2016-09-26 15:34:10 +00:00
|
|
|
# A Heat environment file which can be used to enable a
|
|
|
|
# a TLS for in the internal network via certmonger
|
2016-09-12 08:46:15 +00:00
|
|
|
parameter_defaults:
|
|
|
|
EnableInternalTLS: true
|
2017-01-17 23:02:35 +00:00
|
|
|
|
|
|
|
# Required for novajoin to enroll the overcloud nodes
|
|
|
|
ServerMetadata:
|
|
|
|
ipa_enroll: True
|
|
|
|
|
2016-09-26 15:34:10 +00:00
|
|
|
resource_registry:
|
2016-12-07 07:03:18 +00:00
|
|
|
OS::TripleO::Services::HAProxyInternalTLS: ../puppet/services/haproxy-internal-tls-certmonger.yaml
|
2016-11-22 12:32:07 +00:00
|
|
|
OS::TripleO::Services::ApacheTLS: ../puppet/services/apache-internal-tls-certmonger.yaml
|
2016-09-28 09:51:13 +00:00
|
|
|
OS::TripleO::Services::MySQLTLS: ../puppet/services/database/mysql-internal-tls-certmonger.yaml
|
2016-12-08 11:10:22 +00:00
|
|
|
# We use apache as a TLS proxy
|
|
|
|
OS::TripleO::Services::TLSProxyBase: ../puppet/services/apache.yaml
|
2017-01-17 23:02:35 +00:00
|
|
|
|
|
|
|
# Creates nova metadata that will create the extra service principals per
|
|
|
|
# node.
|
|
|
|
OS::TripleO::ServiceServerMetadataHook: ../extraconfig/nova_metadata/krb-service-principals.yaml
|