Gnocchi: Add TLS support for public endpoint

This commit adds the capability for Gnocchi chart to
support TLS on overriden fqdn for public endpoint.

Change-Id: Ic008934641540968927f5961783ed45b835e4d34
Signed-off-by: Angie Wang <angie.wang@windriver.com>

gnocchi/templates/secret-ingress-tls.yaml

@@ -0,0 +1,19 @@
+{{/*
+Copyright 2019 Wind River Systems, Inc.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+   http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/}}
+
+{{- if .Values.manifests.secret_ingress_tls }}
+{{- include "helm-toolkit.manifests.secret_ingress_tls" ( dict "envAll" . "backendServiceType" "metric" ) }}
+{{- end }}

gnocchi/values.yaml

@@ -472,6 +472,10 @@ secrets:
     admin: gnocchi-db-indexer-admin
     gnocchi: gnocchi-db-indexer-user
   rbd: gnocchi-rbd-keyring
+  tls:
+    metric:
+      api:
+        public: gnocchi-tls-public
 
 bootstrap:
   enabled: false
@@ -538,6 +542,13 @@ endpoints:
       public: gnocchi
     host_fqdn_override:
       default: null
+      # NOTE: this chart supports TLS for fqdn over-ridden public
+      # endpoints using the following format:
+      # public:
+      #   host: null
+      #   tls:
+      #     crt: null
+      #     key: null
     path:
       default: null
     scheme:
@@ -633,6 +644,7 @@ manifests:
   pod_gnocchi_test: true
   secret_db: true
   secret_keystone: true
+  secret_ingress_tls: true
   service_api: true
   service_ingress_api: true
   service_statsd: true