CORD-1007 Generate certs and keys on the corddev VM Change-Id: I18e9662f3efc7bf249ed319b1f7f7086f9424270

commit: 1cac00113e45722f0abb2f8107c1f9e67aa7d4d2 [log] [tgz]
author: Andy Bavier <andy@onlab.us> Mon Mar 13 10:06:18 2017 -0400
committer: Andy Bavier <andy@onlab.us> Tue Mar 14 16:04:45 2017 -0400
tree: e01d3a50ff9fa9cd28f038e27b35b9b51a86025f
parent: 032facdc5e0fcf13098190c8088b66af26df16ea [diff] [blame]
diff --git a/roles/create-lxd/tasks/main.yml b/roles/create-lxd/tasks/main.yml
index 3e081a2..a86fe66 100644
--- a/roles/create-lxd/tasks/main.yml
+++ b/roles/create-lxd/tasks/main.yml

@@ -44,6 +44,10 @@
         nictype: bridged
         parent: mgmtbr
         type: nic
+      certs:
+        type: disk
+        path: /usr/local/share/ca-certificates/cord/
+        source: /usr/local/share/ca-certificates/
 
 - name: Create containers for the OpenStack services
   become: yes
@@ -124,6 +128,11 @@
   tags:
     - skip_ansible_lint # running a sub job
 
+- name: Update CA certificates in containers
+  command: ansible containers -m shell -b -u ubuntu -a "update-ca-certificates"
+  tags:
+    - skip_ansible_lint # running a sub job
+
 - name: Create containers' eth0 interface config file for DNS config via resolvconf program
   when: not on_maas
   template:
commit	1cac00113e45722f0abb2f8107c1f9e67aa7d4d2	[log] [tgz]
author	Andy Bavier <andy@onlab.us>	Mon Mar 13 10:06:18 2017 -0400
committer	Andy Bavier <andy@onlab.us>	Tue Mar 14 16:04:45 2017 -0400
tree	e01d3a50ff9fa9cd28f038e27b35b9b51a86025f
parent	032facdc5e0fcf13098190c8088b66af26df16ea [diff] [blame]