read -d '' MON_CAPS << EOF
allow r,
allow command "auth del",
allow command "auth caps",
allow command "auth get",
allow command "auth get-or-create"
EOF
ceph auth get-or-create client.manila -o ceph.client.manila.keyring \
mds 'allow *' \
osd 'allow rw' \
mon "$MON_CAPS"ceph auth get-or-create client.glance mon 'profile rbd' osd 'profile rbd pool=images' mgr 'profile rbd pool=images' -o ceph.client.glance.keyring
manila type-create cephfsnativetype false
manila type-key cephfsnativetype set vendor_name=Ceph storage_protocol=CEPHFScat <<EOF > /etc/sysctl.d/k8s.conf
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
EOF
sysctl --systemecho br_netfilter > /etc/modules-load.d/k8s.conf
modprobe br_netfiltersudo apt-get update && sudo apt-get install -y apt-transport-https curl
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add -
cat <<EOF | sudo tee /etc/apt/sources.list.d/kubernetes.list
deb https://apt.kubernetes.io/ kubernetes-xenial main
EOF
sudo apt-get update
sudo apt-get install -y kubelet kubeadm kubectl
sudo apt-mark hold kubelet kubeadm kubectlsudo kubeadm init --pod-network-cidr=192.168.0.0/16kubectl apply -f https://docs.projectcalico.org/v3.11/manifests/calico.yamlkubectl taint nodes --all node-role.kubernetes.io/master-kubeadm join 10.10.2.58:6443 --token tmix1q.v2nl4rjy0ejl09bl \
--discovery-token-ca-cert-hash sha256:b3f0eddfad4410c437f1a572c759903fb33bfa2c105c543b051b02ef64dd06cbopenstack group create federated_usersopenstack project create federated_projectopenstack role add --group federated_users --project federated_project memberopenstack federation protocol create saml2 --mapping samltest_mapping --identity-provider samltest
ssh -L 8080:10.10.0.142:443 ubuntu@10.10.0.57openstack server show $instance -f value -c volumes_attached
openstack volume backup create --name docker-copose-host --container backup-vm --force 9ec95201-dca7-477a-b069-99ab03960ea6