e645272ef304fe3fa1ef43879a1b9524236c34fd
2 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
|
Emilien Macchi
|
e645272ef3 |
Generate Self-Signed Cert with SubjectAltNames
A new version of python urllib send us ugly warnings because our SSL certificates don't have SubjectAltNames. I re-generated some SSL certs with it, for both ipv4 & ipv6 deployments. Change-Id: Ibed9f23869de9d2871c3d25e9bd24df809aa4c16 |
||
|
Emilien Macchi
|
3874255b9f |
scenario002: switch Keystone/Glance/Ironic/Nova to SSL
* Deploy Self-Signed Certificates for both IPv6 & IPv4 deployments. * Disable IPv6 for RabbitMQ now, for SSL reasons, will be enabled again later in a next iteration. * Deploy Ironic API under WSGI instead of eventlet. * Switch Glance API, Ironic API and Keystone to SSL. * Configure Tempest with SSL endpoints when needed. * Reduce the Ironic tests because of [1]. [1] https://bugs.launchpad.net/ironic/+bug/1554237 Note #1: puppet-swift, and puppet-cinder will require some work to support SSL, so it's not implemented in this patch. Note #2: we don't enable SSL for Neutron because of https://bugs.launchpad.net/neutron/+bug/1514424 Change-Id: Ib2b5289b6f5e82f43cf60dee3152b2c2ddd5a014 |