openstack/openstack-manuals
Code Issues Proposed changes
7d5e0dd3ab
openstack-manuals/doc/common/tables/nova-ca.xml
Gauvain Pocentek e7cbc675ce update the config reference tables for liberty 
Change-Id: I959cc6884633ada1deb55f44ca1fc6f230bdebd9
2015-10-29 07:45:04 +01:00

112 lines
4.4 KiB
XML
Raw Blame History

<?xml version='1.0' encoding='UTF-8'?>
<para xmlns="http://docbook.org/ns/docbook" version="5.0">
<!--
###################################################################
WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
###################################################################
Warning: Do not edit this file. It is automatically
generated from the software project's code and your changes
will be overwritten.
The tool to generate this file lives in openstack-doc-tools
repository.
Please make any changes needed in the code, then run the
autogenerate-config-doc tool from the openstack-doc-tools
repository, or ask for help on the documentation mailing list,
IRC channel or meeting.
###################################################################
WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
###################################################################
-->
<table rules="all" xml:id="config_table_nova_ca">
<caption>Description of CA and SSL configuration options</caption>
<col width="50%"/>
<col width="50%"/>
<thead>
<tr>
<th>Configuration option = Default value</th>
<th>Description</th>
</tr>
</thead>
<tbody>
<tr>
<th colspan="2">[DEFAULT]</th>
</tr>
<tr>
<td><option>ca_file</option> = <replaceable>cacert.pem</replaceable></td>
<td>(StrOpt) Filename of root CA</td>
</tr>
<tr>
<td><option>ca_path</option> = <replaceable>$state_path/CA</replaceable></td>
<td>(StrOpt) Where we keep our root CA</td>
</tr>
<tr>
<td><option>cert</option> = <replaceable>self.pem</replaceable></td>
<td>(StrOpt) SSL certificate file</td>
</tr>
<tr>
<td><option>cert_manager</option> = <replaceable>nova.cert.manager.CertManager</replaceable></td>
<td>(StrOpt) Full class name for the Manager for cert</td>
</tr>
<tr>
<td><option>cert_topic</option> = <replaceable>cert</replaceable></td>
<td>(StrOpt) The topic cert nodes listen on</td>
</tr>
<tr>
<td><option>crl_file</option> = <replaceable>crl.pem</replaceable></td>
<td>(StrOpt) Filename of root Certificate Revocation List</td>
</tr>
<tr>
<td><option>key_file</option> = <replaceable>private/cakey.pem</replaceable></td>
<td>(StrOpt) Filename of private key</td>
</tr>
<tr>
<td><option>keys_path</option> = <replaceable>$state_path/keys</replaceable></td>
<td>(StrOpt) Where we keep our keys</td>
</tr>
<tr>
<td><option>project_cert_subject</option> = <replaceable>/C=US/ST=California/O=OpenStack/OU=NovaDev/CN=project-ca-%.16s-%s</replaceable></td>
<td>(StrOpt) Subject for certificate for projects, %s for project, timestamp</td>
</tr>
<tr>
<td><option>ssl_ca_file</option> = <replaceable>None</replaceable></td>
<td>(StrOpt) CA certificate file to use to verify connecting clients</td>
</tr>
<tr>
<td><option>ssl_cert_file</option> = <replaceable>None</replaceable></td>
<td>(StrOpt) SSL certificate of API server</td>
</tr>
<tr>
<td><option>ssl_key_file</option> = <replaceable>None</replaceable></td>
<td>(StrOpt) SSL private key of API server</td>
</tr>
<tr>
<td><option>use_project_ca</option> = <replaceable>False</replaceable></td>
<td>(BoolOpt) Should we use a CA for each project?</td>
</tr>
<tr>
<td><option>user_cert_subject</option> = <replaceable>/C=US/ST=California/O=OpenStack/OU=NovaDev/CN=%.16s-%.16s-%s</replaceable></td>
<td>(StrOpt) Subject for certificate for users, %s for project, user, timestamp</td>
</tr>
<tr>
<th colspan="2">[ssl]</th>
</tr>
<tr>
<td><option>ca_file</option> = <replaceable>None</replaceable></td>
<td>(StrOpt) CA certificate file to use to verify connecting clients.</td>
</tr>
<tr>
<td><option>cert_file</option> = <replaceable>None</replaceable></td>
<td>(StrOpt) Certificate file to use when starting the server securely.</td>
</tr>
<tr>
<td><option>key_file</option> = <replaceable>None</replaceable></td>
<td>(StrOpt) Private key file to use when starting the server securely.</td>
</tr>
</tbody>
</table>
</para>
View Git Blame Copy Permalink