Blame - salt/minion/cert/mysql/server.yml - salt-models/reclass-system

blob: 8ff75192e189a6d638065b0470d2110628193e21 [file] [log] [blame]

Kirill Bespalov	143f1f0	2017-08-25 13:28:39 +0300	[diff] [blame]	1	classes:
				2	- system.salt.minion.cert.mysql
				3
				4	parameters:
				5	_param:
				6	mysql_ssl_key_file: /etc/mysql/ssl/key.pem
				7	mysql_ssl_cert_file: /etc/mysql/ssl/cert.pem
				8	mysql_ssl_ca_file: /etc/mysql/ssl/ca.pem
				9	salt:
				10	minion:
				11	cert:
				12	mysql_server:
				13	# IP are used as DNS due to cert verificaiton issue of python2:
				14	# https://bugs.python.org/issue12000
				15	alternative_names: >
				16	IP:${_param:cluster_local_address},
				17	IP:${_param:cluster_vip_address},
				18	DNS:${_param:cluster_local_address},
				19	DNS:${_param:cluster_vip_address},
				20	DNS:${linux:system:name},
				21	DNS:${linux:network:fqdn}
				22	key_usage: "digitalSignature,nonRepudiation,keyEncipherment"
				23	key_file: ${_param:mysql_ssl_key_file}
				24	cert_file: ${_param:mysql_ssl_cert_file}
				25	ca_file: ${_param:mysql_ssl_ca_file}
				26	user: mysql
				27	group: mysql