I’m starting from the position of having all my service endpoints defined the same for internal and public services. The APIs are in fact all private at this point, instances running in Openstack cannot reach them. I want to provide some proper public endpoints in order to bootstrap Juju within Openstack.
The setup uses nginx to proxy Horizon and novnc to the existing private API endpoints. I am trying to use the same nginx to proxy all the APIs, but I run in to a problem. After setting os-public-hostname to point to the nginx proxy, I now find e.g. openstack-dashboard trying to use the newly defined public API. Actually this API is only available to the public and not to the internals.
The documentation https://docs.openstack.org/security-guide/api-endpoints/api-endpoint-configuration-recommendations.html describes how to make such configurations but I don’t see any support for it in the charms. I expect I am going about this the wrong way.
Is there any advice about this please?