Commit ff78768b authored by Geoff Simmons's avatar Geoff Simmons

For the time being, use a fixed password for the dataplaneapi.

Setting a password in haproxy.cfg from an environment variable
apparently doesn't work, see: https://github.com/haproxy/haproxy/issues/590

The idea was to set the password in a Secret, whose value is passed
into the haproxy container as an env variable, using the downward API.
This will have to be redesigned.

For now we use the fixed password, so that further development is not
blocked.
parent dd400975
......@@ -27,10 +27,10 @@ defaults
timeout server 50000
userlist controller
user dataplaneapi insecure-password "${SECRET_DATAPLANEAPI}"
user dataplaneapi insecure-password e24bb312-cb21-46d6-aaec-8ae676f06fea
program api
command /usr/bin/dataplaneapi --host 0.0.0.0 --port 5555 --haproxy-bin /usr/sbin/haproxy --reload-cmd "/bin/kill -SIGUSR2 1" -i --log-to=stdout
command /usr/bin/dataplaneapi --host 0.0.0.0 --port 5555 --haproxy-bin /usr/sbin/haproxy --reload-cmd "/bin/kill -SIGUSR2 1" -i --log-to=stdout --log-level=info
no option start-on-reload
program faccess
......@@ -45,7 +45,7 @@ frontend readiness
option httplog
backend varnish_readiness
server varnish_k8s localhost:${VARNISH_READY_PORT} check
server varnish_k8s "localhost:${VARNISH_READY_PORT}" check
mode http
frontend stats
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment