![]() Cert-mon changes to monitor 'system-docker-local-certificate' k8s secret and install StarlingX docker_registry certificate for registry.local:9001. Changes include: - New thread to watch registry certificate changes - Refactored the code to reduce code duplication - Call sysinv api for 'certificate_install' Design testing completed: - When k8s secret is added/modified (initiated by cert-manager), certificate installation is completed - sysinv api 'certificate_install' installs & confirmed via openssl s_client -connect registry.local:9001 - When certificate is renewed, keys get regenerated (no changes needed. Confirmed that existing infrastructure takes care of it) Story: 2007361 Task: 41717 Change-Id: Iffa68486764287a1b82a183ab9801a53c1e4885b Signed-off-by: Isac Souza <IsacSacchi.Souza@windriver.com> |
||
---|---|---|
.. | ||
__init__.py | ||
certificate_mon_manager.py | ||
context.py | ||
messaging.py | ||
service.py | ||
utils.py | ||
watcher.py |