This repository has been archived by the owner on Mar 30, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 17
router wild card certificates
robbaronbu edited this page Jun 19, 2017
·
5 revisions
UP: https://github.com/CCI-MOC/moc-public/wiki/OpenShift
-
modify the /etc/origin/master/master-config.yaml to configure the router subdomain:
routingConfig: subdomain: "apps.osh.massopen.cloud" -
In DNS setup wild card subdomains to point to the infra nodes using the external IP addresses. use *.apps.osh.massopen.cloud as the wild card subdomain and map one entry to each infra node (where the routers are running.
-
Run the following to generate the self-signed certificates:
CA=/etc/origin/master oadm ca create-server-cert --signer-cert=$CA/ca.crt \ --signer-key=$CA/ca.key --signer-serial=$CA/ca.serial.txt \ --hostnames='*.apps.osh.massopen.cloud' \ --cert=cloudapps.crt --key=cloudapps.key -
bundle the certs in a way that the router expects them:
cat cloudapps.crt cloudapps.key $CA/ca.crt > cloudapps.router.pem -
Start the router:
oadm router router --replicas=2 --selector='region=infra' \ --default-cert=cloudapps.router.pem --service-account=router