From ebf2674d6b55d0c92abeaa8bbdbdc82c2c4be026 Mon Sep 17 00:00:00 2001
From: Jonathan Rosser <jonathan.rosser@rd.bbc.co.uk>
Date: Tue, 12 May 2020 07:33:46 +0100
Subject: [PATCH] Add releasenote for HA configuration of LetsEncrypt/Certbot

Change-Id: I7bbd51f6b693593be04f11c695b149fad1237bd3
---
 releasenotes/notes/certbot_ha-83b56aed3f360dba.yaml | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 releasenotes/notes/certbot_ha-83b56aed3f360dba.yaml

diff --git a/releasenotes/notes/certbot_ha-83b56aed3f360dba.yaml b/releasenotes/notes/certbot_ha-83b56aed3f360dba.yaml
new file mode 100644
index 0000000..c276ea6
--- /dev/null
+++ b/releasenotes/notes/certbot_ha-83b56aed3f360dba.yaml
@@ -0,0 +1,11 @@
+---
+features:
+  - |
+    Multiple HAProxy nodes can now be deployed in an HA configuration with
+    keepalived and LetsEncrypt certificates. Certbot can be treated as a
+    backend service for haproxy and acme-challenge requests from LetsEncrypt
+    can be directed to whichever HAProxy server is running a certificate
+    renewal. New variables are defined for frontend ACLs and options
+    to be passed to Certbot which enable this new feature, but the majority
+    of the required configuration is done via the existing HAProxy service
+    setup. An example is provided in the documentation.