cluded from the certificate.
>>
>> I agree, that it might be more friendly if we have an immutable hostname
>> field that get cached in lbaas but being read from the certificate and not
>> managed by the end user.
>>
>>
>>
>> -Sam.
>>
>>
>>
d than try to use the regexp hostname to
> match, if you have multiple matches, the 1st one will be used
>
> 3. If no match was found than try to use subjectAltName to match. If
> you have multiple matches, the 1st one will be used
>
> 4. If no match than use default certific
e default certificate
>
>
>
> -Sam.
>
>
>
>
>
>
>
>
>
> *From:* Stephen Balukoff [mailto:sbaluk...@bluebox.net]
> *Sent:* Thursday, June 19, 2014 12:03 AM
>
> *To:* OpenStack Development Mailing List (not for usage questions)
> *Subject:* Re: [o
. If no match than use default certificate
-Sam.
From: Stephen Balukoff [mailto:sbaluk...@bluebox.net]
Sent: Thursday, June 19, 2014 12:03 AM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
Hi
are your thought on this?
>
> Regarding the SNIPolicy, I agree and will change the document accordingly.
>
> Thanks,
> Evg
>
>
>
>
>
> -Original Message-
> From: Evgeny Fedoruk
> Sent: Sunday, June 15, 2014 1:55 PM
> To: OpenStack Development Mailing Lis
and will change the document accordingly.
Thanks,
Evg
-Original Message-
From: Evgeny Fedoruk
Sent: Sunday, June 15, 2014 1:55 PM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
Hi All
;Users have to be able to delete their secrets from Barbican, it's a
>>fundamental key-management requirement.
>>
>>> -Original Message-
>>> From: Eichberger, German
>>> Sent: 11 June 2014 17:43
>>> To: OpenStack Development Mailing
ete their secrets from Barbican, it's a
>>fundamental key-management requirement.
>>
>>> -Original Message-
>>> From: Eichberger, German
>>> Sent: 11 June 2014 17:43
>>> To: OpenStack Development Mailing List (not for usage questions)
>&g
sday, June 11, 2014 10:57 AM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
There are other fundamental things about secrets, like relying on their
presence, and not encouraging a proliferation o
mental key-management requirement.
>
>> -Original Message-
>> From: Eichberger, German
>> Sent: 11 June 2014 17:43
>> To: OpenStack Development Mailing List (not for usage questions)
>> Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document
>>
;t delete a container in Barbican?
>
> German
>
> -Original Message-
> From: Eichberger, German
> Sent: Wednesday, June 11, 2014 9:32 AM
> To: OpenStack Development Mailing List (not for usage questions)
> Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support R
Sent: Wednesday, June 11, 2014 9:32 AM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
Hi,
I think the previous solution is easier for a user to understand. The
referenced container got tampered/de
from.
German
-Original Message-
From: Carlos Garza [mailto:carlos.ga...@rackspace.com]
Sent: Tuesday, June 10, 2014 12:18 PM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
See adams message
On Jun 10, 2014, at 3:11 PM, Stephen Balukoff wrote:
> Hi Evgeny,
>
> Comments inline.
>
> On Tue, Jun 10, 2014 at 4:13 AM, Evgeny Fedoruk wrote:
> Hi All,
>
>
>
> Carlos, Vivek, German, thanks for reviewing the RST doc.
>
> There are some issues I want to pinpoint final decision on them
Hi Evgeny,
Comments inline.
On Tue, Jun 10, 2014 at 4:13 AM, Evgeny Fedoruk wrote:
> Hi All,
>
>
>
> Carlos, Vivek, German, thanks for reviewing the RST doc.
>
> There are some issues I want to pinpoint final decision on them here, in
> ML, before writing it down in the doc.
>
> Other issues w
iii. If
> every VIP listener will “register” itself in meta-data while retrieving
> container, how that “registration” will be removed when VIP listener stops
> using the certificate?
> >
> > Please comment on these points and revie
gt; Sent: Tuesday, June 10, 2014 2:13 PM
> To: OpenStack Development Mailing List (not for usage questions)
> Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on
> Gerrit
>
> Hi All,
>
> Carlos, Vivek, German, thanks for reviewing the RST doc.
> Th
://review.openstack.org/#/c/98640)
> I will update the document with decisions on above topics.
>
> Thank you!
> Evgeny
>
>
> From: Evgeny Fedoruk
> Sent: Monday, June 09, 2014 2:54 PM
> To: OpenStack Development Mailing List (not for usage questions)
> Subject: [openstac
.
Regards,
-Sam.
From: Evgeny Fedoruk
Sent: Tuesday, June 10, 2014 2:13 PM
To: OpenStack Development Mailing List (not for usage questions)
Subject: Re: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
Hi All,
Carlos, Vivek, German, thanks for reviewing the RST doc.
onday, June 09, 2014 2:54 PM
To: OpenStack Development Mailing List (not for usage questions)
Subject: [openstack-dev] [Neutron][LBaaS] TLS support RST document on Gerrit
Hi All,
A Spec. RST document for LBaaS TLS support was added to Gerrit for review
https://review.openstack.org/#/c/98640
Hi All,
A Spec. RST document for LBaaS TLS support was added to Gerrit for review
https://review.openstack.org/#/c/98640
You are welcome to start commenting it for any open discussions.
I tried to address each aspect being discussed, please add comments about
missing things.
Thanks,
E
21 matches
Mail list logo
