This patch adds standard SSL options to IPA config and makes use of them
when making HTTP requests.
For now, a single set of certificates is used when needed.
In the future configuration can be expanded to allow per-service
certificates.
Besides, the 'insecure' option (defaults to False) can be overridden
through kernel command line parameter 'ipa-insecure'.
This will allow running IPA in CI-like environments with self-signed SSL
certificates.
Reviewed: https:/ /review. openstack. org/398992 /git.openstack. org/cgit/ openstack/ ironic- python- agent/commit/ ?id=fdd11b54a5e 3d7a9ee89628bab a2990e4e00abdd
Committed: https:/
Submitter: Jenkins
Branch: master
commit fdd11b54a5e3d7a 9ee89628baba299 0e4e00abdd
Author: Pavlo Shchelokovskyy <email address hidden>
Date: Thu Nov 17 13:26:28 2016 +0200
Configure and use SSL-related requests options
This patch adds standard SSL options to IPA config and makes use of them
when making HTTP requests.
For now, a single set of certificates is used when needed.
In the future configuration can be expanded to allow per-service
certificates.
Besides, the 'insecure' option (defaults to False) can be overridden
through kernel command line parameter 'ipa-insecure'.
This will allow running IPA in CI-like environments with self-signed SSL
certificates.
Change-Id: I259d9b3caa9ba1 dc3d7382f375b8e 086a5348d80
Closes-Bug: #1642515