e0f50b4b3a
metadata_settings in docker/services/redis.yaml was returning a list
of two items rather than one as expected. As a result, the compact/
mangedby service principals were not being created by novajoin service.
This results ina permission issue during overcloud deploy as the
`getcert` request will hit a permissions issue during Step2.
Note that this only affects Rocky and earlier branches. The issue was
resolved in Stein when redis service was flattened[1,2].
- Push tls logic into redis-base and consume in child templates.
- Move away from use_tls_proxy to more accurate internal_tls_enabled
- Ensure redis service has both service principals created if internal
tls is enabled
[1] - https://review.opendev.org/#/c/635930/
[2] - https://review.opendev.org/640944
Change-Id: Ic781905b63a0635b7bd0c7079fa84ca1e7f93989
Partial-bug: #1838679
(cherry picked from commit
|
||
---|---|---|
.. | ||
mongodb.yaml | ||
mysql.yaml | ||
redis.yaml |