Bug 1718896 - puppet-octavia: TripleO should configure server_certs_key_passphrase for Octavia
Summary: puppet-octavia: TripleO should configure server_certs_key_passphrase for Octavia
Keywords:
Status: CLOSED EOL
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: puppet-octavia
Version: 14.0 (Rocky)
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: z4
: 14.0 (Rocky)
Assignee: Nir Magnezi
QA Contact: Bruna Bonguardo
URL:
Whiteboard:
Depends On:
Blocks: 1718936 1726260
TreeView+ depends on / blocked
 
Reported: 2019-06-10 14:02 UTC by Nir Magnezi
Modified: 2020-01-24 12:32 UTC (History)
3 users (show)

Fixed In Version: puppet-octavia-13.3.2-0.20190420064722.el7ost
Doc Type: If docs needed, set a value
Doc Text:
Clone Of: 1692827
: 1718936 (view as bug list)
Environment:
Last Closed: 2020-01-24 12:32:14 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
OpenStack gerrit 647502 0 'None' MERGED Configure server_certs_key_passphrase for Octavia 2020-01-24 12:32:33 UTC
OpenStack gerrit 661951 0 'None' MERGED Configure server_certs_key_passphrase for Octavia 2020-01-24 12:32:33 UTC

Description Nir Magnezi 2019-06-10 14:02:03 UTC 
+++ This bug was initially created as a clone of Bug #1692827 +++

Description of problem:
=======================
A recent change[1] to Octavia added a parameter named server_certs_key_passphrase, which means that we should generate a password for it to avoid using the default value.

OctaviaServerCertsKeyPassphrase should be added to the list of generated password/secrets.

[1] https://review.openstack.org/#/q/I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
Comment 6 Nir Magnezi 2019-07-02 13:08:13 UTC 
Need further work, see bug 1726260.
Comment 8 Lon Hohberger 2019-09-04 10:43:52 UTC 
According to our records, this should be resolved by puppet-octavia-13.3.2-0.20190420064723.el7ost.  This build is available now.
Note You need to log in before you can comment on or make changes to this bug.