openstack/openstack-ansible
Code Issues Proposed changes
14dcfcf5d0
openstack-ansible/playbooks/roles
History
Jean-Philippe Evrard 422a5b1e0f Adds the ability to provide user certificates to HAProxy 
This change brings similar changes as this one targeting horizon:

i.e.:
* The server key/certificate (and optionally a CA cert) are
  distributed to all haproxy containers.

* Two new variables have been implemented for a user-provided
  server key and certificate:
  - haproxy_user_ssl_cert: <path to cert on deployment host>
  - haproxy_user_ssl_key: <path to cert on deployment host>
  If either of these is not defined, then the missing cert/key
  will be self generated on each container. No distribution
  of the self generated certificates accross all the hosts
  is planned.

* A new variable has been implemented for a user-provided CA
  certificate:
  - haproxy_user_ssl_ca_cert: <path to cert on deployment host>

* The 'haproxy_cert_regen' variable has been renamed
  to 'haproxy_ssl_self_signed_regen' to have the same
  naming convention as horizon.

* A change of certificates, whether user dropped
  or role generated, triggers pem generation and server restart

DocImpact
Closes-Bug: #1487380

Change-Id: I0c88d197d8ede820ac4e0388e67a2da06b003c2b
2015-09-03 18:37:00 +00:00
..
apt_package_pinning added role to pin packages 2015-05-08 13:22:42 -05:00
ceph_client Allow cinder-backup to use ceph 2015-09-03 07:37:21 +00:00
galera_client Added apt update tasks to everything using apt 2015-06-16 13:13:58 -05:00
galera_server Merge "Implement /usr/bin/env as the shebang in all bash scripts" 2015-08-22 01:59:26 +00:00
haproxy_server Adds the ability to provide user certificates to HAProxy 2015-09-03 18:37:00 +00:00
lxc_container_create Removed default lxc profile on container create 2015-08-25 13:15:45 +00:00
lxc_container_destroy Configurable lxc cache and rootfs path 2015-06-15 20:56:13 +00:00
lxc_hosts Removed rpc-repo upstream pip deps 2015-09-02 14:15:00 +00:00
memcached_server Configurable memcached connections limit & threads 2015-06-23 15:00:32 -07:00
openstack_hosts Container create/system tuning 2015-07-17 09:59:10 -05:00
openstack_openrc Upgrade the Keystone library to use v3 2015-07-13 19:41:44 -07:00
os_ceilometer Upgrade the Keystone library to use v3 2015-07-13 19:41:44 -07:00
os_cinder Allow cinder-backup to use ceph 2015-09-03 07:37:21 +00:00
os_glance Add Ceph/RBD support to playbooks 2015-08-01 19:49:00 +01:00
os_heat Implement /usr/bin/env as the shebang in all bash scripts 2015-08-17 20:14:27 +00:00
os_horizon Add default user role for Keystone & Horizon and tasks to create it 2015-08-21 12:53:33 +01:00
os_keystone [OSAD doc] Update link to Cloud Admin Guide 2015-09-02 12:34:38 +00:00
os_neutron Update how neutron migrations are handled 2015-09-03 05:45:35 +00:00
os_nova Switch Nova/Tempest to use/test Cinder API v2 2015-09-02 12:41:38 +00:00
os_swift Merge "Ensure rsync restarts fully during swift setup" 2015-09-03 14:52:58 +00:00
os_swift_sync Add swift-sync role and environment 2015-08-07 08:45:18 +00:00
os_tempest Update tempest configuration 2015-09-02 12:42:08 +00:00
pip_install Removed rpc-repo upstream pip deps 2015-09-02 14:15:00 +00:00
pip_lock_down Changed link lineinfile to template 2015-06-24 22:11:12 -05:00
py_from_git Cleaning up doc8 violations. 2015-06-10 02:09:18 +00:00
rabbitmq_server Update rabbitmq version deployed to v3.5.4 2015-08-18 06:48:28 +00:00
repo_server Fixes function declarations for bashate 2015-08-21 11:03:12 +00:00
rsyslog_client Remove the adiscon/v8 ppa 2015-06-23 22:16:54 +01:00
rsyslog_server Remove the adiscon/v8 ppa 2015-06-23 22:16:54 +01:00
system_crontab_coordination Add role system-crontab-coordination 2015-06-30 10:06:11 +01:00