gss doesn't support TLS service endpoint when using internal webserver for metadata access
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Glance-Simplestreams-Sync Charm |
Won't Fix
|
Wishlist
|
Unassigned |
Bug Description
Most of the standard OpenStack charms have proper TLS support for REST service endpoint, except glance-
$ openstack catalog show image-stream -f json
{
"endpoints": [
{
"id": "9999167997d04d
"interface": "internal",
"region_id": "RegionOne",
"url": "http://
"region": "RegionOne"
},
{
"id": "99995c2dc6e740
"interface": "public",
"region_id": "RegionOne",
"url": "http://
"region": "RegionOne"
},
{
"id": "999916487e4b4e
"interface": "admin",
"region_id": "RegionOne",
"url": "http://
"region": "RegionOne"
}
],
"id": "9999865775564a
"name": "image-stream",
"type": "product-streams"
}
$ juju config glance-
ssl_ca:
Changed in charm-glance-simplestreams-sync: | |
status: | New → Confirmed |
summary: |
- gss doesn't support TLS service endpoint + gss doesn't support TLS service endpoint when using internal webserver + for metadata access |
Changed in charm-glance-simplestreams-sync: | |
status: | Expired → New |
Changed in charm-glance-simplestreams-sync: | |
status: | New → Incomplete |
Changed in charm-glance-simplestreams-sync: | |
status: | Incomplete → New |
This looks odd - gss should push its data to swift/radosgw and register endpoints against the swift endpoint - is 10.110.126.220 the IP of the gss unit?