Bug #21772
closedapi does not allow to reject an already accepted key
Description
as per the current code in [1] it is not possible to reject an already accepted salt key. is there any reason behind it? i can't think of a use case that would justify this. i have the situation where i would like to explicitly reject an accepted key for a certain time before i am going to finally delete it.
may the original author of these lines @Stephen Benjamin can comment on this.
Updated by Dominic Schlegel over 6 years ago
looks like the underlying foreman salt proxy module is not using the right commands. currently the cli does not select rejected keys so the key are never found. by using the --include-accepted
the glob is able to match. same is possible for accepting a rejected key. we can use the cli option --include-rejected
there.
i have created the following pull request that handles the smart proxy part: https://github.com/theforeman/smart_proxy_salt/pull/29
Updated by The Foreman Bot over 6 years ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman_salt/pull/75 added
Updated by Anonymous over 6 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset smart_proxy_salt|b94e8c2f23d96d4bcfa9d669ee945760e0b78bd7.