we can remove this and rely on the cacert to be in a default discoverable location within the container such that the tls certs used by the other services are considered valid.
we currently are not using this in the relevant templates
in generally nova support using different ca for different service but in practice that is not really required here.
we currently are not using this in the relevant templates
in generally nova support using different ca for different service but in practice that is not really required here.
_Originally posted by @SeanMooney in https://github.com/openstack-k8s-operators/nova-operator/pull/700#discussion_r1499760491_