Cloned from launchpad blueprint https://blueprints.launchpad.net/sahara/+spec/sahara-support-https. Description: For more security, sahara need to support https. Specification URL (additional information): None
Verified that Sahara can be configured to use SSL endpoints (https). The configuration requires setting two parameters (cert_file and key_file) in the [ssl] section of sahara.conf, and the creation of endpoints with https instead of http in the URL. When the https endpoints are defined, even if the http are still available, the sahara CLI client requires already the parameter with the public certificate of the CA. Verification of Sahara ability to communicate using SSL with other components has been postponed, due to other components configuration issues. Verified on RHEL 7.1, with RHEL-OSP7 packages: openstack-sahara-common-2015.1.0-5.el7ost.noarch openstack-sahara-engine-2015.1.0-5.el7ost.noarch openstack-sahara-api-2015.1.0-5.el7ost.noarch python-saharaclient-0.9.0-1.el7ost.noarch
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2015:1548