sunet-cdn/cdn-ops
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Update key paths to reflect internal CA

Browse source
This commit is contained in:
Patrik Lundin 2024-10-10 10:17:39 +02:00
parent 65fc0590b4
commit b44fb5ce43
Signed by: patlu
GPG key ID: A0A812BA2249F294
1 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
global/overlay/etc/puppet/modules/cdn/templates/mqtt/cdn.conf.erb
View file

@ -1,7 +1,7 @@
listener 8883
cafile /etc/mosquitto/ca_certificates/ca.crt
certfile /etc/mosquitto/certs/<%= @networking['fqdn'] %>.crt
keyfile /etc/mosquitto/certs/<%= @networking['fqdn'] %>.key
cafile /etc/mosquitto/ca_certificates/chain.pem
certfile /etc/mosquitto/certs/cert.pem
keyfile /etc/mosquitto/certs/privkey.pem
require_certificate true
use_identity_as_username true
acl_file /etc/mosquitto/aclfile
@ -12,8 +12,8 @@ log_type all
connection <%= @dc %>-to-<%= remote_dc %>
address <%= bridge_config['address'] %>:address <%= bridge_config['port'] %>:
topic cdn/<%= @dc %>/purge out 1
bridge_cafile /etc/mosquitto/ca_certificates/ca.crt
bridge_certfile /etc/mosquitto/certs/<%= @networking['fqdn'] %>.crt
bridge_keyfile /etc/mosquitto/certs/<%= @networking['fqdn'] %>.key
bridge_cafile /usr/local/share/ca-certificates/step_ca_root.crt
bridge_certfile /etc/mosquitto/certs/cert.pem
bridge_keyfile /etc/mosquitto/certs/privkey.pem
<% end -%>