summaryrefslogtreecommitdiffstats
path: root/kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties
diff options
context:
space:
mode:
authorSylvain Desbureaux <sylvain.desbureaux@orange.com>2021-02-16 11:08:25 +0100
committerKrzysztof Opasiak <k.opasiak@samsung.com>2021-03-02 18:52:26 +0000
commita9a41d84026f059aae70f9042c0b99af5b72e619 (patch)
tree00697370438a8e2b3942840f04c5fcb005435ee4 /kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties
parenta62fb750442e6ea93c950d933adf8fc2713eb801 (diff)
[AAI][SPARKY] Automatically retrieve certs
Instead of using hardcoded certificates, use certInitializer in order to retrieve them automatically. Issue-ID: OOM-2683 Signed-off-by: Sylvain Desbureaux <sylvain.desbureaux@orange.com> Change-Id: I63ce5d1bb2e9c287729425f2fd7146e7b69c33f7
Diffstat (limited to 'kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties')
-rw-r--r--kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties22
1 files changed, 22 insertions, 0 deletions
diff --git a/kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties b/kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties
new file mode 100644
index 0000000000..073e9d318a
--- /dev/null
+++ b/kubernetes/aai/components/aai-sparky-be/resources/config/application/application-ssl.properties
@@ -0,0 +1,22 @@
+{{/*
+# Copyright © 2018 Amdocs, Bell Canada, AT&T
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+*/}}
+
+server.port=8000
+server.ssl.key-store=file:{{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.fqi_namespace }}.p12
+server.ssl.key-store-password=${KEYSTORE_PASSWORD}
+server.ssl.enabled-protocols=TLSv1.1,TLSv1.2
+server.ssl.trust-store=file:{{ .Values.certInitializer.credsPath }}/{{ .Values.certInitializer.fqi_namespace }}.trust.jks
+server.ssl.trust-store-password=${KEYSTORE_PASSWORD}