dubzland.openstack.openstack_barbican role – Install and configure the OpenStack Barbican key management component.

Note

This role is part of the dubzland.openstack collection (version 1.1.0).

It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it use: ansible-galaxy collection install dubzland.openstack.

To use it in a playbook, specify: dubzland.openstack.openstack_barbican.

Entry point `main` – Install and configure the OpenStack Barbican key management component.

Parameter	Comments
openstack_barbican_crypto_key string / required	Cryptographic key used to encrypt secrets stored in the Barbican database. The simplest way to generate a valid key is via `openssl`. Example: `openssl rand -hex 16 \| tr -d '\n' \| base64`
openstack_barbican_db_name string	Name of the MySQL database created. Default: `"barbican"`
openstack_barbican_db_password string / required	Database password created for the `openstack_barbican_db_user`.
openstack_barbican_db_user string	Database user created for the OpenStack Barbican component. Default: `"barbican"`
openstack_barbican_packages list / elements=string	List of packages installed on the controller for the Barbican component. Default: `["barbican-api", "barbican-keystone-listener", "barbican-worker", "python3-barbicanclient"]`
openstack_barbican_service_description string	Human-readable description for the OpenStack Barbican service within Keystone. Default: `"OpenStack Key Management"`
openstack_barbican_service_password string / required	Service password assigned to the `openstack_barbican_service_user`.
openstack_barbican_service_user string	User created in OpenStack Keystone for the Barbican component. Default: `"barbican"`
openstack_barbican_services list / elements=string	Services to be restarted during install (and/or configuration changes). Default: `["barbican-keystone-listener", "barbican-worker", "apache2"]`