search

canonical / charm-openstack-service-checks

Collection of Nagios checks and other utilities that can be used to verify the operation of an OpenStack cluster
0 stars 2 forks source link

Cannot import CA from Vault #42

Closed sudeephb closed 7 months ago

sudeephb commented 7 months ago

In deployments that use vault as a data store for certificates, charms are expected to be able to consume a 'tls-certificates' relation in order to receive CA certificates.

The openstack-service-checks charm does not implement such a relation, and is thus unable to validate the keystone certificate.

The workaround is to explicitly set trusted_ssl_ca in the openstack-service-checks charm for now.

Imported from Launchpad using lp2gh.

sudeephb commented 7 months ago

(by narindergupta) It seems just providing trusted_ssl_ca does not resolves the problem fully as cacert is not save and nagios-novarc is not rendered with trusted_ssl_ca.

https://bugs.launchpad.net/charm-openstack-service-checks/+bug/1882822

sudeephb commented 7 months ago

(by eric-chen) This charm is no longer being actively maintained. Please consider using the new Canonical Observability Stack instead. (https://charmhub.io/topics/canonical-observability-stack) I will close this new feature request.