ceph
/
ceph-ansible
mirror of https://github.com/ceph/ceph-ansible.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Added to the ceph-radosgw service template the ca-trust 

volume avoiding to expose useless information.
This bug is referred to the following bugzilla:

https://bugzilla.redhat.com/show_bug.cgi?id=1683290

Signed-off-by: fpantano <fpantano@redhat.com>
pull/3649/head
fpantano 2019-02-26 19:51:05 +01:00 committed by mergify[bot]
parent 58a9d310d5
commit 0c1944236b
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
roles/ceph-rgw/templates/ceph-radosgw.service.j2
View File

@ -17,6 +17,12 @@ ExecStart=/usr/bin/{{ container_binary }} run --rm --net=host \
-v /etc/ceph:/etc/ceph:z \
-v /var/run/ceph:/var/run/ceph:z \
-v /etc/localtime:/etc/localtime:ro \
{% if ansible_distribution == 'RedHat' -%}
-v /etc/pki/ca-trust/extracted:/etc/pki/ca-trust/extracted:ro \
-v /etc/pki/ca-trust/source/anchors:/etc/pki/ca-trust/source/anchors:ro \
{% elif ansible_distribution == 'Ubuntu' -%}
-v /etc/ssl/certs:/etc/ssl/certs:ro \
{% endif -%}
-e CEPH_DAEMON=RGW \
-e CLUSTER={{ cluster }} \
-e RGW_NAME={{ ansible_hostname }}.${INST_NAME} \