Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
(PUP-868) deprecate misc cert-related faces
This PR deprecates the certificate_request, certificate_revocation_list, and ca faces. Original context from @nfagerlund on redmine #15860: The real puppet cert mgmt command is “puppet cert.” It’s one of the classic applications. But for some reason, there are a TON of faces related to certs hanging around! I’m seeing: - ca - certificate - certificate_request - certificate_revocation_list - None of these act as a replacement for puppet cert. By using a patchwork of them, you might be able to get all of the functionality of puppet cert, but it’s not clear. This is a result of us simply exposing these indirector endpoints on the command line without spending any time thinking about a usable API for interacting with them. - Because the find/search/save/destroy actions are generally bad fits for a command line API, these faces are all cluttered up with at least partially unusable actions. - Because they act through the indirector, and agent and master use different termini for all of these endpoints, it’s not clear which faces and actions are meant to be used on the agent and which on the master. Additionally, some of these may be intended to act remotely. - Some of these faces have actions whose behavior conflicts with an identically-named action on ‘puppet cert.’ Particularly, see puppet certificate generate vs. puppet cert generate vs. puppet ca generate (?????). - Some of these faces (particularly puppet ca) have completely undocumented actions. This is my “someone added an action without a description string” face: >:|
- Loading branch information