Make export of certificate depends on general option
Nova communicate with different services, which can be under SSL in the same time, when Keystone will be without SSL. It's rare, but possible. This patch makes exporting certificate for job depended on general option "create_certificates". Without it Nova under SSL with Keystone without SSL failed due to missed certificate for Nova https endpoint. Change-Id: I273707dc175b4ae026924af4f296e14af0bb23ca
This commit is contained in:
parent
a78d9aba2e
commit
c4a2bbe4f0
|
@ -16,7 +16,7 @@ export OS_PASSWORD={{ openstack.user_password }}
|
|||
export OS_USERNAME={{ openstack.user_name }}
|
||||
export OS_PROJECT_NAME={{ openstack.project_name }}
|
||||
export OS_AUTH_URL="{{ address('keystone', keystone.admin_port, with_scheme=True) }}/v3"
|
||||
{% if keystone.tls.enabled %}
|
||||
{% if security.tls.create_certificates %}
|
||||
export OS_CACERT="/opt/ccp/etc/tls/ca.pem"
|
||||
{% endif %}
|
||||
|
||||
|
|
Loading…
Reference in New Issue