Support FreeIPA integration in the undercloud during Quickstart runs

New CI feature

Presently all the pieces are in place for the undercloud and overcloud nodes to enroll with and utilize a FreeIPA server. However, this server must be up and running prior to any call to instack (oooq-extras undercloud-deploy role).

Both Ozz and I have done this manually and successfully deployed a fake HA (1 compute, 1 control, net-iso, and pacemaker) setup via oooq where all nodes enrolled with the FreeIPA server. Presently I am working to automate the creation and bootstrapping of the FreeIPA server via oooq.

In order for this to work congruently with OOOQ we will need to update the libvirt/setup role to allow for the creation/bootstrapping of a supplementary VM.

Additionally, I have created a (WIP) role[1] in oooq-extras to perform the actual FreeIPA setup -- which again, needs to be called prior to the undercloud deploy-role. I anticipate having another WIP review up by tomorrow demonstrating my approach.

I think that the ability to deploy/prep a supplementary node has uses outside of this specific use case and am attempting to keep things as loosely coupled as possible.

[1] - https://review.openstack.org/#/c/436198/

Reviewed: https://review.openstack.org/436198
Committed: https://git.openstack.org/cgit/openstack/tripleo-quickstart-extras/commit/?id=1eeb7bbee1e355a9a2201ad56429b7c5a162f4a2
Submitter: Jenkins
Branch: master

commit 1eeb7bbee1e355a9a2201ad56429b7c5a162f4a2
Author: Harry Rybacki <email address hidden>
Date: Mon Feb 20 15:28:31 2017 -0500

    Add role to deploy FreeIPA

    New role has the ability to deploy a FreeIPA server

    - Update undercloud-deploy role to check hostvars for freeipa
      related vars set during role execution
    - Update novajoin_prep.sh to set IPA server as dns server

    Closes-Bug: 1662923

    Change-Id: I53323511aabf0d616805efab6edde4acc7bedf11

Reviewed: https://review.openstack.org/451523
Committed: https://git.openstack.org/cgit/openstack/tripleo-quickstart/commit/?id=b1489d7d8f258d42f191227fbda3efd3c458577a
Submitter: Jenkins
Branch: master

commit b1489d7d8f258d42f191227fbda3efd3c458577a
Author: Harry Rybacki <email address hidden>
Date: Wed Mar 29 14:57:27 2017 -0400

    Add supplemental node provisioner

    Add ability to deploy a supplemental node along with undercloud
    and overcloud nodes by the libvirt/setup role(s) along with
    basic ability to deploy TLS everywhere.

    - Update tripleo-inventory role to allow for configuring
    supplmental node host access
    - Update common role defaults with required vars
    - Update quickstart.sh to support fake HA IPA deployment
    - Update general_config/ipa.yml with relevant vars
    - Add nodes/1ctlr_1comp_1supp.yml for supplmental node deployment
    - Add release note

    Depends-On: I53323511aabf0d616805efab6edde4acc7bedf11
    Related-Bug: 1662923

    Change-Id: I3f18e26d0e40942c7c54c07b644ee1209fb89c83

Reviewed: https://review.openstack.org/453223
Committed: https://git.openstack.org/cgit/openstack/tripleo-quickstart/commit/?id=87f390352743c6ec4a2dc889d1000f192e9aefc1
Submitter: Jenkins
Branch: master

commit 87f390352743c6ec4a2dc889d1000f192e9aefc1
Author: Harry Rybacki <email address hidden>
Date: Tue Apr 4 11:29:25 2017 -0400

    Update quickstart-extras to deploy FreeIPA

    - Deploy FreeIPA to supplemental node conditionally

    Related-Bug: 1662923
    Depends-On: I3f18e26d0e40942c7c54c07b644ee1209fb89c83

    Change-Id: I90c6fdd8948417a30f9e50aaff1bffe84ba16a2d

This issue was fixed in the openstack/tripleo-quickstart-extras 2.1.0 release.

This issue was fixed in the openstack/tripleo-quickstart-extras 2.1.1 release.