From 3288ad8b53a1e347b3897c23c36954c5f536e313 Mon Sep 17 00:00:00 2001
From: Adam Grare <adam@grare.com>
Date: Mon, 6 May 2024 12:03:56 -0400
Subject: [PATCH] Fix missing kafka client ca-cert

When configuring an appliance as a kafka client the user is asked for
the truststore path as well as the ca certificate path from the kafka
broker.  The truststore is scp'd over but the ca-cert is not causing
kafka connections to fail

`manageiq-messaging-ready`:
```
manageiq-db.localdomain 9093 - accepting connections
ssl.ca.location failed: error:05880002:x509 certificate routines::system lib
Kafka is not ready yet
```
---
 lib/manageiq/appliance_console/message_configuration_client.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/manageiq/appliance_console/message_configuration_client.rb b/lib/manageiq/appliance_console/message_configuration_client.rb
index c6f8636e..caf10689 100644
--- a/lib/manageiq/appliance_console/message_configuration_client.rb
+++ b/lib/manageiq/appliance_console/message_configuration_client.rb
@@ -29,6 +29,7 @@ def configure
           configure_messaging_yaml          # Set up the local message client in case EVM is actually running on this, Message Server
           create_client_properties          # Create the client.properties configuration fle
           fetch_truststore_from_server      # Fetch the Java Keystore from the Kafka Server
+          fetch_ca_cert_from_server         # Fetch the CA Certificate from the Kafka Server
         rescue AwesomeSpawn::CommandResultError => e
           say(e.result.output)
           say(e.result.error)