In case your keystone has self-signed Certificates, you will have to specify the custom CA via the OS_CACERT (its actually OPENSTACK_CA_FILE here) environment variable. The OS_CACERT for auth requires gophercloud v2
Additionally I also added the option to provide the Pod with extraVolumes & Mounts since OS_CACERT has to be filepath not the content of the certificate
Why?
In case your keystone has self-signed Certificates, you will have to specify the custom CA via the
OS_CACERT(its actuallyOPENSTACK_CA_FILEhere) environment variable. TheOS_CACERTfor auth requires gophercloud v2Additionally I also added the option to provide the Pod with extraVolumes & Mounts since OS_CACERT has to be filepath not the content of the certificate
Relevant gophercloud code: https://github.com/gophercloud/gophercloud/blob/5cb81d730a1e027aa5981edd23c7b1403411db40/openstack/config/clouds/tls.go#L15