Add missing parts for rabbitmq ssl configuration With this patch cacert/ssl chiphers will be configured correctly. Change-Id: I7b406e32313213bdea2202cc765d2c8f8b3f7601

commit: 0257324a979ef77b68f29c434e463ccf240785c2 [log] [tgz]
author: Mykyta Karpin <mkarpin@mirantis.com> Fri Apr 06 11:37:02 2018 +0300
committer: Mykyta Karpin <mkarpin@mirantis.com> Fri Apr 06 11:37:02 2018 +0300
tree: 2e138ab949f408d8c5b803e972d8eb67165ec4ff
parent: 3bc25458c9510e15413f9a605a0a4e0da78ebafa [diff]
diff --git a/aodh/files/pike/aodh.conf.Debian b/aodh/files/pike/aodh.conf.Debian
index f5bf9ad..e1d454e 100644
--- a/aodh/files/pike/aodh.conf.Debian
+++ b/aodh/files/pike/aodh.conf.Debian

@@ -1455,6 +1455,18 @@
 # message (floating point value)
 #rpc_retry_delay = 0.25
 
+{%- if server.message_queue.get('ssl',{}).get('enabled', False) %}
+rabbit_use_ssl=true
+
+{%- if server.message_queue.ssl.version is defined %}
+kombu_ssl_version = {{ server.message_queue.ssl.version }}
+{%- elif salt['grains.get']('pythonversion') > [2,7,8] %}
+kombu_ssl_version = TLSv1_2
+{%- endif %}
+
+kombu_ssl_ca_certs = {{ server.message_queue.ssl.get('cacert_file', server.cacert_file) }}
+{%- endif %}
+
 
 [oslo_messaging_zmq]
commit	0257324a979ef77b68f29c434e463ccf240785c2	[log] [tgz]
author	Mykyta Karpin <mkarpin@mirantis.com>	Fri Apr 06 11:37:02 2018 +0300
committer	Mykyta Karpin <mkarpin@mirantis.com>	Fri Apr 06 11:37:02 2018 +0300
tree	2e138ab949f408d8c5b803e972d8eb67165ec4ff
parent	3bc25458c9510e15413f9a605a0a4e0da78ebafa [diff]