Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Identifying rabbit port based on openstack HA or contrail HA
setup. Change-Id: I0bc98c367ed4a69998626fea12132f9d2a9ce213 Closes-Bug: 1616178 (cherry picked from commit be82730) Make the /etc/contrail/ssl/ directory before copying the ssl certs to the other cfgm nodes from the first cfgm. Change-Id: I39022479804f9323b7b5235ce60844d891444dd0 Closes-Bug: 1645433 (cherry picked from commit a2b89e6) (cherry picked from commit 08bae9e) fix ceilometer.conf to point to https auth uri in a ssl enabled keystone setup. fix keystone haproxy backend syntax to support ssl. (cherry picked from commit bb6bd44) (cherry picked from commit 0ddd551) Closes-Bug: 1647243 Change-Id: I06740c325a3864b122419ebb7fe77b86cefa23b9 (cherry picked from commit e122c30) Removing heartbeat parmameter, so that the default value 60 sec will be used. If we need to override this value in rabbitmq.config, we also need to set 'rabbit_health_check_interval' in the contrail-api.conf to twice the value of heartbeat set in rabbitmq.config. Change-Id: I22fab8a3cc7a0b076ae3f642d16029ba5dab8e2f Partial-Bug: 1639014 (cherry picked from commit 0697528) zookeeper is moved to cfgm and cassandra will be running in both cfgm and database nodes, So making backup_restore procedure to accomadate this. Change-Id: I66121bbc28609e8c3d48ba52586580d28606aae9 Closs-Bug: 1636344 (cherry picked from commit 04817d0) Ceilometer config file needs to be populated with keystone certs or insecure flag for it to communicate with SSL enabled keystone and check for ceilometer support in respective nodes. Change-Id: If736de02b73aefeb477cc73a6c9e92cbf2ec8f38 Closes-Bug: 1645570 (cherry picked from commit 08abf91) We have to provison both keystone/config-api as https in contrail-cloud deployment. In contrail-networking deployments we have option of provisioning config-api with https and using keystone which is pre provisioned with http. The deployment of keystone with https and config-api with http is not recommended. Change-Id: If66b897ba95562150920bcd9843895fb48af743d Closes-Bug: 639074 (cherry picked from commit 93eccbc) SSL copy to other nodes in the HA cluster fails during parallel execution, Fixing it by creating seperate temp files during copy. Change-Id: I8f25ebaf5970403950e5966fa04ea09810633dfe Closes-Bug: 1649470 (cherry picked from commit 09a3928) Do not override the user specified cfgm host. Change-Id: I68ab3e474cca8053cead501a93e29b80017f317b Closes-Bug: 1649679 (cherry picked from commit 5e79790) Haproxy fails to start as the keystone certs are not created before starting haproxy in a HA setup. Fix is to create keystone ssl certificates before configuring haproxy and skip recreating certs during openstack setup. Change-Id: Ibb53ad16c0222ebd3685a03c09398a1067464664 Closes-Bug: 1649787 (cherry picked from commit b27b0fa)
- Loading branch information
Showing
8 changed files
with
164 additions
and
57 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.