openstack/kolla-ansible
Code Issues Proposed changes

cloudkitty: set cafile for fetcher_keystone

Browse Source 
Without this setting, the keystone fetcher fails to authenticate when
using internal TLS with a local CA.

Closes-Bug: #2000097

Change-Id: Ia709f450c3e5b73e145e89a305cd038c05507dc6
This commit is contained in:
Pierre Riteau 2022-12-19 22:24:14 +01:00
parent 62f3c62bb3
commit b6c52323df
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
ansible/roles/cloudkitty/templates/cloudkitty.conf.j2
View File

@ -80,6 +80,7 @@ backend = {{ cloudkitty_fetcher_backend }}
[fetcher_keystone] [fetcher_keystone]
keystone_version = 3 keystone_version = 3
auth_section = keystone_authtoken auth_section = keystone_authtoken
cafile = {{ openstack_cacert }}
region_name = {{ openstack_region_name }} region_name = {{ openstack_region_name }}
{% endif %} {% endif %}