Add ssl suport for opencontrail api service
Use ssl termination on haproxy Lb for OC 4.X version.
OC API does not support TLS natively in versions <= 4.x
Change-Id: Ic78fc33bc938b05ff390aeb0ba1a6d74227117e9
Related-PROD: PROD-29907
diff --git a/keystone/client/service/contrail.yml b/keystone/client/service/contrail.yml
index 6792156..8f2534e 100644
--- a/keystone/client/service/contrail.yml
+++ b/keystone/client/service/contrail.yml
@@ -1,8 +1,6 @@
classes:
- system.keystone.client.v3.service.contrail
parameters:
- _param:
- contrail_service_protocol: http
keystone:
client:
server:
@@ -25,11 +23,11 @@
public_address: ${_param:cluster_public_host}
public_port: 8082
public_path: ''
- internal_protocol: ${_param:contrail_service_protocol}
+ internal_protocol: ${_param:opencontrail_api_protocol}
internal_address: ${_param:opencontrail_control_address}
internal_port: 8082
internal_path: ''
- admin_protocol: ${_param:contrail_service_protocol}
+ admin_protocol: ${_param:opencontrail_api_protocol}
admin_address: ${_param:opencontrail_control_address}
admin_port: 8082
admin_path: ''
\ No newline at end of file
diff --git a/keystone/client/v3/service/contrail.yml b/keystone/client/v3/service/contrail.yml
index 930804a..f9bbd69 100644
--- a/keystone/client/v3/service/contrail.yml
+++ b/keystone/client/v3/service/contrail.yml
@@ -1,6 +1,4 @@
parameters:
- _param:
- contrail_service_protocol: http
keystone:
client:
server:
@@ -37,9 +35,9 @@
region: ${_param:openstack_region}
contrail_internal:
interface: 'internal'
- url: ${_param:contrail_service_protocol}://${_param:opencontrail_control_address}:8082
+ url: ${_param:opencontrail_api_protocol}://${_param:opencontrail_control_address}:8082
region: ${_param:openstack_region}
contrail_admin:
interface: 'admin'
- url: ${_param:contrail_service_protocol}://${_param:opencontrail_control_address}:8082
+ url: ${_param:opencontrail_api_protocol}://${_param:opencontrail_control_address}:8082
region: ${_param:openstack_region}