[stable/zed] Mount CA into Keystone + Magnum (#1299) \n\nCloses #1274

commit: 7ddb04196eec15e93bdb152351290ecfb2bc9bfd [log] [tgz]
author: Mohammed Naser <mnaser@vexxhost.com> Tue Jun 04 11:22:07 2024 -0400
committer: GitHub <noreply@github.com> Tue Jun 04 15:22:07 2024 +0000
tree: 16de4341ebd268a688cc1712e23a5643d2f9540b
parent: 7b69e8f0af2e5e28468dc3d3c0dd664dadc60af9 [diff] [blame]
diff --git a/roles/keystone/vars/main.yml b/roles/keystone/vars/main.yml
index 625ff2f..1b67f80 100644
--- a/roles/keystone/vars/main.yml
+++ b/roles/keystone/vars/main.yml

@@ -22,11 +22,14 @@
     mounts:
       keystone_api:
         keystone_api:
-          volumeMounts: "{{ keystone_domains | vexxhost.atmosphere.keystone_domains_to_mounts }}"
+          volumeMounts: "{{ keystone_domains | vexxhost.atmosphere.keystone_domains_to_mounts + [{'name': 'etc-ssl-certs', 'mountPath': '/etc/ssl/certs', 'readOnly': true}] }}"
           volumes:
             - name: keystone-openid-metadata
               configMap:
                 name: keystone-openid-metadata
+            - name: etc-ssl-certs
+              hostPath:
+                path: "{{ defaults_ca_certificates_path }}"
   conf:
     keystone:
       DEFAULT:
commit	7ddb04196eec15e93bdb152351290ecfb2bc9bfd	[log] [tgz]
author	Mohammed Naser <mnaser@vexxhost.com>	Tue Jun 04 11:22:07 2024 -0400
committer	GitHub <noreply@github.com>	Tue Jun 04 15:22:07 2024 +0000
tree	16de4341ebd268a688cc1712e23a5643d2f9540b
parent	7b69e8f0af2e5e28468dc3d3c0dd664dadc60af9 [diff] [blame]