New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fixes #10005: Add documentation about inventory upload on root server #278
Conversation
|
||
Node inventories are generated on nodes, are sent to the node policy server (be | ||
it a Relay or the Root server) up to the Root server, and stored in the | ||
Rudder data base (thechnicaly an LDAP server), waiting for latter use. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
technically
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
database, later
|
||
==== Processing inventories on node | ||
|
||
Inventories are generated dayly during an agent run in the 00:00-06:00 time |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
daily
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'dd add "local to the node", y'know, timezones ;-)
* ask the node policy server for its UUID with an HTTP GET on | ||
`https://server/uuid`, | ||
* generate an inventory by scanning the node hardware and software components, | ||
* optionnal make a digital signature of the generated inventory file, |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
optionally
and : | ||
** if checks are OK, *ACCEPTS* (HTTP code `200`) the inventory, | ||
** if signature is configured to be mandatory and is missing, or if the | ||
signature is not valide, refuses with *UNAUTHORIZED* error (HTTP code `401`) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
valid
|
||
* look for inventory / signature pairs: | ||
** inventories without a corresponding signature file are processed only if | ||
they are older than 5 minutes, |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is actually <2 minutes (https://github.com/Normation/rudder-techniques/blob/master/tools/send-clean.sh#L38)
0dd2516
to
cac202b
Compare
PR rebased |
|
||
Node inventories are generated on nodes, are sent to the node policy server (be | ||
it a Relay or the Root server) up to the Root server, and stored in the | ||
Rudder data base (technically an LDAP server), waiting for latter use. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
database, later
cac202b
to
109815a
Compare
PR rebased |
This PR is not mergeable to upper versions. |
"queueSaturated": true | ||
} | ||
|
||
---- |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You need an empty line at the end (to avoid breaking the following title)
PR rebased |
109815a
to
9a9b067
Compare
OK, merging this PR |
https://www.rudder-project.org/redmine/issues/10005