puppet.git/lib/puppet/indirector/certificate, branch master Puppet repo Code smell: Two space indentation 2010-07-10T01:12:17+00:00 Markus Roberts Markus@reality.com 2010-07-10T01:12:17+00:00 3180b9d9b2c844dade1d361326600f7001ec66dd Replaced 106806 occurances of ^( +)(.*$) with The ruby community almost universally (i.e. everyone but Luke, Markus, and the other eleven people who learned ruby in the 1900s) uses two-space indentation. 3 Examples: The code: end # Tell getopt which arguments are valid def test_get_getopt_args element = Setting.new :name => "foo", :desc => "anything", :settings => Puppet::Util::Settings.new assert_equal([["--foo", GetoptLong::REQUIRED_ARGUMENT]], element.getopt_args, "Did not produce appropriate getopt args") becomes: end # Tell getopt which arguments are valid def test_get_getopt_args element = Setting.new :name => "foo", :desc => "anything", :settings => Puppet::Util::Settings.new assert_equal([["--foo", GetoptLong::REQUIRED_ARGUMENT]], element.getopt_args, "Did not produce appropriate getopt args") The code: assert_equal(str, val) assert_instance_of(Float, result) end # Now test it with a passed object becomes: assert_equal(str, val) assert_instance_of(Float, result) end # Now test it with a passed object The code: end assert_nothing_raised do klass[:Yay] = "boo" klass["Cool"] = :yayness end becomes: end assert_nothing_raised do klass[:Yay] = "boo" klass["Cool"] = :yayness end 
Replaced 106806 occurances of ^( +)(.*$) with

The ruby community almost universally (i.e. everyone but Luke, Markus, and the other eleven people
who learned ruby in the 1900s) uses two-space indentation.

3 Examples:

    The code:
        end

        # Tell getopt which arguments are valid
        def test_get_getopt_args
            element = Setting.new :name => "foo", :desc => "anything", :settings => Puppet::Util::Settings.new
            assert_equal([["--foo", GetoptLong::REQUIRED_ARGUMENT]], element.getopt_args, "Did not produce appropriate getopt args")

    becomes:
        end

        # Tell getopt which arguments are valid
        def test_get_getopt_args
          element = Setting.new :name => "foo", :desc => "anything", :settings => Puppet::Util::Settings.new
          assert_equal([["--foo", GetoptLong::REQUIRED_ARGUMENT]], element.getopt_args, "Did not produce appropriate getopt args")

    The code:
            assert_equal(str, val)

            assert_instance_of(Float, result)

        end

        # Now test it with a passed object
    becomes:
          assert_equal(str, val)

          assert_instance_of(Float, result)

        end

        # Now test it with a passed object
    The code:
        end

        assert_nothing_raised do
            klass[:Yay] = "boo"
            klass["Cool"] = :yayness
        end

    becomes:
        end

        assert_nothing_raised do
          klass[:Yay] = "boo"
          klass["Cool"] = :yayness
        end
Fixing #2617 - use the cert name as specified 2009-09-21T23:23:38+00:00 Luke Kanies luke@madstop.com 2009-09-18T19:09:44+00:00 a1d3b04296babc42b6a00956508c86c18e2b39bc This allows us to search for a cert, and we use the searched-for term as the cert name (for the wrapper, not the actual cert object), rather than the real cert name. This allows us to use symbolic names like 'ca', as we're currently doing. Signed-off-by: Luke Kanies <luke@madstop.com> 
This allows us to search for a cert, and we use the searched-for
term as the cert name (for the wrapper, not the actual cert object),
rather than the real cert name.

This allows us to use symbolic names like 'ca', as we're currently doing.

Signed-off-by: Luke Kanies <luke@madstop.com>
Fix #2425 - make sure client can contact CA server with REST 2009-07-20T22:05:57+00:00 Brice Figureau brice-puppet@daysofwonder.com 2009-07-20T18:56:23+00:00 c65974376700f54548a9412e04889ad54be84ff9 The various REST SSL terminii were never setup to use the ca_server/ca_port if one is setup. Signed-off-by: Brice Figureau <brice-puppet@daysofwonder.com> 
The various REST SSL terminii were never setup to use the
ca_server/ca_port if one is setup.

Signed-off-by: Brice Figureau <brice-puppet@daysofwonder.com>
Adding REST terminuses for the SSL-related indirections. 2008-05-06T23:58:41+00:00 Luke Kanies luke@madstop.com 2008-05-06T23:58:41+00:00 57c753419ac4700ab87689a3e3c3eb7302fff693 






Changing the File certificate terminus so that it
2008-04-22T03:30:01+00:00

Luke Kanies
luke@madstop.com

2008-04-22T03:30:01+00:00

58fb416e9f52a9dc834b735ffa7e5c425495c982

saves to the :localcacert instead of :cacert.

This way the :ca terminus saves to :cacert and the :file
terminus saves to :localcacert.





saves to the :localcacert instead of :cacert.

This way the :ca terminus saves to :cacert and the :file
terminus saves to :localcacert.







Renaming the 'ca_file' ssl terminus type to 'ca'.
2008-04-21T22:33:58+00:00

Luke Kanies
luke@madstop.com

2008-04-21T22:33:58+00:00

79ca44404af29b2bae621f9a6cb80467d95468aa












All SSL terminus classes now force the CA information into the right place.
2008-04-18T15:49:58+00:00

Luke Kanies
luke@madstop.com

2008-04-18T15:49:58+00:00

92a7d76e8a160ba1ddb684d52eab6639cf801cb7

Without this, then you could end up duplicating your CA
key into the normal directory depending on how caching
was set up.

Again, this design aspect isn't the most straightforward,
but at least it's functional now.





Without this, then you could end up duplicating your CA
key into the normal directory depending on how caching
was set up.

Again, this design aspect isn't the most straightforward,
but at least it's functional now.







Moving all of the ca-specific settings to the ca_file
2008-04-17T23:09:33+00:00

Luke Kanies
luke@madstop.com

2008-04-17T23:09:33+00:00

d8bb81eabb6ad85d985ae7407e4260e800a0cf30

terminus classes, rather than the normal :file classes.

This is unfortunately complicated, and it means that the Key
:ca_file is only ever actually used for retrieving the CA key
itself.





terminus classes, rather than the normal :file classes.

This is unfortunately complicated, and it means that the Key
:ca_file is only ever actually used for retrieving the CA key
itself.







Changing all of the SSL terminus classes to treat CA files specially.
2008-04-17T19:47:27+00:00

Luke Kanies
luke@madstop.com

2008-04-17T19:47:27+00:00

daa8cd57b9f61c40c1b4e6954533f197ee5a2f1d

This is a kind of weird design situation.  For instance, we've got a
collection of certificates in the :certdir, but then there's a special
CA certificate off by itself.  Rather than build a whole separate
infrastructure for managing those separate files (cert and key, at least),
I decided to add special support for specifying where to find the CA-specific
bits, and then code for handling them when necessary.

This requires that we have a standard way of knowing whether we should be
managing the CA bits or normal host files.  The Puppet::SSL::Host class now has
a 'ca_name' method that returns the string we're using for the CA name; this
name is currently 'ca'.  We have to use a name, because the name is the only
thing that all methods have access to (e.g., when trying to 'find' the right
cert, we only have the name available).

What this means is that if you want access to the CA key or cert, then create
a Puppet::SSL::Host instance with the name 'ca'.

You'll still get the CA cert created with the host's :certname; it will just
be stored in a different location.





This is a kind of weird design situation.  For instance, we've got a
collection of certificates in the :certdir, but then there's a special
CA certificate off by itself.  Rather than build a whole separate
infrastructure for managing those separate files (cert and key, at least),
I decided to add special support for specifying where to find the CA-specific
bits, and then code for handling them when necessary.

This requires that we have a standard way of knowing whether we should be
managing the CA bits or normal host files.  The Puppet::SSL::Host class now has
a 'ca_name' method that returns the string we're using for the CA name; this
name is currently 'ca'.  We have to use a name, because the name is the only
thing that all methods have access to (e.g., when trying to 'find' the right
cert, we only have the name available).

What this means is that if you want access to the CA key or cert, then create
a Puppet::SSL::Host instance with the name 'ca'.

You'll still get the CA cert created with the host's :certname; it will just
be stored in a different location.







Adding he last of the indirection classes for the ssl
2008-04-16T02:34:04+00:00

Luke Kanies
luke@madstop.com

2008-03-11T22:02:15+00:00

00e35bce4e8b7f4e0e4ee039a1d82ad9d08a6b96

classes, finally including the certificate requests.





classes, finally including the certificate requests.