Skip to content
This repository has been archived by the owner on Feb 14, 2025. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: voxpupuli/container-puppetdb
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 7.0.1
Choose a base ref
...
head repository: voxpupuli/container-puppetdb
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 6.14.0
Choose a head ref
  • 8 commits
  • 3 files changed
  • 5 contributors

Commits on Dec 29, 2020

  1. (maint) Update ssl.sh agent script 

     - Improves script robustness under a number of specific scenarios:

   - keypair generated on disk, CSR never submitted
   - keypair generated on disk, CSR submitted, cert never downloaded
     (i.e. cert matches keypair on disk)
   - keypair generated on disk, cert exists but doesn't match
   - keypair generated, CA down, CSR requires multiple resubmits until
     CA ready
   - no keypair generated, certname exists for another host

 - Additionally make improvements:

   - Verify that there is a 200 response from the masters CA as well to
     determine CA readiness to prevent:

      - Error: cannot reach CA host 'pe-puppet'
      - Error: cannot reach CRL host 'pe-puppet'

   - Under rare circumstances *any* HTTP response may not be blank, but
     may be malformed with a unparseable status code.

     In such instances, fail fast -- otherwise, the code may reach the
     end and perform a `return ""`

   - Fix a number of minor bugs in the scripts

 - See puppetlabs/pupperware#230 for details
    @Iristyle
    Iristyle committed Dec 29, 2020

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    35733b4 View commit details

  2. Merge pull request #3392 from puppetlabs/update-ssl-scripts

    @Iristyle
    Iristyle authored Dec 29, 2020

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    3822b4c View commit details

Commits on Jan 21, 2021

  1. (PDB-4811) Add auth.conf to docker config

    @austb
    austb committed Jan 21, 2021

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    fb66a2a View commit details

  2. (PDB-4811) Allow unauthenticated access to the status endpoint 

    This is in line with how puppetserver allows access to the status
endpoint, and without this the docker healthcheck cannot access the
endpoint.
    @austb
    austb committed Jan 21, 2021

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    d67cce9 View commit details

  3. (PDB-4811) Use path matching for metrics auth

    @austb
    austb committed Jan 21, 2021

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    166c543 View commit details

  4. Merge pull request #3393 from austb/pdb-4811/master/tk-metrics-auth 

     (PDB-4811) Add tk-auth to tk-metrics endpoint
    @Zak-Kent
    Zak-Kent authored Jan 21, 2021

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    f85f738 View commit details

Commits on Jan 27, 2021

  1. (maint) Support dotted env vars in containers 

     - Both docker (per moby/moby#16585) and
   Kubernetes (per kubernetes/kubernetes#2707)
   support passing environment variables with dots as config, despite
   dot not technically being supported in POSIX.

   This is necessary to be able to specify hocon array values like
   FOO.0, FOO.1, etc now that the Hocon library is updated to
   typesafe/config 1.4.1 via puppetlabs/typesafe-config 0.2.0 /
   clj-parent 4.6.11

   /bin/sh will not add such variables to the environment, but /bin/bash
   will properly expose them, so that they may be consumed by
   puppetserver and hocon.

   NOTE: ElasticSearch is notorious for passing such values, and it also
   uses the tini init system, so it served as a good design to follow:

   https://github.com/elastic/elasticsearch/tree/master/distribution/docker
    @Iristyle
    Iristyle committed Jan 27, 2021

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    009fe06 View commit details

  2. Merge pull request #3401 from puppetlabs/allow-env-vars-with-dots 

    (maint) Support dotted env vars in containers
    @MikaelSmith
    MikaelSmith authored Jan 27, 2021

    Unverified

    This commit is not signed, but one or more authors requires that any commit attributed to them is signed.
    Learn about vigilant mode
    Copy the full SHA
    bb0e87e View commit details
Loading