charm-openstack-service-checks

Cannot import CA from Vault

Bug #1845039 reported by Przemyslaw Hausman on 2019-09-23

This bug affects 4 people

Affects		Status	Importance	Assigned to	Milestone
	charm-openstack-service-checks	Won't Fix	Medium	Unassigned

Bug Description

In deployments that use vault as a data store for certificates, charms are expected to be able to consume a 'tls-certificates' relation in order to receive CA certificates.

The openstack-service-checks charm does not implement such a relation, and is thus unable to validate the keystone certificate.

The workaround is to explicitly set trusted_ssl_ca in the openstack-service-checks charm for now.

Xav Paice (xavpaice) on 2020-02-24

Changed in charm-openstack-service-checks:
importance:	Undecided → Medium
status:	New → Triaged

Revision history for this message

Narinder Gupta (narindergupta) wrote on 2020-06-10:

It seems just providing trusted_ssl_ca does not resolves the problem fully as cacert is not save and nagios-novarc is not rendered with trusted_ssl_ca.

https://bugs.launchpad.net/charm-openstack-service-checks/+bug/1882822

Revision history for this message

Eric Chen (eric-chen) wrote on 2023-07-07:

This charm is no longer being actively maintained. Please consider using the new Canonical Observability Stack instead.
(https://charmhub.io/topics/canonical-observability-stack)
I will close this new feature request.

Changed in charm-openstack-service-checks:
status:	Triaged → Won't Fix

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.