openstack-k8s-operators
diff --git a/‎apis/bases/core.openstack.org_openstackcontrolplanes.yaml‎
Lines changed: 18 additions & 0 deletions b/‎apis/bases/core.openstack.org_openstackcontrolplanes.yaml‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎apis/core/v1beta1/openstackcontrolplane_types.go‎
Lines changed: 27 additions & 0 deletions b/‎apis/core/v1beta1/openstackcontrolplane_types.go‎
Lines changed: 27 additions & 0 deletions
diff --git a/‎apis/core/v1beta1/zz_generated.deepcopy.go‎
Lines changed: 39 additions & 0 deletions b/‎apis/core/v1beta1/zz_generated.deepcopy.go‎
Lines changed: 39 additions & 0 deletions
diff --git a/‎config/crd/bases/core.openstack.org_openstackcontrolplanes.yaml‎
Lines changed: 18 additions & 0 deletions b/‎config/crd/bases/core.openstack.org_openstackcontrolplanes.yaml‎
Lines changed: 18 additions & 0 deletions
@@ -15951,6 +15951,24 @@ spec:
                   - type
                   type: object
                 type: array
+              tls:
+                properties:
+                  caBundleSecretName:
+                    type: string
+                  endpoint:
+                    additionalProperties:
+                      properties:
+                        expires:
+                          format: date-time
+                          type: string
+                        name:
+                          type: string
+                      required:
+                      - expires
+                      - name
+                      type: object
+                    type: object
+                type: object
             type: object
         type: object
     served: true
 
@@ -652,6 +652,23 @@ type OpenStackControlPlaneStatus struct {
 	//+operator-sdk:csv:customresourcedefinitions:type=status,xDescriptors={"urn:alm:descriptor:io.kubernetes.conditions"}
 	// Conditions
 	Conditions condition.Conditions `json:"conditions,omitempty" optional:"true"`
+
+	//+operator-sdk:csv:customresourcedefinitions:type=spec
+	// TLS
+	TLS TLSStatus `json:"tls,omitempty" optional:"true"`
+}
+
+// TLSStatus defines the observed state of TLS
+type TLSStatus struct {
+	Endpoint map[service.Endpoint]TLSCAStatus `json:"endpoint,omitempty"`
+	tls.Ca   `json:",inline"`
+}
+
+// TLSCAStatus defines the observed state of TLS
+type TLSCAStatus struct {
+	Name string `json:"name"`
+	// +kubebuilder:validation:Format="date-time"
+	Expires string `json:"expires"`
 }
 
 //+kubebuilder:object:root=true
@@ -748,3 +765,13 @@ func SetupDefaults() {
 
 	SetupOpenStackControlPlaneDefaults(openstackControlPlaneDefaults)
 }
+
+// Enabled - returns status of tls configuration for the passed in endpoint type
+func (t *TLSSection) Enabled(endpt service.Endpoint) bool {
+	if t != nil {
+		if cfg, ok := t.Endpoint[service.EndpointInternal]; ok && cfg.Enabled {
+			return true
+		}
+	}
+	return false
+}
@@ -15951,6 +15951,24 @@ spec:
                   - type
                   type: object
                 type: array
+              tls:
+                properties:
+                  caBundleSecretName:
+                    type: string
+                  endpoint:
+                    additionalProperties:
+                      properties:
+                        expires:
+                          format: date-time
+                          type: string
+                        name:
+                          type: string
+                      required:
+                      - expires
+                      - name
+                      type: object
+                    type: object
+                type: object
             type: object
         type: object
     served: true