Only bind-mount internal TLS haproxy dirs if enabled

We were bind-mounting those directories when public TLS was enabled...
it needed to be in the internal TLS conditional.

Change-Id: I7487c0f3b495dce2f5ce3028e8516cc3c215f896
Closes-Bug: #1820577
This commit is contained in:
Juan Antonio Osorio Robles 2019-03-19 10:15:25 +02:00
parent b2900e22e6
commit b848cef629
1 changed files with 3 additions and 3 deletions

View File

@ -153,13 +153,13 @@ outputs:
list_concat:
- if:
- public_tls_enabled
- - get_param: HAProxyInternalTLSKeysDirectory
- get_param: HAProxyInternalTLSCertsDirectory
- get_param: DeployedSSLCertificatePath
- - get_param: DeployedSSLCertificatePath
- null
- if:
- internal_tls_enabled
- - get_param: InternalTLSCAFile
- get_param: HAProxyInternalTLSKeysDirectory
- get_param: HAProxyInternalTLSCertsDirectory
- null
tripleo::profile::pacemaker::haproxy_bundle::internal_certs_directory: {get_param: HAProxyInternalTLSCertsDirectory}
tripleo::profile::pacemaker::haproxy_bundle::internal_keys_directory: {get_param: HAProxyInternalTLSKeysDirectory}