New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add trusted_certificate resource to chef-client #7861

Open
tas50 opened this Issue Nov 2, 2018 · 1 comment

Comments

2 participants
@tas50
Member

tas50 commented Nov 2, 2018

Core Chef Resource Checklist

Before suggesting a resource for inclusion please make sure your suggestion meets these criteria for resources built into Chef:

  • Automates an operating system component that ships by default on systems such as authentication, raid, disk partitions, firewalls, containers, or virtualization systems.
  • Does not attempt automate 3rd party applications such as database, web, or application servers, which are best suited for cookbooks due to their fast moving nature.

Describe the resource:

A trusted_certificate resource will allow you to install certificates on macos / linux systems that will be trusted by the OS and apps.

Why should this be included out of the box?:

A lot of people need to install certificates on their nodes and this would give them an easy way to do it out of the box.

What operating systems would it run on?

Linux and macOS would be easy to implement. We can already have windows_certificate so it wouldn't make sense to do it again here.

Current cookbook implementation:

https://github.com/chef-cookbooks/trusted_certificate

@tas50 tas50 added this to To do in New Resources in Core via automation Nov 2, 2018

@tas50 tas50 moved this from To do to In Progress in New Resources in Core Nov 5, 2018

@pantocrator27

This comment has been minimized.

pantocrator27 commented Nov 13, 2018

Should there also be an option to add a certificate to the certificate store that ships with Chef?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment