Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix host_certificate dir + rollback #101

Closed
esilvaju opened this issue Aug 6, 2019 · 3 comments
Closed

Fix host_certificate dir + rollback #101

esilvaju opened this issue Aug 6, 2019 · 3 comments
Assignees
@maany @esilvaju
Labels
bug Something isn't working
Projects
1.0.x 2.0.x
Milestone
1.0.14

Comments

@esilvaju
Copy link
Contributor

esilvaju commented Aug 6, 2019
edited by maany

  • create host_certificate/$host_fqdn
  • set permissions

Also, looks like pre_deploy rollback is not removing host_certificates. That needs to be taken care of in this issue as well.
@esilvaju esilvaju added the enhancement New feature or request label Aug 6, 2019
@esilvaju esilvaju added this to the 1.0.0 milestone Aug 6, 2019
@esilvaju esilvaju added this to To do in 1.0.x via automation Aug 6, 2019
esilvaju added a commit that referenced this issue Aug 7, 2019
@esilvaju
#101 Add config schema to hiera
43e5f07
maany added a commit that referenced this issue Aug 9, 2019
@maany
#101
d9cc665
@maany
Copy link
Member

maany commented Aug 9, 2019

We must also check how to copy the certs if permission set by site admin is already 600/400

@maany maany added this to To do in 2.0.x via automation Oct 25, 2019
@maany
Copy link
Member

maany commented Oct 25, 2019

At present, the fileserver seems to be copying only certificates with permission 777.
We need to change the existing permissions on config master before copying certificates and change them back to sth more secure on the config master, after copying them

@maany maany changed the title Fix host_certificate dir Fix host_certificate dir + rollback Jan 22, 2020
@maany maany modified the milestones: 1.0.0, 1.0.6 Jan 22, 2020
maany added a commit that referenced this issue Jan 22, 2020
@maany
#101 fix permissions on host-certificates #128 ingress rollback fix
ae5a3e1
maany added a commit that referenced this issue Jan 22, 2020
@maany
Merge pull request #148 from simple-framework/issue_101
55b6cda 
#101 host-cert #128 ingress network
@maany maany closed this as completed Jan 22, 2020
1.0.x automation moved this from To do to Done Jan 22, 2020
2.0.x automation moved this from To do to Done Jan 22, 2020
@maany maany added bug Something isn't working and removed enhancement New feature or request labels Jan 22, 2020
@maany maany reopened this Feb 19, 2020
1.0.x automation moved this from Done to In progress Feb 19, 2020
2.0.x automation moved this from Done to In progress Feb 19, 2020
@maany maany modified the milestones: 1.0.6, 1.0.14 Feb 19, 2020
@maany
Copy link
Member

maany commented Feb 19, 2020

Puppet only copies files owned by puppet:puppet or puppet:root with permissions 555

maany added a commit that referenced this issue Feb 21, 2020
@maany
#101 fix host certificate permissions
66ea344
maany added a commit that referenced this issue Feb 21, 2020
@maany
#101 fix copy and rollback of host certificates
5bc0ec3
@maany maany mentioned this issue Feb 21, 2020
Merged
@maany maany closed this as completed Feb 21, 2020
1.0.x automation moved this from In progress to Done Feb 21, 2020
2.0.x automation moved this from In progress to Done Feb 21, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@maany maany

@esilvaju esilvaju

Labels
bug Something isn't working
Projects
1.0.x
  
Done
2.0.x
  
Done
Milestone
1.0.14
Development

No branches or pull requests
2 participants
@maany @esilvaju