A round of bug-fixing in preparation for the next release.

git-svn-id: https://reductivelabs.com/svn/puppet/trunk@1256 980ebf18-57e1-0310-9a29-db15c13687c0
author: luke <luke@980ebf18-57e1-0310-9a29-db15c13687c0> 2006-06-13 15:57:06 +0000
committer: luke <luke@980ebf18-57e1-0310-9a29-db15c13687c0> 2006-06-13 15:57:06 +0000
commit: ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6 (patch)
tree: a20175019bd423232062925f860f2b2fb0408c0f /lib/puppet/parser/interpreter.rb
parent: 9af5d697385fd28843d1603e9e6afd272ec5e560 (diff)
download: puppet-ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6.tar.gz
puppet-ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6.tar.xz
puppet-ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6.zip
1 files changed, 17 insertions, 1 deletions
diff --git a/lib/puppet/parser/interpreter.rb b/lib/puppet/parser/interpreter.rb
index 9c74934b0..eeb0e4cca 100644
--- a/lib/puppet/parser/interpreter.rb
+++ b/lib/puppet/parser/interpreter.rb
@@ -15,6 +15,14 @@ module Puppet
             Puppet.setdefaults("ldap",
                 :ldapnodes => [false,
                     "Whether to search for node configurations in LDAP."],
+                :ldapssl => [false,
+                    "Whether SSL should be used when searching for nodes.
+                    Defaults to false because SSL usually requires certificates
+                    to be set up on the client side."],
+                :ldaptls => [false,
+                    "Whether TLS should be used when searching for nodes.
+                    Defaults to false because TLS usually requires certificates
+                    to be set up on the client side."],
                 :ldapserver => ["ldap",
                     "The LDAP server.  Only used if ``ldapnodes`` is enabled."],
                 :ldapport => [389,
@@ -114,7 +122,15 @@ module Puppet
                     return
                 end
                 begin
-                    @ldap = LDAP::Conn.new(Puppet[:ldapserver], Puppet[:ldapport])
+                    if Puppet[:ldapssl]
+                        @ldap = LDAP::SSLConn.new(Puppet[:ldapserver], Puppet[:ldapport])
+                    elsif Puppet[:ldaptls]
+                        @ldap = LDAP::SSLConn.new(
+                            Puppet[:ldapserver], Puppet[:ldapport], true
+                        )
+                    else
+                        @ldap = LDAP::Conn.new(Puppet[:ldapserver], Puppet[:ldapport])
+                    end
                     @ldap.set_option(LDAP::LDAP_OPT_PROTOCOL_VERSION, 3)
                     @ldap.set_option(LDAP::LDAP_OPT_REFERRALS, LDAP::LDAP_OPT_ON)
                     @ldap.simple_bind(Puppet[:ldapuser], Puppet[:ldappassword])
author	luke <luke@980ebf18-57e1-0310-9a29-db15c13687c0>	2006-06-13 15:57:06 +0000
committer	luke <luke@980ebf18-57e1-0310-9a29-db15c13687c0>	2006-06-13 15:57:06 +0000
commit	ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6 (patch)
tree	a20175019bd423232062925f860f2b2fb0408c0f /lib/puppet/parser/interpreter.rb
parent	9af5d697385fd28843d1603e9e6afd272ec5e560 (diff)
download	puppet-ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6.tar.gz puppet-ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6.tar.xz puppet-ec0609d81cb5f2b44fce7174b72dd2c5a06dfbe6.zip