[openstack-dev] [Neutron][LBaaS]Should TLS settings for listener be set through separate API/model?
Vijay Venkatachalam
Vijay.Venkatachalam at citrix.com
Mon Jun 23 16:33:46 UTC 2014
Hi:
In the "LBaaS TLS termination capability specification" proposal
https://review.openstack.org/#/c/98640/
TLS settings like default certificate container id and SNI cert list are part of the listener properties.
I think it is better to have this as a separate entity so that the listener properties are clean and is not "corrupted" with TLS settings.
I liked the original SSL proposal better where TLS settings was a separate entity.
It is just 2 properties now but in future the TLS settings would grow and if we are going to introduce a TLS profile/params/settings entity later, it is better to do it now (albeit with min properties).
Thanks,
Vijay V.
PS:
Adding with the right subject
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20140623/7d2845a3/attachment.html>
More information about the OpenStack-dev
mailing list