Support SSL Termination in Neutron LBaaS
One of the most common use cases for loadbalancers is SSL termination or offload. This is especially true for hardware loadbalancers that provide crypto hardware-assist to scale the number of supported SSL sessions for a VIP. In order to support this functionality in Neutron LBaaS, tenants must be able to upload and manage their certificates and private keys and associate these with their VIPs.
Blueprint information
- Status:
- Complete
- Approver:
- Kyle Mestery
- Priority:
- Medium
- Drafter:
- Youcef Laribi
- Direction:
- Approved
- Assignee:
- Evgeny Fedoruk
- Definition:
- Approved
- Series goal:
- Accepted for kilo
- Implementation:
- Implemented
- Milestone target:
- 2015.1.0
- Started by
- Kyle Mestery
- Completed by
- Kyle Mestery
Related branches
Related bugs
Sprints
Whiteboard
December-15 (mestery): Kilo-3.
22-July (mestery): Approved as medium for Juno-3.
The final spec is in WIKI:
https:/
initial doc for discussion in: https:/
write up on SSL Termination https:/
Gerrit topic: https:/
Addressed by: https:/
New SSL extension
Gerrit topic: https:/
Addressed by: https:/
New SSL extension
Gerrit topic: https:/
Addressed by: https:/
Fix test by waiting to lbaas entity delete
Addressed by: https:/
lbaas-tls
Addressed by: https:/
TLS implementation
Addressed by: https:/
Plugin/DB additions for version 2 of LBaaS API
Addressed by: https:/
Tests for extension, db and plugin for LBaaS V2
Addressed by: https:/
New extension for version 2 of LBaaS API
Addressed by: https:/
TLS capability extension implementation for lbaas v2
Addressed by: https:/
New common util module for Barbican TLS containers
Addressed by: https:/
TLS capability extension implementation for lbaas v2
Gerrit topic: https:/
Addressed by: https:/
Implement managers for synchronous haproxy driver
Addressed by: https:/
Implement synchronous haproxy driver methods
Addressed by: https:/
Implement Jinja templates for haproxy config
Addressed by: https:/
New extension for version 2 of LBaaS API
Addressed by: https:/
New common util module for Barbican TLS containers
Addressed by: https:/
TLS capability extension implementation for lbaas v2
Addressed by: https:/
TLS capability extension implementation for lbaas v2
Addressed by: https:/
TLS capability extension implementation for lbaas v2
Gerrit topic: https:/
Addressed by: https:/
TLS capability extension implementation for lbaas v2
Addressed by: https:/
TLS capability extension implementation for lbaas v2