X-Git-Url: https://gerrit.opnfv.org/gerrit/gitweb?a=blobdiff_plain;f=ssl-source.yaml;h=ac1ef42d3aaa2d3e57e00d94b70e7bdb7d0a42fe;hb=656b8385efde3e686c1f969bd5b32af0b08181af;hp=1d6ac246aa635e0a3b8c3275887242389d2cd395;hpb=7d89ec86bdeac7536171feb09891efb8171c0455;p=apex-tripleo-heat-templates.git

diff --git a/ssl-source.yaml b/ssl-source.yaml
index 1d6ac246..ac1ef42d 100644
--- a/ssl-source.yaml
+++ b/ssl-source.yaml
@@ -1,25 +1,28 @@
-Description: 'ssl-source: SSL endpoint metadata for openstack'
-Parameters:
+description: 'ssl-source: SSL endpoint metadata for openstack'
+parameters:
   SSLCertificate:
-    Default: ''
-    Description: If set, the contents of an SSL certificate .crt file for encrypting SSL endpoints.
-    Type: String
-    NoEcho: true
+    default: ''
+    description: If set, the contents of an SSL certificate .crt file for encrypting SSL endpoints.
+    type: string
+    hidden: true
   SSLKey:
-    Default: ''
-    Description: If set, the contents of an SSL certificate .key file for encrypting SSL endpoints.
-    Type: String
-    NoEcho: true
+    default: ''
+    description: If set, the contents of an SSL certificate .key file for encrypting SSL endpoints.
+    type: string
+    hidden: true
   SSLCACertificate:
-    Default: ''
-    Description: If set, the contents of an SSL certificate authority file.
-    Type: String
-Resources:
+    default: ''
+    description: If set, the contents of an SSL certificate authority file.
+    type: string
+resources:
   SSLConfig:
-    Type: OS::Heat::StructuredConfig
-    Properties:
+    type: OS::Heat::StructuredConfig
+    properties:
       group: os-apply-config
       config:
+        ssl:
+          ca_certificate:
+            get_input: ssl_ca_certificate
         stunnel:
           cert:
             get_input: ssl_certificate
@@ -31,21 +34,40 @@ Resources:
            - name: 'ec2'
              accept: 13773
              connect: 8773
+             connect_host:
+               get_input: controller_host
            - name: 'image'
              accept: 13292
              connect: 9292
+             connect_host:
+               get_input: controller_host
            - name: 'identity'
              accept: 13000
              connect: 5000
+             connect_host:
+               get_input: controller_host
            - name: 'network'
              accept: 13696
              connect: 9696
+             connect_host:
+               get_input: controller_host
            - name: 'compute'
              accept: 13774
              connect: 8774
+             connect_host:
+               get_input: controller_host
            - name: 'swift-proxy'
              accept: 13080
              connect: 8080
+             connect_host:
+               get_input: controller_host
            - name: 'cinder'
              accept: 13776
              connect: 8776
+             connect_host:
+               get_input: controller_host
+           - name: 'ceilometer'
+             accept: 13777
+             connect: 8777
+             connect_host:
+               get_input: controller_host