@@ -54,9 +54,11 @@ def config_dashboard(self, daemon_descrs: List[DaemonDescription]) -> None:
5454 def get_external_certificates (self , svc_spec : MgmtGatewaySpec , daemon_spec : CephadmDaemonDeploySpec ) -> Tuple [str , str ]:
5555 cert = self .mgr .cert_mgr .get_cert ('mgmt_gw_cert' )
5656 key = self .mgr .cert_mgr .get_key ('mgmt_gw_key' )
57+ user_made = False
5758 if not (cert and key ):
5859 # not available on store, check if provided on the spec
5960 if svc_spec .ssl_certificate and svc_spec .ssl_certificate_key :
61+ user_made = True
6062 cert = svc_spec .ssl_certificate
6163 key = svc_spec .ssl_certificate_key
6264 else :
@@ -66,8 +68,8 @@ def get_external_certificates(self, svc_spec: MgmtGatewaySpec, daemon_spec: Ceph
6668 cert , key = self .mgr .cert_mgr .generate_cert (host_fqdn , ips )
6769 # save certificates
6870 if cert and key :
69- self .mgr .cert_mgr .save_cert ('mgmt_gw_cert' , cert )
70- self .mgr .cert_mgr .save_key ('mgmt_gw_key' , key )
71+ self .mgr .cert_mgr .save_cert ('mgmt_gw_cert' , cert , user_made = user_made )
72+ self .mgr .cert_mgr .save_key ('mgmt_gw_key' , key , user_made = user_made )
7173 else :
7274 logger .error ("Failed to obtain certificate and key from mgmt-gateway." )
7375 return cert , key
@@ -167,7 +169,6 @@ def pre_remove(self, daemon: DaemonDescription) -> None:
167169 # reset the standby dashboard redirection behaviour
168170 self .mgr .set_module_option_ex ('dashboard' , 'standby_error_status_code' , '500' )
169171 self .mgr .set_module_option_ex ('dashboard' , 'standby_behaviour' , 'redirect' )
170- if daemon .hostname is not None :
171- # delete cert/key entires for this mgmt-gateway daemon
172- self .mgr .cert_mgr .rm_cert ('mgmt_gw_cert' )
173- self .mgr .cert_mgr .rm_key ('mgmt_gw_key' )
172+ # delete cert/key entires for this mgmt-gateway daemon
173+ self .mgr .cert_mgr .rm_cert ('mgmt_gw_cert' )
174+ self .mgr .cert_mgr .rm_key ('mgmt_gw_key' )
0 commit comments