root@cloudcontrol1005:~# openstack coe cluster template create k8s23 \
--image Fedora-CoreOS-34 \
--external-network wan-transport-eqiad \
--fixed-network lan-flat-cloudinstances2b \
--fixed-subnet cloud-instances2-b-eqiad \
--dns-nameserver 8.8.8.8 \
--network-driver flannel \
--docker-storage-driver overlay2 \
--master-flavor g3.cores2.ram4.disk20 \
--flavor g3.cores2.ram4.disk20 \
--coe kubernetes \
--labels kube_tag=v1.23.15-rancher1-linux-amd64,hyperkube_prefix=docker.io/rancher/,cloud_provider_enabled=true \
--floating-ip-disabled \
--public
Cluster type (vm, Unset, kubernetes) not supported (HTTP 400) (Request-ID: req-65b7c324-93ea-4fc8-bb29-f1194631b7cc)

/usr/lib/python3/dist-packages/urllib3/connectionpool.py:1015: InsecureRequestWarning: Unverified HTTPS request is being made to host 'openstack.eqiad1.wikimediacloud.org'. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.io/en/latest/advanced-usage.html#ssl-warnings
  warnings.warn(
/usr/lib/python3/dist-packages/magnum/drivers/common/driver.py:38: PkgResourcesDeprecationWarning: Parameters to load are deprecated.  Call .resolve and .require separately.
  yield entry_point, entry_point.load(require=False)
2023-02-09 21:23:35.483 2032743 WARNING oslo_policy.policy [None req-481b576c-59b0-4995-92bf-9d370a4a73b7 - - - - - -] Policy Rules ['admin_or_owner', 'context_is_admin', 'cluster_user', 'bay:create', 'bay:delete', 'bay:detail', 'bay:get', 'bay:get_all', 'bay:update', 'baymodel:create', 'baymodel:delete', 'baymodel:detail', 'baymodel:get', 'baymodel:get_all', 'baymodel:update', 'baymodel:publish', 'certificate:create', 'certificate:get', 'cluster:create', 'cluster:delete', 'cluster:delete_all_projects', 'cluster:detail', 'cluster:detail_all_projects', 'cluster:get', 'cluster:get_one_all_projects', 'cluster:get_all', 'cluster:get_all_all_projects', 'cluster:update', 'cluster:update_health_status', 'cluster:update_all_projects', 'cluster:resize', 'cluster:upgrade', 'cluster:upgrade_all_projects', 'clustertemplate:create', 'clustertemplate:delete_all_projects', 'clustertemplate:detail_all_projects', 'clustertemplate:detail', 'clustertemplate:get', 'clustertemplate:get_one_all_projects', 'clustertemplate:get_all', 'clustertemplate:get_all_all_projects', 'clustertemplate:update_all_projects', 'clustertemplate:publish', 'federation:create', 'federation:delete', 'federation:detail', 'federation:get', 'federation:get_all', 'federation:update', 'magnum-service:get_all', 'quota:create', 'quota:delete', 'quota:get_all', 'quota:update', 'nodegroup:get_all_all_projects', 'nodegroup:get_one_all_projects'] specified in policy files are the same as the defaults provided by the service. You can remove these rules from policy files which will make maintenance easier. You can detect these redundant rules by ``oslopolicy-list-redundant`` tool also.

{('vm', 'coreos', 'kubernetes'): {'entry_point_name': 'k8s_coreos_v1', 'class': <class 'magnum.drivers.k8s_coreos_v1.driver.Driver'>}, ('vm', 'fedora-atomic', 'kubernetes'): {'entry_point_name': 'k8s_fedora_atomic_v1', 'class': <class 'magnum.drivers.k8s_fedora_atomic_v1.driver.Driver'>}, ('vm', 'fedora-coreos', 'kubernetes'): {'entry_point_name': 'k8s_fedora_coreos_v1', 'class': <class 'magnum.drivers.k8s_fedora_coreos_v1.driver.Driver'>}, ('bm', 'fedora', 'kubernetes'): {'entry_point_name': 'k8s_fedora_ironic_v1', 'class': <class 'magnum.drivers.k8s_fedora_ironic_v1.driver.Driver'>}, ('vm', 'ubuntu', 'mesos'): {'entry_point_name': 'mesos_ubuntu_v1', 'class': <class 'magnum.drivers.mesos_ubuntu_v1.driver.Driver'>}, ('vm', 'fedora-atomic', 'swarm'): {'entry_point_name': 'swarm_fedora_atomic_v1', 'class': <class 'magnum.drivers.swarm_fedora_atomic_v1.driver.Driver'>}, ('vm', 'fedora-atomic', 'swarm-mode'): {'entry_point_name': 'swarm_fedora_atomic_v2', 'class': <class 'magnum.drivers.swarm_fedora_atomic_v2.driver.Driver'>}}

openstack coe cluster template create paws-k8s23 --image magnum-fedora-coreos-34  --external-network wan-transport-eqiad --fixed-network lan-flat-cloudinstances2b --fixed-subnet cloud-instances2-b-eqiad --dns-nameserver 8.8.8.8 --network-driver flannel --docker-storage-driver overlay2 --docker-volume-size 50 --master-flavor g3.cores2.ram4.disk20 --flavor g3.cores8.ram32.disk20 --coe kubernetes --labels kube_tag=v1.23.15-rancher1-linux-amd64,hyperkube_prefix=docker.io/rancher/,cloud_provider_enabled=true --floating-ip-disabled