[PUP-9192] Don't manage CA file/directory permissions - Puppet Jira Server

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Normal
Resolution: Fixed
Affects Version/s: None
Fix Version/s: PUP 6.0.3
Component/s: None
Labels:
None

Team:
Froyo
Method Found:
Inspection

QA Risk Assessment:
Needs Assessment

Description

Puppet6 no longer reads to or writes from the CA related files, but we weren't able to move the settings to puppetserver in time for 6. Several of the settings still define an owner, group, mode which means puppet could in theory attempt to manage the permissions on those files. This doesn't happen in practice, because puppet never calls Puppet.settings.use(:ca), but an custom application could. To be sure that never happens, we should remove owner, group, mode from the settings in the :ca section.

/cc maggie. justin

Attachments

Activity

People

Assignee:: Maggie Dreyer

Reporter:: Josh Cooper

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2018/10/01 12:30 PM

Updated:: 2018/10/29 6:51 AM

Resolved:: 2018/10/11 3:02 PM