kolla-ansible

Support automatic external HTTPS via LetsEncrypt

Registered by Jason Anderson on 2020-05-05

Add support for automatically requesting and renewing LetsEncrypt HTTPS certificates for the Kolla-Ansible external FQDN.

Read the full specification

Blueprint information

Status:: Started

Approver:: None

Priority:: Medium

Drafter:: Jason Anderson

Direction:: Approved

Assignee:: Jason Anderson

Definition:: Drafting

Series goal:: None

Implementation:: Started

Milestone target:: None

Started by: Radosław Piliszek on 2020-09-22

Related branches

Related bugs

Sprints

Whiteboard

Gerrit topic: https://review.opendev.org/#/q/topic:bp/letsencrypt-https

Addressed by: https://review.opendev.org/741340
Add support for LetsEncrypt-managed certs

Gerrit topic: https://review.opendev.org/#/q/topic:haproxy-default-template-change

Addressed by: https://review.opendev.org/753369
Change the default haproxy template to split variant

Gerrit topic: https://review.opendev.org/#/q/topic:haproxy-not-all-ends

Addressed by: https://review.opendev.org/753380
Add support for with_frontend and with_backend

Gerrit topic: https://review.opendev.org/#/q/topic:external-acme-client-support

Addressed by: https://review.opendev.org/754568
Add support for ACME http-01 challenge

Addressed by: https://review.opendev.org/c/openstack/kolla-ansible/+/741340
Add support for LetsEncrypt-managed certs

(?)

Work Items

This blueprint contains Public information

Everyone can see this information.

Subscribers

Radosław Piliszek