  458. # Change this patch to the appropriate list of tuples containing
  459. # a key, label and static directory containing two files:
  460. # _variables.scss and _styles.scss
  461. #AVAILABLE_THEMES = [
  462. # ('default', 'Default', 'themes/default'),
  463. # ('material', 'Material', 'themes/material'),
  464. #]
  465.  
  466. LOGGING = {
  467. 'version': 1,
  468. # When set to True this will disable all logging except
  469. # for loggers specified in this configuration dictionary. Note that
  470. # if nothing is specified here and disable_existing_loggers is True,
  471. # django.db.backends will still log unless it is disabled explicitly.
  472. 'disable_existing_loggers': False,
  473. 'handlers': {
  474. 'null': {
  475. 'level': 'DEBUG',
  476. 'class': 'logging.NullHandler',
  477. },
  478. 'console': {
  479. # Set the level to "DEBUG" for verbose output logging.
  480. 'level': 'INFO',
  481. 'class': 'logging.StreamHandler',
  482. },
  483. },
  484. 'loggers': {
  485. # Logging from django.db.backends is VERY verbose, send to null
  486. # by default.
  487. 'django.db.backends': {
  488. 'handlers': ['null'],
  489. 'propagate': False,
  490. },
  491. 'requests': {
  492. 'handlers': ['null'],
  493. 'propagate': False,
  494. },
  495. 'horizon': {
  496. 'handlers': ['console'],
  497. 'level': 'DEBUG',
  498. 'propagate': False,
  499. },
  500. 'openstack_dashboard': {
  501. 'handlers': ['console'],
  502. 'level': 'DEBUG',
  503. 'propagate': False,
  504. },
  505. 'novaclient': {
  506. 'handlers': ['console'],
  507. 'level': 'DEBUG',
  508. 'propagate': False,
  509. },
  510. 'cinderclient': {
  511. 'handlers': ['console'],
  512. 'level': 'DEBUG',
  513. 'propagate': False,
  514. },
  515. 'keystoneclient': {
  516. 'handlers': ['console'],
  517. 'level': 'DEBUG',
  518. 'propagate': False,
  519. },
  520. 'glanceclient': {
  521. 'handlers': ['console'],
  522. 'level': 'DEBUG',
  523. 'propagate': False,
  524. },
  525. 'neutronclient': {
  526. 'handlers': ['console'],
  527. 'level': 'DEBUG',
  528. 'propagate': False,
  529. },
  530. 'heatclient': {
  531. 'handlers': ['console'],
  532. 'level': 'DEBUG',
  533. 'propagate': False,
  534. },
  535. 'ceilometerclient': {
  536. 'handlers': ['console'],
  537. 'level': 'DEBUG',
  538. 'propagate': False,
  539. },
  540. 'swiftclient': {
  541. 'handlers': ['console'],
  542. 'level': 'DEBUG',
  543. 'propagate': False,
  544. },
  545. 'openstack_auth': {
  546. 'handlers': ['console'],
  547. 'level': 'DEBUG',
  548. 'propagate': False,
  549. },
  550. 'nose.plugins.manager': {
  551. 'handlers': ['console'],
  552. 'level': 'DEBUG',
  553. 'propagate': False,
  554. },
  555. 'django': {
  556. 'handlers': ['console'],
  557. 'level': 'DEBUG',
  558. 'propagate': False,
  559. },
  560. 'iso8601': {
  561. 'handlers': ['null'],
  562. 'propagate': False,
  563. },
  564. 'scss': {
  565. 'handlers': ['null'],
  566. 'propagate': False,
  567. },
  568. },
  569. }
  570.  
  571. # 'direction' should not be specified for all_tcp/udp/icmp.
  572. # It is specified in the form.
  573. SECURITY_GROUP_RULES = {
  574. 'all_tcp': {
  575. 'name': _('All TCP'),
  576. 'ip_protocol': 'tcp',
  577. 'from_port': '1',
  578. 'to_port': '65535',
  579. },
  580. 'all_udp': {
  581. 'name': _('All UDP'),
  582. 'ip_protocol': 'udp',
  583. 'from_port': '1',
  584. 'to_port': '65535',
  585. },
  586. 'all_icmp': {
  587. 'name': _('All ICMP'),
  588. 'ip_protocol': 'icmp',
  589. 'from_port': '-1',
  590. 'to_port': '-1',
  591. },
  592. 'ssh': {
  593. 'name': 'SSH',
  594. 'ip_protocol': 'tcp',
  595. 'from_port': '22',
  596. 'to_port': '22',
  597. },
  598. 'smtp': {
  599. 'name': 'SMTP',
  600. 'ip_protocol': 'tcp',
  601. 'from_port': '25',
  602. 'to_port': '25',
  603. },
  604. 'dns': {
  605. 'name': 'DNS',
  606. 'ip_protocol': 'tcp',
  607. 'from_port': '53',
  608. 'to_port': '53',
  609. },
  610. 'http': {
  611. 'name': 'HTTP',
  612. 'ip_protocol': 'tcp',
  613. 'from_port': '80',
  614. 'to_port': '80',
  615. },
  616. 'pop3': {
  617. 'name': 'POP3',
  618. 'ip_protocol': 'tcp',
  619. 'from_port': '110',
  620. 'to_port': '110',
  621. },
  622. 'imap': {
  623. 'name': 'IMAP',
  624. 'ip_protocol': 'tcp',
  625. 'from_port': '143',
  626. 'to_port': '143',
  627. },
  628. 'ldap': {
  629. 'name': 'LDAP',
  630. 'ip_protocol': 'tcp',
  631. 'from_port': '389',
  632. 'to_port': '389',
  633. },
  634. 'https': {
  635. 'name': 'HTTPS',
  636. 'ip_protocol': 'tcp',
  637. 'from_port': '443',
  638. 'to_port': '443',
  639. },
  640. 'smtps': {
  641. 'name': 'SMTPS',
  642. 'ip_protocol': 'tcp',
  643. 'from_port': '465',
  644. 'to_port': '465',
  645. },
  646. 'imaps': {
  647. 'name': 'IMAPS',
  648. 'ip_protocol': 'tcp',
  649. 'from_port': '993',
  650. 'to_port': '993',
  651. },
  652. 'pop3s': {
  653. 'name': 'POP3S',
  654. 'ip_protocol': 'tcp',
  655. 'from_port': '995',
  656. 'to_port': '995',
  657. },
  658. 'ms_sql': {
  659. 'name': 'MS SQL',
  660. 'ip_protocol': 'tcp',
  661. 'from_port': '1433',
  662. 'to_port': '1433',
  663. },
  664. 'mysql': {
  665. 'name': 'MYSQL',
  666. 'ip_protocol': 'tcp',
  667. 'from_port': '3306',
  668. 'to_port': '3306',
  669. },
  670. 'rdp': {
  671. 'name': 'RDP',
  672. 'ip_protocol': 'tcp',
  673. 'from_port': '3389',
  674. 'to_port': '3389',
  675. },
  676. }
  677.  
  678. # Deprecation Notice:
  679. #
  680. # The setting FLAVOR_EXTRA_KEYS has been deprecated.
  681. # Please load extra spec metadata into the Glance Metadata Definition Catalog.
  682. #
  683. # The sample quota definitions can be found in:
  684. # <glance_source>/etc/metadefs/compute-quota.json
  685. #
  686. # The metadata definition catalog supports CLI and API:
  687. # $glance --os-image-api-version 2 help md-namespace-import
  688. # $glance-manage db_load_metadefs <directory_with_definition_files>
  689. #
  690. # See Metadata Definitions on: http://docs.openstack.org/developer/glance/
  691.  
  692. # TODO: (david-lyle) remove when plugins support settings natively
  693. # Note: This is only used when the Sahara plugin is configured and enabled
  694. # for use in Horizon.
  695. # Indicate to the Sahara data processing service whether or not
  696. # automatic floating IP allocation is in effect. If it is not
  697. # in effect, the user will be prompted to choose a floating IP
  698. # pool for use in their cluster. False by default. You would want
  699. # to set this to True if you were running Nova Networking with
  700. # auto_assign_floating_ip = True.
  701. #SAHARA_AUTO_IP_ALLOCATION_ENABLED = False
  702.  
  703. # The hash algorithm to use for authentication tokens. This must
  704. # match the hash algorithm that the identity server and the
  705. # auth_token middleware are using. Allowed values are the
  706. # algorithms supported by Python's hashlib library.
  707. #OPENSTACK_TOKEN_HASH_ALGORITHM = 'md5'
  708.  
  709. # Hashing tokens from Keystone keeps the Horizon session data smaller, but it
  710. # doesn't work in some cases when using PKI tokens. Uncomment this value and
  711. # set it to False if using PKI tokens and there are 401 errors due to token
  712. # hashing.
  713. #OPENSTACK_TOKEN_HASH_ENABLED = True
  714.  
  715. # AngularJS requires some settings to be made available to
  716. # the client side. Some settings are required by in-tree / built-in horizon
  717. # features. These settings must be added to REST_API_REQUIRED_SETTINGS in the
  718. # form of ['SETTING_1','SETTING_2'], etc.
  719. #
  720. # You may remove settings from this list for security purposes, but do so at
  721. # the risk of breaking a built-in horizon feature. These settings are required
  722. # for horizon to function properly. Only remove them if you know what you
  723. # are doing. These settings may in the future be moved to be defined within
  724. # the enabled panel configuration.
  725. # You should not add settings to this list for out of tree extensions.
  726. # See: https://wiki.openstack.org/wiki/Horizon/RESTAPI
  727. REST_API_REQUIRED_SETTINGS = ['OPENSTACK_HYPERVISOR_FEATURES',
  728. 'LAUNCH_INSTANCE_DEFAULTS']
  729.  
  730. # Additional settings can be made available to the client side for
  731. # extensibility by specifying them in REST_API_ADDITIONAL_SETTINGS
  732. # !! Please use extreme caution as the settings are transferred via HTTP/S
  733. # and are not encrypted on the browser. This is an experimental API and
  734. # may be deprecated in the future without notice.
  735. #REST_API_ADDITIONAL_SETTINGS = []
  736.  
  737. # DISALLOW_IFRAME_EMBED can be used to prevent Horizon from being embedded
  738. # within an iframe. Legacy browsers are still vulnerable to a Cross-Frame
  739. # Scripting (XFS) vulnerability, so this option allows extra security hardening
  740. # where iframes are not used in deployment. Default setting is True.
  741. # For more information see:
  742. # http://tinyurl.com/anticlickjack
  743. #DISALLOW_IFRAME_EMBED = True
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!