commit 6ccbafaef73835f58e901301c9f1f2c09f42533d
author Oleksandr Shyshko <oshyshko@mirantis.com> Tue Sep 11 13:04:36 2018 +0300
committer Vasyl Saienko <vsaienko@mirantis.com> Thu Sep 13 09:15:02 2018 +0000
tree ca18dbde31e0a94f831ec92fba9f224ebf09c12e
parent 60c8c2342244f3309a7dccbff9c753a501fda266

Implement X.509 auth for MySQL and Barbican

Change-Id: Ic724d0d3474f0d52c56638e8805b2f64dc21c120
Related-PROD: PROD-22738

tests/pillar/ssl.sls

diff --git a/tests/pillar/ssl.sls b/tests/pillar/ssl.sls
index f3799df..b8b1398 100644
--- a/tests/pillar/ssl.sls
+++ b/tests/pillar/ssl.sls
@@ -53,8 +53,30 @@
       name: barbican
       user: barbican
       password: password
+      x509:
+        enabled: True
+        ca_file: /etc/barbican/ssl/mysql/ca-cert.pem
+        key_file: /etc/barbican/ssl/mysql/client-key.pem
+        cert_file: /etc/barbican/ssl/mysql/client-cert.pem
+        cacert: |
+          -----BEGIN CERTIFICATE-----
+          MIIFzzCCA7egAwIBAgIIe7zZ8hCvkgowDQYJKoZIhvcNAQELBQAwSjELMAkGA1UE
+          -----END CERTIFICATE-----
+        cert: |
+          -----BEGIN CERTIFICATE-----
+          MIIGSjCCBDKgAwIBAgIJAIHRPs2rZbLvMA0GCSqGSIb3DQEBCwUAMEoxCzAJBgNV
+          -----END CERTIFICATE-----
+        key: |
+          -----BEGIN RSA PRIVATE KEY-----
+          MIIJKQIBAAKCAgEAq0m4kOIITliYea07yJnlSRNY0o6NaykiteSfHGauiub4lNQJ
+          -----END RSA PRIVATE KEY-----
       ssl:
         enabled: True
+        cacert_file: /etc/barbican/ssl/mysql/ca-cert.pem
+        cacert: |
+          -----BEGIN CERTIFICATE-----
+          MIIFzzCCA7egAwIBAgIIe7zZ8hCvkgowDQYJKoZIhvcNAQELBQAwSjELMAkGA1UE
+          -----END CERTIFICATE-----
     bind:
       address: 10.0.106.20
       port: 9311