Allow enabling authentication on haproxy.stats - apex-puppet-tripleo

diff options

author	Ben Nemec <bnemec@redhat.com>	2016-03-09 21:46:14 +0000
committer	Ben Nemec <bnemec@redhat.com>	2016-03-11 20:56:04 +0000
commit	4988d0fc359a59af6ce86c0beb8549a950df57cd (patch)
tree	17275d218f3997e24f448e3ff5d48807ca824bf2 /lib
parent	e122bab6a9fe9f727ef5f82bcda6261cbd4ee1d6 (diff)

Allow enabling authentication on haproxy.stats

Right now we always deploy the haproxy.stats endpoint with no authentication, which is a security concern. Allow setting a password on the endpoint so it isn't accessible to the world. While this allows configuring SSL on the stats endpoint, it does not use the service_certificate parameter because that certificate is intended to be used only for public endpoints, and the stats endpoint is actually on the admin VIP. Once we have support for SSL on admin endpoints we can have stats use it by default. Change-Id: I8a5844e89bd81a99d5101ab6bce7a8d79e069565

Diffstat (limited to 'lib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: