Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-models / reclass-system / 9e6ef4aa2aaa6b1508bcf1c1a4e494697b06854f / . / salt / minion / cert / wildcard / init.yml
blob: 29748958ce30219b00e78f41afc66869a7dad85d [file] [log] [blame]
Petr Michalec2a75c3b2017-03-21 13:40:12 +0100[diff] [blame]1parameters:
2 _param:
3 salt_minion_ca_authority: salt_master_ca
4 salt_pki_wildcard_alt_names: IP:${_param:cluster_public_host},DNS:${_param:cluster_public_host},DNS:*.${_param:cluster_public_host},DNS:${_param:cluster_domain},DNS:*.${_param:cluster_domain}
5 salt:
6 minion:
7 cert:
8 proxy:
9 host: ${_param:salt_minion_ca_host}
10 signing_policy: cert_server
11 authority: ${_param:salt_minion_ca_authority}
12 common_name: wildcard
13 alternative_names: IP:127.0.0.1,${_param:salt_pki_wildcard_alt_names}
Petr Michalec403fa402017-05-03 17:52:54 +0200[diff] [blame]14 key_file: /srv/salt/pki/${_param:cluster_name}/${salt:minion:cert:wildcard:common_name}.key
15 cert_file: /srv/salt/pki/${_param:cluster_name}/${salt:minion:cert:wildcard:common_name}.crt
16 all_file: /srv/salt/pki/${_param:cluster_name}/${salt:minion:cert:wildcard:common_name}-chain-with-key.pem