Merge pull request #191 from Mirantis/pr_certificates2 Generic wildcard certificate

commit: ecd14b0e06a6d63358acafe7ff60c237e27b604c [log] [tgz]
author: Petr Michalec <epcim@apealive.net> Tue Mar 21 13:28:34 2017 +0100
committer: GitHub <noreply@github.com> Tue Mar 21 13:28:34 2017 +0100
tree: 13908ca53d3bb2cfad6e9bbdded852c966a7df5f
parent: b6eeaca967a0139d6e253d2d1a6c515297b88cde [diff]
parent: 61b8a232b0c92d6d7c1abe07481e2094334f75ab [diff]
diff --git a/salt/minion/cert/wildcard.yml b/salt/minion/cert/wildcard.yml
new file mode 100644
index 0000000..a199756
--- /dev/null
+++ b/salt/minion/cert/wildcard.yml

@@ -0,0 +1,15 @@
+parameters:
+  _param:
+    salt_minion_ca_authority: salt_master_ca
+  salt:
+    minion:
+      cert:
+        wildcard:
+          host: ${_param:salt_minion_ca_host}
+          signing_policy: cert_server
+          authority: ${_param:salt_minion_ca_authority}
+          common_name: wildcard.${_param:cluster_public_host}
+          alternative_names: IP:127.0.0.1,IP:${_param:openstack_proxy_address},IP:${_param:cluster_public_host},DNS:*.${_param:cluster_public_host},DNS:${_param:cluster_domain},DNS:*.${_param:cluster_domain}
+          key_file:  /srv/salt/pki/wildcard.${_param:cluster_public_host}.key
+          cert_file: /srv/salt/pki/wildcard.${_param:cluster_public_host}.crt
+          all_file:  /srv/salt/pki/wildcard-with-key.${_param:cluster_public_host}.pem
commit	ecd14b0e06a6d63358acafe7ff60c237e27b604c	[log] [tgz]
author	Petr Michalec <epcim@apealive.net>	Tue Mar 21 13:28:34 2017 +0100
committer	GitHub <noreply@github.com>	Tue Mar 21 13:28:34 2017 +0100
tree	13908ca53d3bb2cfad6e9bbdded852c966a7df5f
parent	b6eeaca967a0139d6e253d2d1a6c515297b88cde [diff]
parent	61b8a232b0c92d6d7c1abe07481e2094334f75ab [diff]