[salt.minion.cert] MySQL certificate and key
Adds ability to generate certificates and keys using
salt.minion.cert state for MySQL.
Usage:
Add the class to reclass model for db nodes:
classes:
- system.salt.minion.cert.mysql.server
Apply state:
salt 'db*' state.sls salt.minion.cert
PROD-14210
Change-Id: I8366dd618032c6179428ed5a25f59286fa518925
diff --git a/salt/minion/cert/mysql/pki.yml b/salt/minion/cert/mysql/pki.yml
new file mode 100644
index 0000000..b19ef5e
--- /dev/null
+++ b/salt/minion/cert/mysql/pki.yml
@@ -0,0 +1,8 @@
+parameters:
+ salt:
+ minion:
+ cert:
+ mysql_server:
+ key_file: /srv/salt/pki/${_param:cluster_name}/${salt:minion:cert:mysql_server:common_name}.key
+ cert_file: /srv/salt/pki/${_param:cluster_name}/${salt:minion:cert:mysql_server:common_name}.crt
+ all_file: /srv/salt/pki/${_param:cluster_name}/${salt:minion:cert:mysql_server:common_name}-chain-with-key.pem