This is a mechanically generated patch to complete step 1 of moving
the zuul job settings out of project-config and into each project
repository.

Because there will be a separate patch on each branch, the branch
specifiers for branch-specific jobs have been removed.

Because this patch is generated by a script, there may be some
cosmetic changes to the layout of the YAML file(s) as the contents are
normalized.

See the python3-first goal document for details:
https://governance.openstack.org/tc/goals/stein/python3-first.html

Change-Id: Id37b5d71689b61d43c7aa80249e61c0659f7a0bc
Story: #2002586
Task: #24317

Change-Id: I29be2410d2880ec7f281a9f1f1613c767aa458fb
Closes-bug: #1791260

Update testing setup and config.
Fixes to policy.json

Closes-Bug: #1789961
Change-Id: Iac5da7cd02a5c87f3002dbabf6c21a5c2f936536

Change-Id: I2fd2188572dd7838ec066c810f6882e9274d25a5

Add support for the dashboard to request and receive certificates
via the certificates relation, currently implemented by vault.

The first request to the dashboard can take sometime to return
so increase the timeout.

Change-Id: I173523ddbe3269e3fcdae49062cdb34e78786e44

Change-Id: Ibd54b4a4e98caf5590f1a147de6b15c2dabf5849

Adds a setting custom-theme which operats similar to ubuntu-theme and
default-theme. The provided resource is placed in the themes folder and
apache is setup to serve static content for the theme. This leaves the
default theme untouched allowing the custom theme to override files
based on the built in horizon theme capabilities. For details on theming
capabilities see:
https://docs.openstack.org/horizon/latest/configuration/themes.html

gnuoy: retry logic for unrelated test updated after a number of CI
failures.

Closes-Bug: #1778284

Change-Id: I91ad19e8aad5c0e0773d42fa4f085cbcecb82458

Ensure that EOL releases are removed from metadata
and tests, and that the current dev release is enabled
in metadata.  Dev release tests are enabled separately
because of chickens and eggs.

Change-Id: I1e0b7d0d0994fd229c15cf8c456b2b82bc4041e8

In clouds with many containers or objects, listing them via Horizon
can cause a signficant increase of system load.

This patch enables configuration of the API_RESULT_LIMIT setting within
Horizon. This limits the maximum number of objects to display on a
single page before providing a paging element to paginate results.

Change-Id: Ifaf39d6c9bf549428afd7653243c82cd719956f6
Closes-Bug: 1775002

Python 3.6 is installed by default in Ubuntu 18.04 LTS.
Therefore, according to Transition Plan [1],
it'll be handy to have py36 testenv.

For more details, please check Python2 Deprecation Timeline [2]
and Python3-first Goal - Completion Criteria [3].

[1] https://wiki.ubuntu.com/Python/Python36Transition
[2] https://governance.openstack.org/tc/resolutions/20180529-python2-deprecation-timeline.html
[3] https://review.openstack.org/#/c/575933/8/goals/stein/python3-first.rst@42

Change-Id: Iae9e7269e4b70da56c3a8c025b6cc48566be0d0f

`syncdb` subcommand was deprecated in django 1.7
and subsequently removed in 1.9.

Use `subprocess.check_call()` so we catch errors.

Add `shared-db` relation and enable debug logging in deployment
used in functional test.  Add functional test that authenticates
through the dashboard.

Update unit tests.

Change-Id: I567461e57ec431fc470d7a2a31d3f16e9dc50e8b
Closes-Bug: #1777358

There is a eluding issue that currently makes the
first request to the OpenStack Dashboard error out
with 500 Internal Server Error in CI.  Temporarilly
add retry logic to unwedge the gate.  This issue
should be revisited and root caused properly when time
allows.

Change-Id: Id828082416c7cbdd88247d9b6750c0f77467bc26

Change-Id: Ib15aa2d76e009415f525132492bcc3679750bfd9

The horizon interface enables/displays actions based on the
keystonev3_policy.json file provided. The keystonev3_policy.json file
included by the charm has rules for various actions that depend on the
target object's domain id (user, group, project). The buttons displayed
for creating and deleting the objects (shown above the tables) are also
based on these policy rules but no target object exists because they are
bound to the table and not a specific target object.

This patch changes some of the policy rules to create/delete users,
projects, and groups to not require the target object's domain_id. This
is safe to do because the table is shown within the context of the
target domain_id already. Additionally, the actual ability to alter
objects is controlled by the actual policy installed in Keystone and not
the Horizon UI.

Without this change, actions such as "Create User" will only show for
a user who is a cloud admin and not for any domain admins (even if the
domain admin is allowed to perform the action via the API or CLI).

Change-Id: Ie0a85e11e6a171083deb19b0eb26c7e552390c00
Closes-Bug: #1775224
Closes-Bug: #1775229

Support for dfs was dropped in commit b4019e45

Remove orphan symlink in the actions/ directory.

Change-Id: Ie353de9da422a863e53a92983d9819c324761667

Change-Id: I9170b428ad504664c6045f26ed2ad34d5159fcb3

Change bionic test from dev to gate for 18.05.

Change-Id: I5e1214055d49a0ab170ad3ebc1c4fccca0eb7ebc

* add support for relating with subordinate charms providing Service
Provider functionality via apache2 authentication modules;
* retrieve protocol, identity provider and user-facing name info from
  keystone service provider charm subordinates;
* provide trusted dashboard information to keystone charm

Change-Id: I15ca0dd1616ec12c7ad47dc05961b51bb45bb770

The comparison of bytes vs string of the CA certificate produces a
false negative. This leads to rewriting certificates and affecting
connectivity to services.

Read in the certificate as bytes as well for a bytes vs bytes
comparison.

Change-Id: I3b233a79689858db0962bafe71eba0a0667c2bf0
Closes-Bug: #1762431

Change-Id: I8e7f986035935a742b4acb320f71887e23989dbb
Partial-bug: #1755027

As of pip 10.0, --allow-unverified is not permitted.

Use of the flag in this repo was previously used to force
installation of python-apt to accommodate certain unit tests.

The unverified package, python-apt, is no longer necessary
for test execution.

Related-Bug: #1760720

Change-Id: I15a489755a94d0df0f2a6331410add716e56e091

Change-Id: I4265c92ad7ca8ce7c924b3b861d349b0cef7529e

This runs the Apache conf for Ocata under horizon:horizon as we
already do for other releases.

Change-Id: I07775bd13c117b8a56295f348a9383c8ecb1ed76
Partial-bug: #1755027

Automatically configure WSGI worker processes inline with other
charms using the worker-multiplier configuration option and the
WSGI worker configuration context from charm-helpers.

Change-Id: Ib8af4a5a54fcff13a05ba4f4094bf123d5282c4a

Add the xenial/queens functional tests to the gate

Change-Id: I96dcbf2b4ab402a1918d1aa9073acb3467965bbc

Change-Id: I296f081e9de99da2fefe5a581dfc2ffe5fba4429

The Heat dashboard was split from horizon in Queens, and
therefore needs to be installed separately.

The Designate dashboard was never installed by the charm
before but should be.

Change-Id: Ie0790fd1e1a6422465f4a4e00769efcd667d28e2
Closes-Bug: #1746031
Closes-Bug: #1747934

Notable issues resolved:

openstack_upgrade_available() broken for swift
https://bugs.launchpad.net/charm-swift-proxy/+bug/1743847

haproxy context doesn't consider bindings
https://bugs.launchpad.net/charm-helpers/+bug/1735421

regression in haproxy check
https://bugs.launchpad.net/charm-helpers/+bug/1743287

This change also breaks the inheritance between
HorizonHAProxyContext and HAProxyContext (as this was
not needed) and aligns the code in HorizonHAProxyContext
to the behaviour in HAProxyContext of using get_relation_ip
instead of unit_get.

Change-Id: I72600b01744a07e140a29255efc2823ea39ce730

Previously the single domain mode has been implemented. This is a
follow-up commit to set the value properly as boolean instead of string.

Change-Id: I0e34d93d05693bf0ca5e8f68bc9af198fd29680a
Closes-Bug: #1744346
Related-Bug: #1712999

This binding is required so that the DNS-HA code can find the
address to use for the hostname specified by os-public-hostname.

This also deprecates the os-internal-hostname and os-admin-hostname
options, as there is no binding to use them with.

Change-Id: I57609c5ab641e2ae6377c6fbad5c9e7b8cf6495c
Closes-Bug: #1742548

Drop support for deployment from Git repositories, as deprecated
in the 17.02 charm release.  This feature is unmaintained and has
no known users.

Change-Id: I19732b50483ab7284723f847f182fd1cfa67e425