Flavio Fernandes 8777b5031c Add Octavia OVN Provider configuration (2 of 2)
This patch enhances Octavia's OVN driver config, so it can connect to
OVN_Northbound DB using TLS.

Related-Bug: #1861886

Change-Id: Ic2602e7a219f3c3be7f085726ee9736975062306
2020-03-30 09:41:24 -04:00

49 lines
1.7 KiB
Puppet

# Configures the octavia ovn driver
#
# == Parameters
#
# [*ovn_nb_connection*]
# (optional) The connection string for the OVN_Northbound OVSDB.
# Defaults to $::os_service_default
#
# [*ovn_nb_private_key*]
# (optional) The PEM file with private key for SSL connection to OVN-NB-DB
# Defaults to $::os_service_default
#
# [*ovn_nb_certificate*]
# (optional) The PEM file with certificate that certifies the private
# key specified in ovn_nb_private_key
# Defaults to $::os_service_default
#
# [*ovn_nb_ca_cert*]
# (optional) The PEM file with CA certificate that OVN should use to
# verify certificates presented to it by SSL peers
# Defaults to $::os_service_default
#
class octavia::provider::ovn (
$ovn_nb_connection = $::os_service_default,
$ovn_nb_private_key = $::os_service_default,
$ovn_nb_certificate = $::os_service_default,
$ovn_nb_ca_cert = $::os_service_default
) inherits octavia::params {
include octavia::deps
# For backward compatibility
if $::octavia::api::ovn_nb_connection and !is_service_default($::octavia::api::ovn_nb_connection) {
$ovn_nb_connection_real = $::octavia::api::ovn_nb_connection
} else {
$ovn_nb_connection_real = $ovn_nb_connection
}
# TODO(flaviof): We need to replace octavia_config with octavia_ovn_provider_config in the future.
# For now, the config below uses octavia_config until we can figure out how to pass extra
# configuration files to the api running as wsgi process.
octavia_config {
'ovn/ovn_nb_connection': value => $ovn_nb_connection_real;
'ovn/ovn_nb_private_key': value => $ovn_nb_private_key;
'ovn/ovn_nb_certificate': value => $ovn_nb_certificate;
'ovn/ovn_nb_ca_cert': value => $ovn_nb_ca_cert;
}
}