Code Review / apex-tripleo-heat-templates.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 6c43d5b) | patch
Disabling replacing fernet keys from puppet
authorJuan Antonio Osorio Robles <jaosorior@redhat.com>
Thu, 11 May 2017 07:45:45 +0000 (10:45 +0300)
committerJuan Antonio Osorio Robles <jaosorior@redhat.com>
Thu, 11 May 2017 07:45:45 +0000 (10:45 +0300)
commiteb923b0fae8eef49b8b2abf19e3035c20c4138dc
tree30e6bcfb91eb81a16e173b5e9a40562361fdecbbtree | snapshot
parent6c43d5b4ffc33b83f7f3bc2098b8a49b4c5c2364commit | diff
Disabling replacing fernet keys from puppet

Once puppet has written the initial fernet keys, if a deployer wants to
rotate them, the keys will be overwritten when another overcloud deploy
is executed (for instance, for updates or upgrades). This disables
replacing this keys via puppet, so now the operator can rotate the keys
out of band.

Change-Id: I01fd46ba7c5e0db12524095dc9fe29e90cb0de57
puppet/services/keystone.yaml diff | blob | history