openstack/charm-ceph-radosgw

The default HAProxy timeout values are fairly strict. On a busy cloud
it is common to exceed one or more of these timeouts. The only
indication that HAProxy has exceeded a timeout and dropped the
connection is errors such as "BadStatusLine" or "EOF." These can be
very difficult to diagnose when intermittent.

This charm-helpers sync pulls in the change to update the default
timeout values to more real world settings. These values have been
extensively tested in ServerStack. Configured values will not be
overridden.

Partial Bug: #1736171

Change-Id: I312dd56ecf55ad67485305e57f2807a5ea6975cd

Make default func27-smoke xenial-pike
Charm-helpers sync

Change-Id: I321befa86209f83494ed660fae6212c88dbd358b

Bionic, being the next LTS, is important to enable for dev
and test as early as possible ahead of 18.02.

Zesty goes EOL in Jan 2018. The next stable charms release (18.02)
will not provide Zesty series support, as it was an interim
(non-LTS) release.

Change-Id: I5585cb843ddf5d941c618829004bce3cf0bb1a82

Change-Id: I0d4bd7203c9ce52f8d913f78a18ee7ac5ee8b518

Change-Id: I82054066df7440a9396b1e193d1f1059e567a769
Related-Bug: #1719742

Change-Id: I83085110c427702bbe23174a671a4cec92146f8c

Change-Id: Ie01f45ef28ed5c07a3d18fa86f7185b4e1727923

OpenStack Pike drops PKI support, and the keystone charm no longer
configures PKI signing certs for revocation lists@Pike.

Previous changes fixed issues with Keystone v2 based deployments@Pike;
however the Keystone v3 retrieval code did not inspect the status
code on the requests base response during certificate retrieval.

Ensure that a OK status code is returned from Keystone for v3 deploys,
ensuring that Pike based v3 deployments continue to function.

Change-Id: I603115a8e298aa8dedbdcea195b27bb8a6c0c71e
Closes-Bug: 1718467

According to http://docs.python.org/2/library/unittest.html
assert(Not)Equals is a deprecated alias of assert(Not)Equal.

Change-Id: I4cc9976ba8c18447803f7e7e8843fb0b8139b612
Closes-Bug: #1329757

When setting up keystone certs we must validate whether the
settings we require are available before called the keystone
client.

Change-Id: I4bf09fe7bf7f5a136aa92cf8b74b1b4d0e87543f
Closes-Bug: 1714942

The URLs for SSL certificates are different and the v2 client
functions do not work. This change fixes these issues.

Add missing config.yaml options.

Change-Id: Ia4c7b508e70f690493b098c6fb07d24a340bc2a6
Closes-Bug: #1708464

Enable SSL object storage using ApacheSSLContext.

Change-Id: Id044afc8c07696a5447eb9dc4836470203372090
Closes-Bug: #1690826
Closes-Bug: #1708464

Change-Id: I6ecd27d221b85da1b399c1de013ae65fcb500135

Change-Id: I921ca911e9908cf606a1531fc3958e3d49efcff1

Enable dual stack IPv4 and IPv6 VIPs on the same interface.
HAProxy always listens on both IPv4 and IPv6 allowing connectivity
on either protocol.

charm-helpers sync for HAProxy template changes.

Change-Id: Ibc95f322df29857df1c16f1ac1ebe04b5a2bc748

As of Pike, the OpenStack charms no longer generate the certificates
and CA used to sign token revocation lists as this is associated with
the PKI token format, which has been removed from OpenStack in
favor of UUID or Fernet formats.

Soft-fail on cert retrieval if an InternalServerError is thrown; this
is most likely due to the fact that the keystone WSGI server cannot
find the relevant files on the underlying filesystem.

Change-Id: Ib592e7e47e10bed2d59c9136a3267f9c7ce8da83
Closes-Bug: 1709189

with the following key:value pairs:

- reset_timeout: 600

Change-Id: Ie7d1709380c3d8a02052d0c07a6e1ba731df3b3f

Change-Id: I8021cae2f2f5dbe0ca61bf6602097b990a88ea4a
Closes-bug: #1686739

Change-Id: Iff544d471e99400529ff1c98ccce348276e6786b

Incase we do *not* use keystone as an authentication mechanism, let the
built-in authentication work with this charm.

Without this change, the Swift authentication itself will work, but the
X-Storage-URL header will point to the port the storage daemon listens
on - which is not open in the firewall (70).

This change instead forces the URL to be "the unit's public IP" with the
default port (80), on which haproxy is listening, and will do the right
thing.

Change-Id: Ia2b12153eca3074392aad6dea6ee995990f15633
Signed-off-by: Christopher Glass <chris.glass@canonical.com>

When using SSL and Keystone v3 the charm was hardcoding v2.0 in the
URL.

This change adapts based on what is passed from keystone.

Change-Id: Ib08730e6480b1b1706c450075ac2f7312e3e5f59
Closes-Bug: #1691875

Check if the charm is installed inside a container and do not install
NTP if that is the case.

Partial-Bug: #1690513
Change-Id: Ib290733a175197dee1261043a1e8ff2edc0b53e5

Resync charmhelpers for pike version support.

Add pike tests but leave disabled until all charms support pike.

Change-Id: I721710f0e4353340bc0e970304580bb21fc59321

Use the get_relation_ip function for selecting addresses for the
cluster relationship. Including overrides for the admin, internal,
and public config settings or extra bindings.

Partial-Bug: #1687439

Change-Id: Ie1280cd2068b97075f1257c2ca95042dc2aa689f

- Turn on Zesty-Ocata Amulet test definitions.
- Standardize test-requirements.txt
- Sync charm helpers for various fixes

Change-Id: Ia9a42cd4a76a6fa8a70e7092b9d61657816d2d65

This is a second pass at a fix for bug 1641870.

Change-Id: Id691e9746bad6ff7c59fde1349755fe3dd2c7f43
Closes-Bug: 1641870

- sync charmhelpers with fix-alpha helpers
- fix up code where the alpha comparisons are done

Change-Id: Iacbb082b9db0cff48ddd595cc1eaa8440aa16892
Related-Bug: #1659575

charmhelpers' CephContext class is capable of handling a list of IP
addresses in the ceph-public-address attribute, this allows
ceph-proxy to hand the list of monitor hosts.

Closes-Bug: 1642430
Change-Id: I2bbff167fce2c75a3a619b658f0c569c6d5be3d5

- Add Zesty as a supported series to metadata.yaml.
- Turn on Xenial-Ocata Amulet test definitions.
- Sync charm helpers to get Juju 2.x amulet compatibility.
- Keeping Zesty-Ocata Amulet test definitions turned off until the
  metadata.yaml changes propagate to the charm store.
- Resync tox.ini resolving amulet full recheck failures.

Change-Id: I1864ee41be6815f9779669cab8ad8691bd78ffa5