]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9ef336b) | patch
rgw/kms/kmip - correct documentation.
authorMarcus Watts <mwatts@redhat.com>
Thu, 29 Oct 2020 16:04:36 +0000 (12:04 -0400)
committerMarcus Watts <mwatts@redhat.com>
Wed, 10 Mar 2021 01:32:01 +0000 (20:32 -0500)
commit0ae75ca98829c002a2b4a4cfa9062904d5c2c3d0
tree779a67ed40450c563b1522d6c291abaeeca165f3tree | snapshot
parent9ef336b7ca4ef077c0005062e8adc851718c41fdcommit | diff
rgw/kms/kmip - correct documentation.

The pykmip task should be after ceph, and before rgw.

kmip needs ssl certs in order to function correctly.
Because the openssl_keys task has an indeterminate
order of execution, it is best to create the ca as
a separate task.  The ca can be shared with rgw, but
real life deployments of kmip are likely to have their
own CA.

In order to create kmip secrets, a client certificate
is necessary, so must be supplied to the pykmip task.

Signed-off-by: Marcus Watts <mwatts@redhat.com>
(cherry picked from commit 4e04dc1d2ed7db5dd47da9fd521b4e8054505683)
qa/tasks/pykmip.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.