kolla-ansible/ansible/roles/keystone/templates
Dave McCowan 3daded6242 Add TLS protection on external API endpoints
TLS can be used to encrypt and authenticate the connection with
OpenStack endpoints.  This patch provides the necessary
parameters and changes the resulting service configurations to
enable TLS for the Kolla deployed OpenStack cloud.

The new input parameters are:

kolla_enable_tls_external: "yes" or "no" (default is "no")
kolla_external_fqdn_cert: "/etc/kolla/certificates/haproxy.pem"
kolla_external_fqdn_cacert: "/etc/kolla/certificates/haproxy-ca.crt"

Implements: blueprint kolla-ssl

Change-Id: I48ef8a781c3035d58817f9bf6f36d59a488bab41
2016-03-03 14:44:37 -05:00
..
keystone.conf.j2 Add TLS protection on external API endpoints 2016-03-03 14:44:37 -05:00
keystone.json.j2 Bring Kolla inline with FHS 2015-10-06 03:30:53 +00:00
wsgi-keystone.conf.j2 Use passed client IP address in various audit logs 2016-02-24 09:51:13 -05:00