| Oleksandr Shyshko | 2b88373 | 2018-07-11 18:00:58 +0300 | [diff] [blame] | 1 | classes: |
| 2 | - system.salt.minion.cert.vnc |
| 3 | parameters: |
| 4 | _param: |
| 5 | novncproxy_server_ssl_key_file: /etc/pki/nova-novncproxy/server-key.pem |
| 6 | novncproxy_server_ssl_cert_file: /etc/pki/nova-novncproxy/server-cert.pem |
| 7 | novncproxy_ssl_ca_file: /etc/pki/nova-novncproxy/ca-cert.pem |
| 8 | salt: |
| 9 | minion: |
| 10 | cert: |
| 11 | novncproxy_novnc_server: |
| 12 | host: ${_param:salt_minion_ca_host} |
| 13 | authority: ${_param:qemu_vnc_ca_authority} |
| 14 | common_name: ${linux:system:name}.${_param:cluster_domain} |
| 15 | signing_policy: cert_server |
| 16 | alternative_names: > |
| 17 | IP:${_param:cluster_local_address}, |
| 18 | IP:${_param:cluster_vip_address}, |
| 19 | DNS:${_param:cluster_local_address}, |
| 20 | DNS:${linux:system:name}, |
| 21 | DNS:${_param:cluster_vip_address}, |
| 22 | DNS:${linux:network:fqdn} |
| Vasyl Saienko | 71e8c54 | 2018-11-16 16:19:17 +0200 | [diff] [blame] | 23 | DNS:${_param:openstack_service_host} |
| Oleksandr Shyshko | 2b88373 | 2018-07-11 18:00:58 +0300 | [diff] [blame] | 24 | key_usage: "digitalSignature,nonRepudiation,keyEncipherment" |
| 25 | key_file: ${_param:novncproxy_server_ssl_key_file} |
| 26 | cert_file: ${_param:novncproxy_server_ssl_cert_file} |
| 27 | ca_file: ${_param:novncproxy_ssl_ca_file} |
| Vasyl Saienko | 71b651f | 2018-10-03 16:54:23 +0300 | [diff] [blame] | 28 | user: root |
| Oleksandr Shyshko | 2b88373 | 2018-07-11 18:00:58 +0300 | [diff] [blame] | 29 | group: nova |
| 30 | mode: 640 |