diff options
| author |   Juan Antonio Osorio Robles <jaosorior@redhat.com> | 2016-12-15 16:20:40 +0200 |
|---|---|---|
| committer | Juan Antonio Osorio Robles <jaosorior@redhat.com> | 2017-01-25 00:33:11 +0200 |
| commit | 80086fd342032ec448a84ecf7c5dbe98d381450a (patch) | |
| tree | 401b9f6d0e6f80930c90a0a48bcd3c435a03b8e7 /puppet/services/database | |
| parent | 00938b0accff3a07954ff058e205f21a51583b56 (diff) | |
Add metadata settings for needed kerberos principals
These are only used for TLS-everywhere, and fills up the kerberos
principals that will need to be created for the certs used by the
overcloud. With this, the metadata hook will format these principals
correctly and will further pass them on to the nova metadata service.
Where they can be used if there's a plugin enabled.
bp tls-via-certmonger
bp novajoin
Change-Id: I873094bb69200052febda629fda698a7a782c031
Diffstat (limited to 'puppet/services/database')
| -rw-r--r-- | puppet/services/database/mysql-internal-tls-certmonger.yaml | 4 | ||||
| -rw-r--r-- | puppet/services/database/mysql.yaml | 2 |
2 files changed, 6 insertions, 0 deletions
diff --git a/puppet/services/database/mysql-internal-tls-certmonger.yaml b/puppet/services/database/mysql-internal-tls-certmonger.yaml index 56d037e7..9f7eaf57 100644 --- a/puppet/services/database/mysql-internal-tls-certmonger.yaml +++ b/puppet/services/database/mysql-internal-tls-certmonger.yaml @@ -41,3 +41,7 @@ outputs: template: "mysql/%{hiera('cloud_name_NETWORK')}" params: NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]} + metadata_settings: + - service: mysql + network: {get_param: [ServiceNetMap, MysqlNetwork]} + type: vip diff --git a/puppet/services/database/mysql.yaml b/puppet/services/database/mysql.yaml index 7e12894f..8c4042d9 100644 --- a/puppet/services/database/mysql.yaml +++ b/puppet/services/database/mysql.yaml @@ -104,4 +104,6 @@ outputs: - name: Start service tags: step4 service: name=mariadb state=started + metadata_settings: + get_attr: [MySQLTLS, role_data, metadata_settings] |