From 59edff43566a0979b0eace8261c26439b9ccb2c6 Mon Sep 17 00:00:00 2001 From: John Eckersberg Date: Fri, 19 Nov 2021 15:10:44 -0500 Subject: [PATCH] Add RabbitFIPS parameter Depends-On: I66de56a07a12443414b5e960ba1a3c655a83abe7 Change-Id: I5df73e49f63cf1f31293e9a6865eb9ccf8dac388 --- deployment/rabbitmq/rabbitmq-container-puppet.yaml | 5 +++++ .../notes/add-rabbit-fips-option-ddf5a0d7e37d8e5d.yaml | 5 +++++ 2 files changed, 10 insertions(+) create mode 100644 releasenotes/notes/add-rabbit-fips-option-ddf5a0d7e37d8e5d.yaml diff --git a/deployment/rabbitmq/rabbitmq-container-puppet.yaml b/deployment/rabbitmq/rabbitmq-container-puppet.yaml index 394dc74d9d..647dc60404 100644 --- a/deployment/rabbitmq/rabbitmq-container-puppet.yaml +++ b/deployment/rabbitmq/rabbitmq-container-puppet.yaml @@ -73,6 +73,10 @@ parameters: net_ticktime kernel variable. default: 15 type: number + RabbitFIPS: + type: boolean + default: false + description: Configures RabbitMQ to run in FIPS mode RabbitAdditionalErlArgs: description: Additional parameters passed to the Erlang subsystem. The string @@ -221,6 +225,7 @@ outputs: # TODO(jaosorior): Remove this once we set a proper default in # puppet-tripleo tripleo::profile::base::rabbitmq::enable_internal_tls: {get_param: EnableInternalTLS} + tripleo::profile::base::rabbitmq::fips_mode: {get_param: RabbitFIPS} rabbitmq::collect_statistics_interval: 30000 rabbitmq::admin_enable: false rabbitmq::management_enable: true diff --git a/releasenotes/notes/add-rabbit-fips-option-ddf5a0d7e37d8e5d.yaml b/releasenotes/notes/add-rabbit-fips-option-ddf5a0d7e37d8e5d.yaml new file mode 100644 index 0000000000..2e2759b55e --- /dev/null +++ b/releasenotes/notes/add-rabbit-fips-option-ddf5a0d7e37d8e5d.yaml @@ -0,0 +1,5 @@ +--- +features: + - | + RabbitMQ can be configured to run in FIPS mode via the new + configuration option RabbitFIPS. The default value is false.