Currently, there is no way to pass CA cert for HTTPS glance
connections. This patch adds new cinder.conf option to enable
secure connection.
Closes-Bug:
1311271
DocImpact - New option added to cinder.conf
Change-Id: I3f39980b94ae314c6351c77f8668ab0922b1c3d8
'can improve data throughput, such as when high '
'network bandwidth is available and you use '
'compressed image formats like qcow2.'),
+ cfg.StrOpt('glance_ca_certificates_file',
+ help='Location of ca certificates file to use for glance '
+ 'client requests.'),
cfg.IntOpt('glance_request_timeout',
default=None,
help='http/https timeout value for glance operations. If no '
# https specific params
params['insecure'] = CONF.glance_api_insecure
params['ssl_compression'] = CONF.glance_api_ssl_compression
+ params['cacert'] = CONF.glance_ca_certificates_file
else:
scheme = 'http'
if CONF.auth_strategy == 'keystone':
# value)
#glance_api_ssl_compression=false
+# Location of ca certificates file to use for glance client
+# requests. (string value)
+#glance_ca_certificates_file=<None>
+
# http/https timeout value for glance operations. If no value
# (None) is supplied here, the glanceclient default value is
# used. (integer value)
Code Review / openstack-build / cinder-build.git / commitdiff