Merge "TLS-everywhere: Configure CA for apache"
This commit is contained in:
commit
d0696b9a9b
|
@ -38,6 +38,11 @@ parameters:
|
|||
EnableInternalTLS:
|
||||
type: boolean
|
||||
default: false
|
||||
InternalTLSCAFile:
|
||||
default: '/etc/ipa/ca.crt'
|
||||
type: string
|
||||
description: Specifies the default CA cert to use if TLS is used for
|
||||
services in the internal network.
|
||||
|
||||
conditions:
|
||||
|
||||
|
@ -88,6 +93,7 @@ outputs:
|
|||
- internal_tls_enabled
|
||||
-
|
||||
generate_service_certificates: true
|
||||
apache::mod::ssl::ssl_ca: {get_param: InternalTLSCAFile}
|
||||
tripleo::certmonger::apache_dirs::certificate_dir: '/etc/pki/tls/certs/httpd'
|
||||
tripleo::certmonger::apache_dirs::key_dir: '/etc/pki/tls/private/httpd'
|
||||
apache_certificates_specs:
|
||||
|
|
Loading…
Reference in New Issue