diff options
author | Jenkins <jenkins@review.openstack.org> | 2017-08-17 18:46:42 +0000 |
---|---|---|
committer | Gerrit Code Review <review@openstack.org> | 2017-08-17 18:46:42 +0000 |
commit | 111270884313c15ecfac7f3f2a3af2e03c06e076 (patch) | |
tree | 32cce034cca2cad1aeac12f9440bdb0058f88e25 /docker | |
parent | 4af5f02c808df8fad76d4d0d7b2183619c4628d2 (diff) | |
parent | 4e5d43196a4da7b2bad23cf6e8ad1e720429bfe3 (diff) |
Merge "Enable TLS configuration for containerized RabbitMQ"
Diffstat (limited to 'docker')
-rw-r--r-- | docker/services/pacemaker/rabbitmq.yaml | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/docker/services/pacemaker/rabbitmq.yaml b/docker/services/pacemaker/rabbitmq.yaml index de53ceee..d8e50afd 100644 --- a/docker/services/pacemaker/rabbitmq.yaml +++ b/docker/services/pacemaker/rabbitmq.yaml @@ -92,6 +92,11 @@ outputs: dest: "/" merge: true preserve_properties: true + - source: "/var/lib/kolla/config_files/src-tls/*" + dest: "/" + merge: true + optional: true + preserve_properties: true permissions: - path: /var/lib/rabbitmq owner: rabbitmq:rabbitmq @@ -99,6 +104,14 @@ outputs: - path: /var/log/rabbitmq owner: rabbitmq:rabbitmq recurse: true + - path: /etc/pki/tls/certs/rabbitmq.crt + owner: rabbitmq:rabbitmq + perm: '0600' + optional: true + - path: /etc/pki/tls/private/rabbitmq.key + owner: rabbitmq:rabbitmq + perm: '0600' + optional: true # When using pacemaker we don't launch the container, instead that is done by pacemaker # itself. docker_config: @@ -164,6 +177,8 @@ outputs: echo 'export ERL_EPMD_ADDRESS=127.0.0.1' > /etc/rabbitmq/rabbitmq-env.conf echo 'export ERL_EPMD_PORT=4370' >> /etc/rabbitmq/rabbitmq-env.conf for pid in $(pgrep epmd); do if [ "$(lsns -o NS -p $pid)" == "$(lsns -o NS -p 1)" ]; then kill $pid; break; fi; done + metadata_settings: + get_attr: [RabbitmqBase, role_data, metadata_settings] upgrade_tasks: - name: get bootstrap nodeid tags: common |