29825ac18b
This creates TLS certs for Zookeeper, uses them inside the ZK quorum, and configures Nodepool and Zuul to use them as well. A full system restart of all ZK-related components will be required after merging this patch. Change-Id: I0cb96a989f3d2c7e0563ce8899f2a5945ea225b3
6 lines
146 B
YAML
6 lines
146 B
YAML
zk_ca_root: /var/zk-ca
|
|
zk_ca_server: "{{ inventory_hostname }}"
|
|
zk_ca_cert_dir: /etc/zuul
|
|
zk_ca_cert_dir_owner: 10001
|
|
zk_ca_cert_dir_group: 10001
|