diff options
| author | Christian Breunig <christian@breunig.cc> | 2023-10-25 20:24:49 +0200 | 
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-10-25 20:24:49 +0200 | 
| commit | 73eb7777a5d3a3bce48719f651c6b0f3a1c1a79d (patch) | |
| tree | 10cc319bef6b1d57791c14543d8e77cdb77cc85c /src/conf_mode/load-balancing-haproxy.py | |
| parent | 90bcb2f96f32f20c355ce4223d0afe89fb12271f (diff) | |
| parent | 0431f1b32c1fc90de82adea5a7e63dad1416c340 (diff) | |
| download | vyos-1x-73eb7777a5d3a3bce48719f651c6b0f3a1c1a79d.tar.gz vyos-1x-73eb7777a5d3a3bce48719f651c6b0f3a1c1a79d.zip | |
Merge pull request #2405 from sever-sever/T5683
T5683: Fix reverse-proxy PKI filenames mismatch
Diffstat (limited to 'src/conf_mode/load-balancing-haproxy.py')
| -rwxr-xr-x | src/conf_mode/load-balancing-haproxy.py | 14 | 
1 files changed, 6 insertions, 8 deletions
| diff --git a/src/conf_mode/load-balancing-haproxy.py b/src/conf_mode/load-balancing-haproxy.py index 8fe429653..ec4311bb5 100755 --- a/src/conf_mode/load-balancing-haproxy.py +++ b/src/conf_mode/load-balancing-haproxy.py @@ -94,8 +94,8 @@ def generate(lb):              if os.path.isfile(file):                  os.unlink(file)          # Delete old directories -        #if os.path.isdir(load_balancing_dir): -        #    rmtree(load_balancing_dir, ignore_errors=True) +        if os.path.isdir(load_balancing_dir): +            rmtree(load_balancing_dir, ignore_errors=True)          return None @@ -106,15 +106,12 @@ def generate(lb):      # SSL Certificates for frontend      for front, front_config in lb['service'].items():          if 'ssl' in front_config: -            cert_file_path = os.path.join(load_balancing_dir, 'cert.pem') -            cert_key_path = os.path.join(load_balancing_dir, 'cert.pem.key') -            ca_cert_file_path = os.path.join(load_balancing_dir, 'ca.pem')              if 'certificate' in front_config['ssl']: -                #cert_file_path = os.path.join(load_balancing_dir, 'cert.pem') -                #cert_key_path = os.path.join(load_balancing_dir, 'cert.key')                  cert_name = front_config['ssl']['certificate']                  pki_cert = lb['pki']['certificate'][cert_name] +                cert_file_path = os.path.join(load_balancing_dir, f'{cert_name}.pem') +                cert_key_path = os.path.join(load_balancing_dir, f'{cert_name}.pem.key')                  with open(cert_file_path, 'w') as f:                      f.write(wrap_certificate(pki_cert['certificate'])) @@ -126,6 +123,7 @@ def generate(lb):              if 'ca_certificate' in front_config['ssl']:                  ca_name = front_config['ssl']['ca_certificate']                  pki_ca_cert = lb['pki']['ca'][ca_name] +                ca_cert_file_path = os.path.join(load_balancing_dir, f'{ca_name}.pem')                  with open(ca_cert_file_path, 'w') as f:                      f.write(wrap_certificate(pki_ca_cert['certificate'])) @@ -133,11 +131,11 @@ def generate(lb):      # SSL Certificates for backend      for back, back_config in lb['backend'].items():          if 'ssl' in back_config: -            ca_cert_file_path = os.path.join(load_balancing_dir, 'ca.pem')              if 'ca_certificate' in back_config['ssl']:                  ca_name = back_config['ssl']['ca_certificate']                  pki_ca_cert = lb['pki']['ca'][ca_name] +                ca_cert_file_path = os.path.join(load_balancing_dir, f'{ca_name}.pem')                  with open(ca_cert_file_path, 'w') as f:                      f.write(wrap_certificate(pki_ca_cert['certificate'])) | 
