[salt.minion.cert] MySQL certificate and key Adds ability to generate certificates and keys using salt.minion.cert state for MySQL. Usage: Add the class to reclass model for db nodes: classes: - system.salt.minion.cert.mysql.server Apply state: salt 'db*' state.sls salt.minion.cert PROD-14210 Change-Id: I8366dd618032c6179428ed5a25f59286fa518925

commit: 143f1f03e6a8861375824ee934a50a5cf9932e29 [log] [tgz]
author: Kirill Bespalov <kbespalov@mirantis.com> Fri Aug 25 13:28:39 2017 +0300
committer: Kirill Bespalov <kbespalov@mirantis.com> Mon Oct 30 11:07:05 2017 +0000
tree: ee7f1319ae4315c9adf2ded309b52f37b0875c57
parent: 07dcc33a544036a8b687b3b791d3a4d6d2bd9cb7 [diff] [blame]
diff --git a/salt/minion/cert/mysql/init.yml b/salt/minion/cert/mysql/init.yml
new file mode 100644
index 0000000..a1c480f
--- /dev/null
+++ b/salt/minion/cert/mysql/init.yml

@@ -0,0 +1,13 @@
+parameters:
+  _param:
+    salt_minion_ca_host: cfg01.${_param:cluster_domain}
+    salt_minion_ca_authority: salt_master_ca
+  salt:
+    minion:
+      cert:
+        mysql_server:
+          host: ${_param:salt_minion_ca_host}
+          signing_policy: cert_server
+          authority: ${_param:salt_minion_ca_authority}
+          common_name: mysql_server
+          signing_policy: cert_open
commit	143f1f03e6a8861375824ee934a50a5cf9932e29	[log] [tgz]
author	Kirill Bespalov <kbespalov@mirantis.com>	Fri Aug 25 13:28:39 2017 +0300
committer	Kirill Bespalov <kbespalov@mirantis.com>	Mon Oct 30 11:07:05 2017 +0000
tree	ee7f1319ae4315c9adf2ded309b52f37b0875c57
parent	07dcc33a544036a8b687b3b791d3a4d6d2bd9cb7 [diff] [blame]