openstack/puppet-tripleo
Code Issues Proposed changes
Files
b0b7b4069aa90080761edb83c65174b116ba5fbb
puppet-tripleo/files/certmonger-memcached-refresh.sh
Moisés Guimarães de Medeiros b0b7b4069a Add Memcached certificate generation 
Adding certification generation and pass it down to puppet-memcached.

Change-Id: I8eb2b45e8868b99dfe402fee514afa8f8c42f086
2020-09-10 13:33:07 +00:00

19 lines
996 B
Bash
Raw Blame History

#!/bin/bash
container_cli=$(hiera -c /etc/puppet/hiera.yaml container_cli podman)
container_name=$($container_cli ps --format="{{.Names}}" | grep metrics_qdr)
service_certificate="$(hiera -c /etc/puppet/hiera.yaml tripleo::profile::base::memcached::certificate_specs.service_certificate)"
service_key="$(hiera -c /etc/puppet/hiera.yaml tripleo::profile::base::memcached::certificate_specs.service_key)"
# Copy the new cert and key from the mount-point to the real path
$container_cli exec "$container_name" cp "/var/lib/kolla/config_files/src-tls$service_certificate" "$service_certificate"
$container_cli exec "$container_name" cp "/var/lib/kolla/config_files/src-tls$service_key" "$service_key"
# Set appropriate permissions
$container_cli exec "$container_name" chown qdrouterd:qdrouterd "$service_certificate"
$container_cli exec "$container_name" chown qdrouterd:qdrouterd "$service_key"
# Trigger a container restart to read the new certificates
$container_cli restart $container_name
View Git Blame Copy Permalink