1313875 – Missing: Deploy an overcloud with SSL for the public API

Bug 1313875 - Missing: Deploy an overcloud with SSL for the public API

Summary: Missing: Deploy an overcloud with SSL for the public API

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	python-oslo-middleware
Sub Component:
Version:	8.0 (Liberty)
Hardware:	x86_64
OS:	Linux
Priority:	urgent
Severity:	high
Target Milestone:	ga
Target Release:	8.0 (Liberty)
Assignee:	Victor Stinner
QA Contact:	Marius Cornea
Docs Contact:
URL:
Whiteboard:
Depends On:	1251257
Blocks:	1298197 1309821
TreeView+	depends on / blocked

Reported:	2016-03-02 14:12 UTC by Mike Burns
Modified:	2019-10-10 11:24 UTC (History)
CC List:	41 users (show)
Fixed In Version:	python-oslo-middleware-2.8.0-3.el7ost
Doc Type:	Bug Fix
Doc Text:	With this release, oslo.middleware now supports SSL/TLS, which in turn allows OpenStack services to listen to HTTPS traffic and encrypt exchanges. In previous releases, OpenStack services could only listen to HTTP, and all exchanges were done in cleartext.
Clone Of:	1251257
Environment:
Last Closed:	2016-04-07 21:32:15 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
OpenStack gerrit	231930	0	None	None	None	2016-03-02 14:12:32 UTC
Red Hat Product Errata	RHEA-2016:0603	0	normal	SHIPPED_LIVE	Red Hat OpenStack Platform 8 Enhancement Advisory	2016-04-08 00:53:53 UTC

Comment 4 Ronnie Rasouli 2016-03-10 08:42:20 UTC

was able to deploy SSL with public API address, the public API address binded with SSL, the  Keystone public API in /usr/share/openstack-puppet/modules/tripleo/manifests/loadbalancer.pp  ${keystone_public_api_vip}:5000" => $haproxy_listen_bind_param

verified on python-oslo-middleware-2.8.0-3.el7ost.noarch

Comment 5 errata-xmlrpc 2016-04-07 21:32:15 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2016-0603.html

Note You need to log in before you can comment on or make changes to this bug.

achernet
apevec
chlong
clincoln
cylopez
ddomingo
dhill
felipe.alfaro
fpercoco
gchenuet
gkeegan
gtrellu
hbrock
hguemar
jchronis
jcoufal
jduncan
jhoffer
jmelvin
josorior
jschluet
jslagle
kbasil
lhh
lkoranda
markmc
mburns
mchappel
mcornea
nauvray
nkinder
pcaruana
racedoro
rchanter
rhel-osp-director-maint
rrasouli
sputhenp
tvvcox
vcojot
vmindru
vstinner