From 6ac7b2e7f1d078feca53d559389969c52405efb4 Mon Sep 17 00:00:00 2001
From: Luka Peschke <luka.peschke@objectif-libre.com>
Date: Thu, 6 Sep 2018 20:55:03 +0200
Subject: [PATCH] Add support for OPENSTACK_SSL_{CACERT,NO_VERIFY}

This adds support for the both options mentionned in the title. The ca
certificate was wrongfully passed to keystoneauth through the 'cert' parameter,
which is meant for the client certificate.

Change-Id: I9a6759a8546a235975177bbea59334aa23f99328
Story: 2003689
Task: 26223
Depends-On: https://review.openstack.org/#/c/600510/
---
 cloudkittydashboard/api/cloudkitty.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/cloudkittydashboard/api/cloudkitty.py b/cloudkittydashboard/api/cloudkitty.py
index c8d0e86..ac07423 100644
--- a/cloudkittydashboard/api/cloudkitty.py
+++ b/cloudkittydashboard/api/cloudkitty.py
@@ -27,6 +27,7 @@ from cloudkittydashboard import utils
 def cloudkittyclient(request):
     """Initialization of Cloudkitty client."""
     cacert = getattr(settings, 'OPENSTACK_SSL_CACERT', None)
+    insecure = getattr(settings, 'OPENSTACK_SSL_NO_VERIFY', False)
     auth_url = getattr(settings, 'OPENSTACK_KEYSTONE_URL', None)
     auth = Token(
         auth_url,
@@ -37,7 +38,8 @@ def cloudkittyclient(request):
     return ck_client.Client(
         '1',
         auth=auth,
-        cert=cacert)
+        cacert=cacert,
+        insecure=insecure)
 
 
 def identify(what, name=False, key=None):