the great ssl refactor

2025-12-22 08:53:06 +01:00 · 2025-12-11 17:30:06 -05:00
parent 545060103a
commit b9ff1704b0
58 changed files with 1236 additions and 1159 deletions
--- a/salt/docker/init.sls
+++ b/salt/docker/init.sls
@@ -6,9 +6,9 @@
 {% from 'docker/docker.map.jinja' import DOCKER %}
 {% from 'vars/globals.map.jinja' import GLOBALS %}

-# include ssl since docker service requires the intca
+# docker service requires the ca.crt
 include:
-  - ssl
+  - ca

 dockergroup:
  group.present:
@@ -89,10 +89,10 @@ docker_running:
    - enable: True
    - watch:
      - file: docker_daemon
-      - x509: trusttheca
+      - file: trusttheca
    - require:
      - file: docker_daemon
-      - x509: trusttheca
+      - file: trusttheca


 # Reserve OS ports for Docker proxy in case boot settings are not already applied/present