Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-models / mcp-virtual-aio / 57e29b5c6f9e86a77fde63422061300a719d9e0e / . / classes / cluster / virtual-mcp11-aio-ssl / infra / init.yml
blob: 325f046948ed797f6945f451aa714dfb8c19d815 [file] [log] [blame]
Vasyl Saienko3c6caf72018-03-06 01:51:48 +0200[diff] [blame]1classes:
2 - cluster.virtual-mcp11-aio.infra
3parameters:
4 _param:
5 salt_minion_ca_host: cfg01.${linux:system:domain}
6 salt:
7 minion:
8 cert:
9 internal_proxy:
10 host: ${_param:salt_minion_ca_host}
11 authority: ${_param:salt_minion_ca_authority}
12 common_name: internal_proxy
13 signing_policy: cert_open
14 alternative_names: IP:127.0.0.1,IP:${_param:cluster_local_address},IP:${_param:cluster_public_host},DNS:${linux:system:name},DNS:${linux:network:fqdn},DNS:${_param:cluster_local_address},DNS:${_param:cluster_public_host}
15 key_file: "/etc/ssl/private/internal_proxy.key"
16 cert_file: "/etc/ssl/certs/internal_proxy.crt"
17 all_file: "/etc/ssl/certs/internal_proxy-with-chain.crt"