Sha256: d33e4b5a0ee8287cd33ad499b3ba9c8fb85b54b590949546afc6e07b7325e959
Contents?: true
Size: 1.56 KB
Versions: 2
Compression:
Stored size: 1.56 KB
Contents
test_name "Validate Sign Cert" do
skip_test 'not testing with puppetserver' unless @options['is_puppetserver']
hostname = on(master, 'facter hostname').stdout.strip
fqdn = on(master, 'facter fqdn').stdout.strip
puppet_version = on(master, puppet("--version")).stdout.chomp
if master.use_service_scripts?
step "Ensure puppet is stopped"
# Passenger, in particular, must be shutdown for the cert setup steps to work,
# but any running puppet master will interfere with webrick starting up and
# potentially ignore the puppet.conf changes.
on(master, puppet('resource', 'service', master['puppetservice'], "ensure=stopped"))
end
step "Clear SSL on all hosts"
hosts.each do |host|
ssldir = on(host, puppet('agent --configprint ssldir')).stdout.chomp
# preserve permissions for master's ssldir so puppetserver can read it
on(host, "rm -rf '#{ssldir}/*'")
end
step "Set 'server' setting"
hosts.each do |host|
on(host, puppet("config set server #{master.hostname} --section main"))
end
step "Start puppetserver" do
master_opts = {
main: {
dns_alt_names: "puppet,#{hostname},#{fqdn}",
server: fqdn,
autosign: true
},
}
# In Puppet 6, we want to be using an intermediate CA
unless version_is_less(puppet_version, "5.99")
on master, 'puppetserver ca setup'
end
with_puppet_running_on(master, master_opts) do
step "Agents: Run agent --test with autosigning enabled to get cert"
on agents, puppet("agent --test"), :acceptable_exit_codes => [0,2]
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| beaker-puppet-1.18.5 | setup/common/040_ValidateSignCert.rb |
| beaker-puppet-1.18.4 | setup/common/040_ValidateSignCert.rb |