Support automatic external HTTPS via LetsEncrypt

Registered by Jason Anderson

Add support for automatically requesting and renewing LetsEncrypt HTTPS certificates for the Kolla-Ansible external FQDN.

Blueprint information

Status:
Started
Approver:
None
Priority:
Medium
Drafter:
Jason Anderson
Direction:
Approved
Assignee:
Jason Anderson
Definition:
Drafting
Series goal:
None
Implementation:
Started
Milestone target:
None
Started by
Radosław Piliszek

Related branches

Sprints

Whiteboard

Gerrit topic: https://review.opendev.org/#/q/topic:bp/letsencrypt-https

Addressed by: https://review.opendev.org/741340
    Add support for LetsEncrypt-managed certs

Gerrit topic: https://review.opendev.org/#/q/topic:haproxy-default-template-change

Addressed by: https://review.opendev.org/753369
    Change the default haproxy template to split variant

Gerrit topic: https://review.opendev.org/#/q/topic:haproxy-not-all-ends

Addressed by: https://review.opendev.org/753380
    Add support for with_frontend and with_backend

Gerrit topic: https://review.opendev.org/#/q/topic:external-acme-client-support

Addressed by: https://review.opendev.org/754568
    Add support for ACME http-01 challenge

Addressed by: https://review.opendev.org/c/openstack/kolla-ansible/+/741340
    Add support for LetsEncrypt-managed certs

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.