Use of direct designate CLI calls (<= Ocata) with SSL fails
Bug #1839019 reported by
David Ames
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Designate Charm |
Confirmed
|
High
|
Unassigned |
Bug Description
The designate charm <= Ocata uses direct calls to the CLI client designate. This leverages an RC file /root/novarc. The template for novarc [0] is not SSL aware.
The charm will need to wait for keystone's identity-
This only affects <= Ocata and can be re-created using the openstack-
There is also a potential race with rabbitmq's SSL settings.
If the charm is running the certificates-
Changed in charm-designate: | |
importance: | Undecided → High |
milestone: | none → 19.10 |
status: | New → Confirmed |
Changed in charm-designate: | |
milestone: | 19.10 → 20.01 |
Changed in charm-designate: | |
milestone: | 20.01 → 20.05 |
Changed in charm-designate: | |
milestone: | 20.05 → 20.08 |
Changed in charm-designate: | |
milestone: | 20.08 → none |
To post a comment you must log in.