Uploaded image for project: 'Puppet Server'
  1. Puppet Server
  2. SERVER-2897

Log all certnames cleaned by the `/puppet-ca/v1/clean` endpoint

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Normal
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: SERVER 5.3.16, SERVER 6.14.1
    • Component/s: None
    • Labels:
      None
    • Template:
    • Team:
      Froyo
    • Release Notes:
      Enhancement
    • Release Notes Summary:
      The CA bulk clean endpoint will now log each certname revoked.
    • QA Risk Assessment:
      Needs Assessment

      Description

      The API endpoint for revoking a single certificate logs the certname that was revoked, but new bulk API does not. This makes it a lot harder to keep track of what got revoked when. Originally we did not add logging of the certnames because of the potential for very long log entries, but the benefits of traceability here outweigh that negative. We should add logging for each certname revoked.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            maggie Maggie Dreyer
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Zendesk Support