Difference between revisions of "Neutron/LBaaS/SSL"
(→Data model change) |
(→Data model change) |
||
Line 35: | Line 35: | ||
Vip database entity will be extended with new columns: | Vip database entity will be extended with new columns: | ||
− | front_end_termination - Boolean | + | front_end_termination - Boolean |
− | front_end_protocols - String | + | front_end_protocols - String |
− | front_end_cipher_type: ENUM | + | front_end_cipher_type: ENUM |
− | + | back_end_termination - Boolean | |
− | back_end_termination - Boolean | + | back_end_protocols - String |
− | back_end_protocols - String | + | back_end_cipher_type: ENUM |
− | back_end_cipher_type: ENUM | ||
=== DB Migration === | === DB Migration === | ||
=== Implementation Plan === | === Implementation Plan === |
Revision as of 12:58, 18 November 2013
Contents
Description
This comes to describe the functional aspect of OpenStack Neutron SSL support for LBaaS.
Rationale
Giving user the ability to use SSL on LBaaS User should be able to apply SSL certificates on LBaaS and configure SSL on vip, front-end and back-end.
API change
No API change
Resources change
LBaaS extension's resource attributes map should be extended with new parameters:
Database persistent
FrontEndTermination [Y/N] default=N, NOT mandatory, visible FrontEndProtocols SSL3, TLS1.1, TLS1.0 ? FrontEndCipherType: BackEndTermination [Y/N] default=N, NOT mandatory, visible BackEndProtocols SSL3, TLS1.1, TLS1.0 ? BackEndCipherType:
Transient
Passphrase Public Key (PEM) Private Key (PEM)
Data model change
Vip database entity will be extended with new columns:
front_end_termination - Boolean front_end_protocols - String front_end_cipher_type: ENUM back_end_termination - Boolean back_end_protocols - String back_end_cipher_type: ENUM