From a98c06f1fd1c541d627b7b80ee6acd655f4963a3 Mon Sep 17 00:00:00 2001
From: Hongbin Lu <hongbin034@gmail.com>
Date: Sun, 13 Jan 2019 22:36:33 +0000
Subject: [PATCH] kuryr: use internal neutron endpoint

Kuryr-neutron communication should use internal endpoint because
public endpoint might be protected by SSL which fails the API call.

Change-Id: I3f98f14d4f481c17a4368cc5c2a184323c548193
Closes-Bug: #1811262
---
 ansible/roles/kuryr/templates/kuryr.conf.j2 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ansible/roles/kuryr/templates/kuryr.conf.j2 b/ansible/roles/kuryr/templates/kuryr.conf.j2
index caa61963ea..b7d0696007 100644
--- a/ansible/roles/kuryr/templates/kuryr.conf.j2
+++ b/ansible/roles/kuryr/templates/kuryr.conf.j2
@@ -13,6 +13,7 @@ default_driver = kuryr.lib.binding.drivers.veth
 auth_uri = {{ internal_protocol }}://{{ kolla_internal_fqdn }}:{{ keystone_public_port }}
 auth_url = {{ admin_protocol }}://{{ kolla_internal_fqdn }}:{{ keystone_admin_port }}
 auth_type = password
+endpoint_type = internal
 project_domain_name = {{ default_project_domain_name }}
 project_name = service
 user_domain_name = {{ default_user_domain_name }}