Code Review / apex-puppet-tripleo.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b8a11a5) | patch
Ensure directory exists for certificates for httpd
authorJuan Antonio Osorio Robles <jaosorior@redhat.com>
Fri, 24 Mar 2017 09:31:12 +0000 (11:31 +0200)
committerJuan Antonio Osorio Robles <jaosorior@redhat.com>
Tue, 11 Apr 2017 11:45:43 +0000 (11:45 +0000)
commitbbe603a2608c43d9b68f998204e75b55621a9e8f
tree709ae2d6c21a10b960508864bec7179dd6769edctree | snapshot
parentb8a11a5d80e4b2f345a7a4d249c1aafcbbf937fecommit | diff
Ensure directory exists for certificates for httpd

We used to rely on a standard directory for the certificates and keys
that are requested by certmonger. However, given the approach we plan to
take for containers that's described in the blueprint, we need to use
service-specific directories for the certs/keys, since we plan to
bind-mount these into the containers, and we don't want to bind mount
any keys/certs from other services.

Thus, we start by creating this directories if they don't exist in the
filesystem and adding the proper selinux labels.

bp tls-via-certmonger-containers

Change-Id: I0b71902358b754fa8bd7fdbb213479503c87aa46
manifests/certmonger/apache_dirs.pp [new file with mode: 0644] blob
manifests/certmonger/httpd.pp diff | blob | history
manifests/profile/base/certmonger_user.pp diff | blob | history