classes/cluster/virtual-mcp11-aio-ssl/infra/init.yml - salt-models/mcp-virtual-aio - Gitiles

 classes:
  - cluster.virtual-mcp11-aio.infra
 parameters:
   _param:
     salt_minion_ca_host: cfg01.${linux:system:domain}
   salt:
    minion:
       cert:
         internal_proxy:
           host: ${_param:salt_minion_ca_host}
           authority: ${_param:salt_minion_ca_authority}
           common_name: internal_proxy
           signing_policy: cert_open
           alternative_names: IP:127.0.0.1,IP:${_param:cluster_local_address},IP:${_param:cluster_public_host},DNS:${linux:system:name},DNS:${linux:network:fqdn},DNS:${_param:cluster_local_address},DNS:${_param:cluster_public_host}
           key_file: "/etc/ssl/private/internal_proxy.key"
           cert_file: "/etc/ssl/certs/internal_proxy.crt"
           all_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"
	classes:
	- cluster.virtual-mcp11-aio.infra
	parameters:
	_param:
	salt_minion_ca_host: cfg01.${linux:system:domain}
	salt:
	minion:
	cert:
	internal_proxy:
	host: ${_param:salt_minion_ca_host}
	authority: ${_param:salt_minion_ca_authority}
	common_name: internal_proxy
	signing_policy: cert_open
	alternative_names: IP:127.0.0.1,IP:${_param:cluster_local_address},IP:${_param:cluster_public_host},DNS:${linux:system:name},DNS:${linux:network:fqdn},DNS:${_param:cluster_local_address},DNS:${_param:cluster_public_host}
	key_file: "/etc/ssl/private/internal_proxy.key"
	cert_file: "/etc/ssl/certs/internal_proxy.crt"
	all_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"