puppet.git - Puppet repo

	Commit message (Collapse)	Author	Age	Files	Lines
*	Fix #3117 - cert fingerprinting uses a method not available in ruby <= 1.8.6	Brice Figureau	2010-01-28	1	-1/+1
\| \| \| \| \| \| \| \|	OpenSSL::Digest.hexdigest is not available on older ruby versions. This patch accesses directly to the digest instead (which hopefully support hexdigest). Signed-off-by: Brice Figureau <brice-puppet@daysofwonder.com>
*	Feature #2839 - fingerprint certificate	Brice Figureau	2010-01-19	1	-0/+17
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	This patch adds several things: * certificate fingerprinting in --list mode * a puppetca action called "--fingerprint" to display fingerprints of given certificates (or all including CSR) * a --fingerprint puppetd option to display client certificates * each time a CSR is generated, its fingerprint is displayed in the log It is also possible to use --digest in puppetca and puppetd to specify a specific digest algorithm. Signed-off-by: Brice Figureau <brice-puppet@daysofwonder.com>
*	Handling the case where a symbol (e.g., :ca) is used for a certificate name.	Luke Kanies	2008-11-03	1	-1/+1
\| \| \| \|	Signed-off-by: Luke Kanies <luke@madstop.com>
*	Fixing the String format (fixes #1522).	Luke Kanies	2008-08-20	1	-0/+11
\| \| \| \| \| \| \| \| \|	The string format no longer provides any support methods, which means that I had to create to_multiple_s and from_multiple_s methods on the SSL classes. I created them in the base class and tested them just in the cert class. Signed-off-by: Luke Kanies <luke@madstop.com>
*	Fixing #1168 for REST -- all ssl classes downcase their names.	Luke Kanies	2008-06-15	1	-1/+1
\| \| \| \|	This is a much cleaner fix than the xmlrpc version, thankfully. :)
*	Moving the password file handling into the SSL::Key class.	Luke Kanies	2008-04-17	1	-0/+5
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	This was necessary because when the Indirector is used, there isn't necessarily enough context available to know when a password file should be used (e.g., when reading a Key from disk, you don't know if that key was encrypted). Now, the Key class automatically uses the right password file, and only tries to use those files that actually exist. This isn't very flexible, in that it only allows one CA file and one non-CA file, but no one really uses anything but the CA file anyway.
*	Making the first pass at using requests instead of	Luke Kanies	2008-04-15	1	-1/+0
\| \| \| \| \|	specifying the terminus class. The individual ssl classes now work, but the ssl host class doesn't yet.
*	Adding a :to_text method that will convert the contained	Luke Kanies	2008-04-15	1	-0/+6
\| \| \| \|	thing to readable human text.
*	It looks like all of the new ssl classes for managing	Luke Kanies	2008-04-15	1	-0/+1
\| \| \| \| \| \| \|	keys, certificates, and requests now work, including talking to the certificate authority. Now we just need the authority itself, along with the necessary REST terminii.
*	The basics for the certificate and certificate request	Luke Kanies	2008-04-15	1	-0/+40
	indirection terminii are done. I need to move most of the test code to a shared behaviour now.