Sha256: e2644360c04282f41dd81a752c583d52c4d2817ca97f1ba4f65e1ce85c5c171e

Contents?: true

Size: 1.63 KB

Versions: 13

Compression:

Stored size: 1.63 KB

Contents

test_name "Validate Sign Cert" do
  skip_test 'not testing with puppetserver' unless @options['is_puppetserver']
  hostname = on(master, 'facter hostname').stdout.strip
  fqdn = on(master, 'facter fqdn').stdout.strip

  if master.use_service_scripts?
    step "Ensure puppet is stopped"
    # Passenger, in particular, must be shutdown for the cert setup steps to work,
    # but any running puppet master will interfere with webrick starting up and
    # potentially ignore the puppet.conf changes.
    on(master, puppet('resource', 'service', master['puppetservice'], "ensure=stopped"))
  end

  step "Clear SSL on all hosts"
  hosts.each do |host|
    ssldir = on(host, puppet('agent --configprint ssldir')).stdout.chomp
    # preserve permissions for master's ssldir so puppetserver can read it
    on(host, "rm -rf '#{ssldir}/*'")
  end

  step "Start puppetserver" do
    master_opts = {
      :main => {
        :dns_alt_names => "puppet,#{hostname},#{fqdn}",
      },
    }
    # server will generate the CA and server certs when it starts
    with_puppet_running_on(master, master_opts) do
      agents.each do |agent|
        next if agent == master

        step "Agents: Run agent --test first time to gen CSR"
        on agent, puppet("agent --test --server #{master}"), :acceptable_exit_codes => [1]
      end

      # Sign all waiting agent certs
      step "Server: sign all agent certs"
      on master, puppet("cert --sign --all"), :acceptable_exit_codes => [0,24]

      step "Agents: Run agent --test second time to obtain signed cert"
      on agents, puppet("agent --test --server #{master}"), :acceptable_exit_codes => [0,2]
    end
  end
end

Version data entries

13 entries across 13 versions & 1 rubygems

Version Path
beaker-puppet-1.3.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-1.2.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-1.1.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-1.0.1 setup/common/040_ValidateSignCert.rb
beaker-puppet-1.0.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.17.1 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.17.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.16.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.15.2 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.15.1 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.15.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.14.0 setup/common/040_ValidateSignCert.rb
beaker-puppet-0.13.6 setup/common/040_ValidateSignCert.rb