From 779b6c152a6ea566dab476b307543a33e1755f4f Mon Sep 17 00:00:00 2001
From: Ian Wienand <iwienand@redhat.com>
Date: Thu, 17 May 2018 14:00:48 +1000
Subject: [PATCH] nodepool-builder: use SSL for log and artefact export

We want this more for it's transparent-cache busting effects than
security, but we live in a https world.  This starts with self-signed
certificates, which might even be enough as it is really only
developers who are interested in build logs and test images.

Change-Id: Ifd5823ff51de40226c72930c69faf50b677a7dfe
Depends-On: https://review.openstack.org/569007
---
 manifests/site.pp | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/manifests/site.pp b/manifests/site.pp
index c202bfac88..35af682e96 100644
--- a/manifests/site.pp
+++ b/manifests/site.pp
@@ -1144,6 +1144,8 @@ node /^nb\d+\.openstack\.org$/ {
     revision                      => 'master',
     python_version                => 3,
     zuulv3                        => true,
+    ssl_cert_file                 => '/etc/ssl/certs/ssl-cert-snakeoil.pem',
+    ssl_key_file                  => '/etc/ssl/private/ssl-cert-snakeoil.key',
   }
 
   file { '/home/nodepool/.config/openstack/limestone_cacert.pem':