add cert for cicd

commit: 2f7767da3053c0c334ea448ea7359121529e0c28 [log] [tgz]
author: Marek Celoud <mceloud@mirantis.com> Wed Mar 22 18:06:27 2017 +0100
committer: Marek Celoud <mceloud@mirantis.com> Wed Mar 22 18:11:20 2017 +0100
tree: fce9d6f22825d2c0b902611cdb5a883d43bec1e9
parent: 8a0777ba4b23f043fb613352580de52552bf134e [diff]
diff --git a/salt/minion/cert/proxy/cicd.yml b/salt/minion/cert/proxy/cicd.yml
new file mode 100644
index 0000000..5fb5b28
--- /dev/null
+++ b/salt/minion/cert/proxy/cicd.yml

@@ -0,0 +1,15 @@
+classes:
+- system.salt.minion.cert.proxy
+parameters:
+  salt:
+    minion:
+      cert:
+        proxy:
+          alternative_names: "DNS:${_param:cluster_public_host}, DNS:*.${_param:cluster_public_host}, IP:${_param:control_vip_address}, IP:${_param:single_address}"
+          key_file: /etc/haproxy/ssl/${_param:cluster_public_host}.key
+          cert_file: /etc/haproxy/ssl/${_param:cluster_public_host}.crt
+          all_file: /etc/haproxy/ssl/${_param:cluster_public_host}-all.pem
+          ca_file: /etc/haproxy/ssl/${_param:salt_minion_ca_authority}-ca.crt
+          user: root
+          group: haproxy
+          mode: 640
\ No newline at end of file
commit	2f7767da3053c0c334ea448ea7359121529e0c28	[log] [tgz]
author	Marek Celoud <mceloud@mirantis.com>	Wed Mar 22 18:06:27 2017 +0100
committer	Marek Celoud <mceloud@mirantis.com>	Wed Mar 22 18:11:20 2017 +0100
tree	fce9d6f22825d2c0b902611cdb5a883d43bec1e9
parent	8a0777ba4b23f043fb613352580de52552bf134e [diff]