kolla-ansible

Author SHA1 Message Date

Author	SHA1	Message	Date
Arthur Outhenin-Chalandre	57220ce1d9	Add `kolla_externally_managed_cert` option This option disables copy of certificates from the operator host to kolla-ansible managed hosts. This is especially useful if you already have some mechanisms to handle your certificates directly on your hosts. Co-Authored-By: Marc 'risson' Schmitt <marc.schmitt@risson.space> Change-Id: Ie18b2464cb5a65a88c4ac191a921b8074a14f504	2021-03-02 18:09:06 +01:00
James Kirsch	b475643c11	Add support for encrypting backend Keystone HAProxy traffic This patch introduces an optional backend encryption for Keystone service. When used in conjunction with enabling TLS for service API endpoints, network communcation will be encrypted end to end, from client through HAProxy to the Keystone service. Change-Id: I6351147ddaff8b2ae629179a9bc3bae2ebac9519 Partially-Implements: blueprint add-ssl-internal-network	2020-04-09 09:22:55 +00:00

Arthur Outhenin-Chalandre

57220ce1d9

Add kolla_externally_managed_cert option

This option disables copy of certificates from the operator host to
kolla-ansible managed hosts.

This is especially useful if you already have some mechanisms to handle
your certificates directly on your hosts.

Co-Authored-By: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Change-Id: Ie18b2464cb5a65a88c4ac191a921b8074a14f504

2021-03-02 18:09:06 +01:00

James Kirsch

b475643c11

Add support for encrypting backend Keystone HAProxy traffic

This patch introduces an optional backend encryption for Keystone
service. When used in conjunction with enabling TLS for service API
endpoints, network communcation will be encrypted end to end, from
client through HAProxy to the Keystone service.

Change-Id: I6351147ddaff8b2ae629179a9bc3bae2ebac9519
Partially-Implements: blueprint add-ssl-internal-network

2020-04-09 09:22:55 +00:00

2 Commits