Uploaded image for project: 'Puppet'
  1. Puppet
  2. PUP-9461

Use available X509 objects to make SSL connections

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: PUP 6.4.0
    • Component/s: None
    • Release Notes:
      Bug Fix
    • Release Notes Summary:
      Hide
      Puppet applications (other than agent, device, and ssl) will now raise an error if they attempt to make an SSL connection, but the SSL bootstrap process is incomplete, such as if the node doesn't have a client cert.

      The agent, device and ssl application behave the same as before.
      Show
      Puppet applications (other than agent, device, and ssl) will now raise an error if they attempt to make an SSL connection, but the SSL bootstrap process is incomplete, such as if the node doesn't have a client cert. The agent, device and ssl application behave the same as before.
    • QA Risk Assessment:
      Needs Assessment

      Description

      During normal puppet execution, load whatever key/cert-related objects are available (if any), make them available in Puppet's context system, and use them to make SSL connections.

      Continue to use Puppet::SSL::Host when bootstrapping SSL via puppet agent/device/ssl.

        Attachments

          Activity

            jsd-sla-details-panel

              People

              • Assignee:
                josh Josh Cooper
                Reporter:
                josh Josh Cooper
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Zendesk Support