Sha256: d33e4b5a0ee8287cd33ad499b3ba9c8fb85b54b590949546afc6e07b7325e959

Contents?: true

Size: 1.56 KB

Versions: 2

Compression:

Stored size: 1.56 KB

Contents

test_name "Validate Sign Cert" do
  skip_test 'not testing with puppetserver' unless @options['is_puppetserver']
  hostname = on(master, 'facter hostname').stdout.strip
  fqdn = on(master, 'facter fqdn').stdout.strip
  puppet_version = on(master, puppet("--version")).stdout.chomp

  if master.use_service_scripts?
    step "Ensure puppet is stopped"
    # Passenger, in particular, must be shutdown for the cert setup steps to work,
    # but any running puppet master will interfere with webrick starting up and
    # potentially ignore the puppet.conf changes.
    on(master, puppet('resource', 'service', master['puppetservice'], "ensure=stopped"))
  end

  step "Clear SSL on all hosts"
  hosts.each do |host|
    ssldir = on(host, puppet('agent --configprint ssldir')).stdout.chomp
    # preserve permissions for master's ssldir so puppetserver can read it
    on(host, "rm -rf '#{ssldir}/*'")
  end

  step "Set 'server' setting"
  hosts.each do |host|
    on(host, puppet("config set server #{master.hostname} --section main"))
  end

  step "Start puppetserver" do
    master_opts = {
      main: {
        dns_alt_names: "puppet,#{hostname},#{fqdn}",
        server: fqdn,
        autosign: true
      },
    }

    # In Puppet 6, we want to be using an intermediate CA
    unless version_is_less(puppet_version, "5.99")
      on master, 'puppetserver ca setup'
    end
    with_puppet_running_on(master, master_opts) do
      step "Agents: Run agent --test with autosigning enabled to get cert"
      on agents, puppet("agent --test"), :acceptable_exit_codes => [0,2]
    end
  end
end

Version data entries

2 entries across 2 versions & 1 rubygems

Version Path
beaker-puppet-1.18.5 setup/common/040_ValidateSignCert.rb
beaker-puppet-1.18.4 setup/common/040_ValidateSignCert.rb