2 files changed, 31 insertions, 2 deletions

diff --git a/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/configmap.yaml b/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/configmap.yaml
index 878d94bfc6..21134ada9f 100644
--- a/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/configmap.yaml
+++ b/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/configmap.yaml
@@ -31,4 +31,11 @@ metadata:
   namespace: {{ include "common.namespace" . }}
 data:
 {{ tpl (.Files.Glob "resources/inputs/*").AsConfig . | indent 2 }}
-
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "common.fullname" . }}-dcae-cacert
+  namespace: {{ include "common.namespace" . }}
+data:
+{{ tpl (.Files.Glob "resources/certs/*").AsConfig . | indent 2 }}
diff --git a/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/deployment.yaml b/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/deployment.yaml
index 0463655c79..be5a769a37 100644
--- a/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/deployment.yaml
+++ b/kubernetes/dcaegen2/charts/dcae-bootstrap/templates/deployment.yaml
@@ -61,6 +61,19 @@ spec:
             fieldRef:

               apiVersion: v1

               fieldPath: metadata.namespace

+      - name: init-tls

+        env:

+        - name: POD_IP

+          valueFrom:

+            fieldRef:

+              apiVersion: v1

+              fieldPath: status.podIP

+        image: {{ .Values.global.tlsRepository }}/{{ .Values.global.tlsImage }}

+        imagePullPolicy: {{ .Values.global.pullPolicy | default .Values.pullPolicy }}

+        resources: {}

+        volumeMounts:

+        - mountPath: /opt/tls/shared

+          name: tls-info

       containers:

         - name: {{ include "common.name" . }}

           image: "{{ include "common.repository" . }}/{{ .Values.image }}"

@@ -75,14 +88,21 @@ spec:
             - mountPath: /etc/localtime

               name: localtime

               readOnly: true

+            - mountPath: /certs

+              name: tls-info

+              readOnly: true

           env:

             - name: CMADDR

-              value: {{ .Values.config.address.cm }}

+              value: {{ .Values.config.address.cm.host }}

             - name: CMPASS

               valueFrom:

                 secretKeyRef:

                   name: {{ include "common.name" . }}-cmpass

                   key: password

+            - name: CMPROTO

+              value: {{ .Values.config.address.cm.proto }}

+            - name: CMPORT

+              value: !!string {{ .Values.config.address.cm.port }}

             - name: CONSUL

               value: {{ .Values.config.address.consul.host }}:{{ .Values.config.address.consul.port }}

             - name: DCAE_NAMESPACE

@@ -99,5 +119,7 @@ spec:
         - name: localtime

           hostPath:

             path: /etc/localtime

+        - name: tls-info

+          emptyDir: {}

       imagePullSecrets:

         - name: "{{ include "common.namespace" . }}-docker-registry-key"