Unverified Commit a66dfe11 authored by Frode Nordahl's avatar Frode Nordahl
Browse files

Add deprecation notices for old SSL options in config.yaml...

Specifically for... `enable-pki`, `https-service-endpoints` and
`use-https`.

Change-Id: Ica2dfc39dc550b1aa43e178ae29fb333eeaca572
parent dc5ccac4
......@@ -123,7 +123,11 @@ options:
enable-pki:
type: string
default: "false"
description: Enable PKI token signing.
description: |
Enable PKI token signing.
.
[DEPRECATED] This option should no longer be used.
This option will be removed in a future release.
preferred-api-version:
type: int
default:
......@@ -355,14 +359,24 @@ options:
https-service-endpoints:
type: string
default: "False"
description: Manage SSL certificates for all service endpoints. This option
description: |
Manage SSL certificates for all service endpoints. This option
should be False when specifying ssl\_\* options.
.
[DEPRECATED] This option should no longer be used.
Provide SSL certificate data through the ssl\_\* options.
This option will be removed in a future release.
use-https:
type: string
default: "no"
description: Use SSL for Keystone itself using a charm-generated CA. Set to
description: |
Use SSL for Keystone itself using a charm-generated CA. Set to
'yes' to enable it. This option should be 'no' when specifying ssl\_\*
options.
.
[DEPRECATED] This option should no longer be used.
Provide SSL certificate data through the ssl\_\* options.
This option will be removed in a future release.
ssl_cert:
type: string
default:
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment