From afdf701f9ecdb46fe513f003d03d67cf484253d3 Mon Sep 17 00:00:00 2001
From: ewolinetz <ewolinet@redhat.com>
Date: Fri, 30 Jun 2017 14:40:56 -0500
Subject: Using ca-bundle.crt to connect to local etcd if master.etcd-ca.crt
 DNE

---
 roles/openshift_service_catalog/tasks/install.yml | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'roles/openshift_service_catalog/tasks/install.yml')

diff --git a/roles/openshift_service_catalog/tasks/install.yml b/roles/openshift_service_catalog/tasks/install.yml
index 5da87649c..6e8301ffe 100644
--- a/roles/openshift_service_catalog/tasks/install.yml
+++ b/roles/openshift_service_catalog/tasks/install.yml
@@ -86,6 +86,12 @@
     resource_name: admin
     user: "system:serviceaccount:kube-service-catalog:default"
 
+- name: Checking for master.etcd-ca.crt
+  stat:
+    path: /etc/origin/master/master.etcd-ca.crt
+  register: etcd_ca_crt
+  check_mode: no
+
 ## api server
 - template:
     src: api_server.j2
@@ -99,6 +105,7 @@
     memory_request: none
     cors_allowed_origin: localhost
     etcd_servers: "{{ openshift.master.etcd_urls | join(',') }}"
+    etcd_cafile: "{{ '/etc/origin/master/master.etcd-ca.crt' if etcd_ca_crt.stat.exists else '/etc/origin/master/ca-bundle.crt' }}"
     node_selector: "{{ openshift_service_catalog_nodeselector | default ({'openshift-infra': 'apiserver'}) }}"
 
 - name: Set Service Catalog API Server daemonset
-- 
cgit v1.2.1