SUNET/net-ops
9
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

changed infra cert directory for frontends

Browse source
This commit is contained in:
Rasmus Thorslund 2024-11-28 12:47:58 +01:00
parent 991341afdc
commit d8a96a954d
No known key found for this signature in database
GPG key ID: 502D33332E9E305D
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
lb-test-common/overlay/etc/hiera/data/group.yaml
View file

@ -43,7 +43,7 @@ sunet_frontend:
'authtest': 'authtest':
haproxy_volumes: haproxy_volumes:
- "/etc/ssl/certs/infra.crt:/etc/ssl/certs/infra.crt:ro" - "/etc/ssl/certs/infra.crt:/etc/ssl/certs/infra.crt:ro"
- "/etc/ssl/private/infra_haproxy.crt:/etc/ssl/private/infra_haproxy.crt:ro" - "/opt/frontend/config/ssl/infra_haproxy.crt:/opt/frontend/config/ssl/infra_haproxy.crt:ro"
site_name: 'auth-test.sunet.se' site_name: 'auth-test.sunet.se'
frontends: frontends:
'lb-tug-test-1.sunet.se': 'lb-tug-test-1.sunet.se':
@ -54,7 +54,7 @@ sunet_frontend:
default: default:
'auth-test-1.sunet.se': 'auth-test-1.sunet.se':
ips: ['89.47.185.11'] ips: ['89.47.185.11']
server_args: 'ssl alpn h2 crt /etc/ssl/private/infra_haproxy.crt verify required ca-file /etc/ssl/certs/infra.crt check check-alpn http/1.1' server_args: 'ssl alpn h2 crt /opt/frontend/config/ssl/infra_haproxy.crt verify required ca-file /etc/ssl/certs/infra.crt check check-alpn http/1.1'
allow_ports: allow_ports:
- 443 - 443
- 80 - 80