Reload haproxy after injecting certs w/o pcmk too
This was accidentally dropped from Id5ed05b3a20d06af8ae7a3d6f859b03399b0d77d but we should handle the non-pacemaker case as well. Change-Id: Ia06746f9c536159cd7b62259e450b3dec331cdb0
This commit is contained in:
parent
517f6b27a9
commit
55af7266a4
|
@ -63,6 +63,14 @@ resources:
|
|||
openssl rsa -noout -modulus -in ${cert_path} \
|
||||
| openssl md5 | cut -c 10- \
|
||||
> ${heat_outputs_path}.key_modulus
|
||||
# We need to reload haproxy in case the certificate changed because
|
||||
# puppet doesn't know the contents of the cert file. The pacemaker
|
||||
# case is handled separately in a pacemaker-specific resource.
|
||||
pacemaker_status=$(systemctl is-active pacemaker)
|
||||
haproxy_status=$(systemctl is-active haproxy)
|
||||
if [ "$pacemaker_status" != "active" -a "$haproxy_status" = "active"]; then
|
||||
systemctl reload haproxy
|
||||
fi
|
||||
|
||||
ControllerTLSDeployment:
|
||||
type: OS::Heat::SoftwareDeployment
|
||||
|
|
Loading…
Reference in New Issue