This task is an attempt to catalog the ways our openstack deployment diverges from an out-of-the-box openstack cloud.
- Keystone
- Forcing project id == project name (via code patch)
- Custom roles and policies: observer/member/projectadmin
- Nova
- Constrain VM hostname via regex (via code patch)
- Custom roles and policies: observer/member/projectadmin
- Designate
- Custom designate-sink plugin to create/destroy DNS entries on VM creation/deletion
- Custom designate-sink plugin to do other cleanup on VM deletion (puppet cert deletion, config cleanup, etc)
- Custom roles and policies: observer/member/projectadmin
- Neutron
- Custom roles and policies: observer/member/projectadmin
- Cinder
- Backported bugfixes for cinder-backup
- Use of cinder-backup posix backend, which exists in upstream code but seems to generally not be used in many real deployments.
- Custom roles and policies: observer/member/projectadmin
- Trove
- Backported bugfix for DNS integration
- Custom roles and policies: observer/member/projectadmin
- VM behavior
- BYO image prohibited
- All VMs automatically puppetized
- SSSD/Ldap login integration
- Remote Cumin management
*Horizon
- Custom Panels
- Role management
- Proxy management
- instance/project/prefix Puppet config
- Simplification
- Disabled many network panels
- Removed steps from VM creation workflow