openstack
/
charm-layer-openstack-api
Code Issues Proposed changes

Add vault cert support 

Depends-On: If24621f2e72b66d58ea15cadeb458cadaf86a483
Change-Id: I95bcc7c683b084c9f92c5c94090914965a4c0174
This commit is contained in:
Liam Young 2018-05-13 16:04:34 +00:00
parent 6c2a43e55b
commit 8562def023
2 changed files with 24 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
layer.yaml
View File

@ -1,4 +1,5 @@
includes: ['layer:openstack-principle', 'interface:mysql-shared',
'interface:rabbitmq', 'interface:keystone',
'interface:hacluster', 'interface:openstack-ha']
'interface:hacluster', 'interface:openstack-ha',
'interface:tls-certificates', 'layer:tls-client']
repo: 'https://github.com/openstack/charm-layer-openstack-api'

22
reactive/layer_openstack_api.py
View File

@ -62,3 +62,25 @@ def default_setup_endpoint_available(keystone):
with charm.provide_charm_instance() as instance:
instance.configure_ssl(keystone)
instance.assess_status()
@reactive.when('certificates.available')
def default_setup_certificates(tls):
"""When the identity-service interface is available, this default
handler switches on the SSL support.
"""
with charm.provide_charm_instance() as instance:
for cn, req in instance.get_certificate_requests().items():
tls.add_request_server_cert(cn, req['sans'])
tls.request_server_certs()
instance.assess_status()
@reactive.when('certificates.batch.cert.available')
def default_setup_endpoint_available(tls):
"""When the identity-service interface is available, this default
handler switches on the SSL support.
"""
with charm.provide_charm_instance() as instance:
instance.configure_ssl(tls)
instance.assess_status()