Hide Forgot
[Openstack-containers][OSP12]: Deployment with SSL requires to change the haproxy.yaml . Environment: ------------- openstack-tripleo-heat-templates-7.0.0-0.20170628002128.el7ost.noarch haproxy-1.5.18-6.el7.x86_64 puppet-haproxy-1.5.1-0.20170526022021.49d6769.el7ost.noarch Description : -------------- It's required to change the haproxy.yaml in order to run a successful OSP12 deployment of containers with SSL. According to : https://review.openstack.org/#/c/473854/ haproxy needs the deployed SSL cert file to function when TLS is enabled. It is also required for the docker-puppet haproxy container since the haproxy puppet module uses a validate_cmd to check the generated config file is valid that fails when the required SSL cert is not present. There is no clean way to disable this feature [1] so we need to bind mount the cert into the container.
unable to reproduce : OpenStack-12.0-RHEL-7 Puddle: 2017-10-24.3
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2017:3462